- March 23, 2026The Advanced Product Fields (Product Addons) for WooCommerce plugin for WordPress is vulnerable to unauthorized access due to a missing…
- March 23, 2026The WooCommerce plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to 10.5.3 (exclusive). This is…
- March 23, 2026The Job Postings plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function…
- March 23, 2026The Avada (Fusion) Builder plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a…
- March 23, 2026The Avada (Fusion) Builder plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a…
- March 23, 2026The Website LLMs.txt plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions up to, and including, 8.2.6 due…
- March 23, 2026The Livemesh Addons for Beaver Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and…
- March 23, 2026The Pardakht Delkhah plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 3.0.0. This…
- March 23, 2026The Knowledge Base documentation & wiki plugin – BasePress plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions…
- March 23, 2026The OpenHook plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 4.3.1. This is…
- March 23, 2026The SEO Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 1.1.1 due…
- March 23, 2026The Countdowner for Elementor plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a…
- March 23, 2026The AnyComment plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in…
- March 23, 2026The Attachments plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in…
- March 23, 2026The Web and WooCommerce Addons for WPBakery Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up…
- March 23, 2026The EasyIndex plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.1.1704. This is…
- March 23, 2026The Noindex by Path plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.0.…
- March 23, 2026The AI Content Writing Assistant (Content Writer, ChatGPT, Image Generator) All in One plugin for WordPress is vulnerable to unauthorized…
- March 23, 2026The Efí Bank plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.1.3.…
- March 23, 2026The Core Web Vitals & PageSpeed Booster plugin for WordPress is vulnerable to unauthorized access due to a missing capability…
