- March 18, 2026The WP Mail Logging plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including,…
- March 18, 2026The Tutor LMS – eLearning and online course solution plugin for WordPress is vulnerable to SQL Injection via the 'coupon_code'…
- March 18, 2026The Super Stage WP plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 1.0.1…
- March 18, 2026The Widget Options – Advanced Conditional Visibility for Gutenberg Blocks & Classic Widgets plugin for WordPress is vulnerable to Remote…
- March 18, 2026The Uncanny Automator – Easy Automation, Integration, Webhooks & Workflow Builder Plugin plugin for WordPress is vulnerable to Server-Side Request…
- March 18, 2026The Lawyer Directory plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 1.3.2 due…
- March 18, 2026The WP Attractive Donations System - Easy Stripe & Paypal donations plugin for WordPress is vulnerable to SQL Injection in…
- March 18, 2026The Filr – Secure document library plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type…
- March 18, 2026The JetEngine plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 3.7.2. This…
- March 18, 2026The Fluent Forms Pro Add On Pack plugin for WordPress is vulnerable to Insufficient Verification of Data Authenticity in all…
