- March 23, 2026The CM Business Directory – Optimise and showcase local business plugin for WordPress is vulnerable to Stored Cross-Site Scripting in…
- March 23, 2026The Essential Addons for Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to and…
- March 23, 2026The Cost Calculator Builder plugin for WordPress is vulnerable to Unauthenticated Payment Status Bypass in all versions up to, and…
- March 23, 2026The Turn Yoast SEO FAQ Block to Accordion plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up…
- March 23, 2026The Shield: Blocks Bots, Protects Users, and Prevents Security Breaches plugin for WordPress is vulnerable to Insecure Direct Object Reference…
- March 23, 2026The Shown Connector plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function…
- March 23, 2026The All in One SEO – Powerful SEO Plugin to Boost SEO Rankings & Increase Traffic plugin for WordPress is…
- March 23, 2026The Booking Calendar plugin for WordPress is vulnerable to Missing Authorization leading to Sensitive Information Exposure in all versions up…
- March 23, 2026The Related Posts by Taxonomy plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'related_posts_by_tax' shortcode in…
- March 23, 2026The Rede Itaú for WooCommerce — Payment PIX, Credit Card and Debit plugin for WordPress is vulnerable to unauthorized modification…
- March 23, 2026The DK PDF – WordPress PDF Generator plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up…
- March 23, 2026The Rede Itaú for WooCommerce plugin for WordPress is vulnerable to order status manipulation due to insufficient verification of data…
- March 23, 2026The RSS Aggregator – RSS Import, News Feeds, Feed to Post, and Autoblogging plugin for WordPress is vulnerable to Reflected…
- March 23, 2026The LEAV Last Email Address Validator plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions
- March 23, 2026The GetGenie plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 4.3.0. This is…
- March 23, 2026The WooCommerce Frontend Manager – Ultimate plugin for WordPress is vulnerable to SQL Injection in versions up to 6.7.7 due…
- March 23, 2026The AffiliateX – Amazon Affiliate Plugin plugin for WordPress is vulnerable to unauthorized modification of data due to a missing…
- March 23, 2026The User Submitted Posts – Enable Users to Submit Posts from the Front End plugin for WordPress is vulnerable to…
- March 23, 2026The Awesome Support - WordPress HelpDesk & Support Plugin for WordPress is vulnerable to authorization bypass due to missing capability…
- March 23, 2026The NextMove Lite – Thank You Page for WooCommerce plugin for WordPress is vulnerable to Insecure Direct Object Reference in…
