- April 6, 2026The Xpro Addons — 140+ Widgets for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Pricing…
- April 6, 2026The WP Shortcodes Plugin - Shortcodes Ultimate plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up…
- April 6, 2026The Royal Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'button_text' parameter in all…
- April 6, 2026The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugin for WordPress is vulnerable…
- April 6, 2026The Tutor LMS Pro plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a…
- April 6, 2026The KiviCare – Clinic & Patient Management System (EHR) plugin for WordPress is vulnerable to unauthorized access due to a…
- April 6, 2026The NaturaLife Extensions plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions up to, and including, 2.1 due…
- April 6, 2026The File Uploader for WooCommerce plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including,…
- April 6, 2026The Taboola Pixel plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions up to, and including, 1.1.4 due…
- April 6, 2026The The Grid plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function…
- April 6, 2026The Helpdesk Support Ticket System for WooCommerce plugin for WordPress is vulnerable to unauthorized access due to a missing capability…
- April 6, 2026The WPBookit Pro - Appointment Booking Plugin for WordPress plugin for WordPress is vulnerable to Privilege Escalation in all versions…
- April 6, 2026The PPWP – Password Protect Pages plugin for WordPress is vulnerable to unauthorized access due to a missing capability check…
- April 6, 2026The WPVulnerability plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in…
- April 6, 2026The Gutenberg Blocks – Unlimited blocks For Gutenberg plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions up…
- April 6, 2026The EventPrime – Events Calendar, Bookings and Tickets plugin for WordPress is vulnerable to unauthorized access due to a missing…
- April 6, 2026The Kargo Takip plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function…
- April 6, 2026The Vertex Addons for Elementor plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on…
- April 6, 2026The Integration for Mailchimp and Contact Form 7, WPForms, Elementor, Ninja Forms plugin for WordPress is vulnerable to unauthorized access…
- April 6, 2026The Contextual Related Posts plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a…
