- March 18, 2026The Cliengo – Chatbot plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a…
- March 18, 2026The YayCurrency – WooCommerce Multi-Currency Switcher plugin for WordPress is vulnerable to unauthorized modification of data due to a missing…
- March 18, 2026The Primer MyData for Woocommerce plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including,…
- March 18, 2026The NEX-Forms – Ultimate Forms Plugin for WordPress plugin for WordPress is vulnerable to unauthorized modification of data due to…
- March 18, 2026The Thim Kit for Elementor – Pre-built Templates & Widgets for Elementor plugin for WordPress is vulnerable to unauthorized access…
- March 18, 2026The Code Embed plugin for WordPress is vulnerable to Stored Cross-Site Scripting via custom field meta values in all versions…
- March 18, 2026The [CR]Paid Link Manager plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the URL path in all versions…
- March 18, 2026The Yoast Duplicate Post plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check…
- March 18, 2026The WP Go Maps (formerly WP Google Maps) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘wpgmza_custom_js’…
- March 18, 2026The Writeprint Stylometry plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'p' GET parameter in all versions…
