- March 30, 2026The Autoptimize plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'ao_post_preload' meta value in all versions up…
- March 30, 2026The Autoptimize plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the lazy-loading image processing in all versions up…
- March 30, 2026The RepairBuddy – Repair Shop CRM & Booking Plugin for WordPress is vulnerable to unauthorized access in all versions up…
- March 30, 2026The JS Help Desk – AI-Powered Support & Ticketing System plugin for WordPress is vulnerable to SQL Injection in versions…
- March 30, 2026The Comments Import & Export plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on…
- March 30, 2026The My Tickets – Accessible Event Ticketing plugin for WordPress is vulnerable to unauthorized access due to a missing capability…
- March 30, 2026The New User Approve plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a…
- March 30, 2026The WP Custom Admin Interface plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including,…
- March 29, 2026The Ecover Builder For Dummies plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'id' parameter of the…
- March 29, 2026The App Builder – Create Native Android & iOS Apps On The Flight plugin for WordPress is vulnerable to Privilege…
