- March 18, 2026The Team Section Block plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's block in all versions…
- March 18, 2026The Community Events plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on…
- March 18, 2026The Phrase TMS Integration for WordPress plugin for WordPress is vulnerable to unauthorized modification of data due to a missing…
- March 18, 2026The Filr – Secure document library plugin for WordPress is vulnerable to Stored Cross-Site Scripting via unrestricted file upload in…
- March 18, 2026The WP Hotel Booking plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including,…
- March 18, 2026The Quick Contact Form plugin for WordPress is vulnerable to Open Mail Relay in all versions up to, and including,…
- March 18, 2026The Quote Master plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions up to, and including, 7.1.1 due…
- March 18, 2026The CM Business Directory – Optimise and showcase local business plugin for WordPress is vulnerable to Stored Cross-Site Scripting in…
- March 18, 2026The Advanced Ads – Ad Manager & AdSense plugin for WordPress is vulnerable to SQL Injection via the 'order' parameter in…
- March 18, 2026The Peach Payments Gateway plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a…
