- March 18, 2026The Easy PHP Settings plugin for WordPress is vulnerable to PHP Code Injection in all versions up to, and including,…
- March 18, 2026The Fluent Forms Pro plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the `fluentform_step_form_save_data` AJAX action in all…
- March 18, 2026The Lisfinity Core - Lisfinity Core plugin used for pebas® Lisfinity WordPress theme plugin for WordPress is vulnerable to SQL…
- March 18, 2026The My Album Gallery plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in…
- March 18, 2026The Bus Ticket Booking with Seat Reservation plugin for WordPress is vulnerable to PHP Object Injection in versions up to,…
- March 18, 2026The Drag and Drop Multiple File Upload - Contact Form 7 plugin for WordPress is vulnerable to arbitrary file uploads…
- March 18, 2026The Secudeal Payments for Ecommerce plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including,…
- March 18, 2026The Membership Plugin – Restrict Content plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and…
