- April 6, 2026The weForms – Easy Drag & Drop Contact Form Builder For WordPress plugin for WordPress is vulnerable to PHP Object…
- April 6, 2026The Addon Jobsearch Chat plugin for WordPress is vulnerable to SQL Injection in versions up to, and including, 3.0 due…
- April 6, 2026The Text to Speech for WP (AI Voices by Mementor) plugin for WordPress is vulnerable to sensitive information exposure in…
- April 1, 2026The Query Monitor – The developer tools panel for WordPress plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via…
- April 1, 2026The Debugger & Troubleshooter plugin for WordPress was vulnerable to Unauthenticated Privilege Escalation in versions up to and including 1.3.2.…
- April 1, 2026The Gravity SMTP plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.1.4.…
- April 1, 2026The Lumise Product Designer plugin for WordPress is vulnerable to SQL Injection in versions up to 2.0.9 due to insufficient…
- April 1, 2026The Visual Portfolio, Photo Gallery & Post Grid plugin for WordPress is vulnerable to Local File Inclusion in versions up…
- April 1, 2026The FAQ Builder AYS plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 1.8.2…
- March 30, 2026The WPBot – AI ChatBot for Live Support, Lead Generation, AI Services plugin for WordPress is vulnerable to SQL Injection…
