- March 18, 2026The WCFM – Frontend Manager for WooCommerce along with Bookings Subscription Listings Compatible plugin for WordPress is vulnerable to unauthorized…
- March 18, 2026The Booking and Rental Manager plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including,…
- March 18, 2026The Ninja Forms plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.14.0.…
- March 18, 2026The Name Directory plugin for WordPress is vulnerable to Stored Cross-Site Scripting via double HTML-entity encoding in all versions up…
- March 18, 2026The Custom Block Builder – Lazy Blocks plugin for WordPress is vulnerable to Remote Code Execution in all versions up…
- March 18, 2026The Miraculous Elementor plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 2.0.7.This makes…
- March 18, 2026The WooCommerce Coming Soon Product with Countdown plugin for WordPress is vulnerable to Local File Inclusion in versions up to,…
- March 18, 2026The Lucky Wheel Giveaway plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including,…
- March 18, 2026The WordPress Upload Files Anywhere plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including,…
- March 18, 2026The shop plugin for WordPress is vulnerable to Local File Inclusion in versions up to, and including, 2.6.1. This makes…
