- March 29, 2026The WP-Chatbot for Messenger plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 4.9.…
- March 29, 2026The Contact List plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the '_cl_map_iframe' parameter in all versions up…
- March 29, 2026The Image Alt Text Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the post title in all…
- March 29, 2026The Scoreboard for HTML5 Games Lite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'scoreboard' shortcode in…
- March 28, 2026The Simple Football Scoreboard plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'ytmr_fb_scoreboard' shortcode in all versions…
- March 28, 2026The Sherk Custom Post Type Displays plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'title' shortcode attribute…
- March 28, 2026The Twentig plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'featuredImageSizeWidth' parameter in versions up to, and…
- March 28, 2026The Punnel – Landing Page Builder plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and…
- March 28, 2026The Smarter Analytics plugin for WordPress is vulnerable to unauthorized access in all versions up to, and including, 2.0. This…
- March 28, 2026The e-shot form builder plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including,…
