- March 18, 2026The UiChemy plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 4.4.2 due to…
- March 18, 2026The Lead Capturing Pages plugin for WordPress is vulnerable to SQL Injection in versions up to, and including, 2.5 due…
- March 18, 2026The WP Duplicate Page plugin for WordPress is vulnerable to unauthorized modification of data due to missing capability checks on…
- March 18, 2026The CP Image Store with Slideshow plugin for WordPress is vulnerable to authorization bypass in all versions up to, and…
- March 18, 2026The Easy Modal plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 2.1.0 due…
- March 18, 2026The PopCash.Net Code Integration Tool plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on…
- March 18, 2026The WP Popups plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function…
- March 18, 2026The JNews - Frontend Submit plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions up to, and including,…
- March 18, 2026The xPromoter plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions up to, and including, 1.3.4 due to…
- March 18, 2026The Terms descriptions plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 3.4.9 due…
- March 18, 2026The Suggestion Toolkit plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function…
- March 18, 2026The Booking for Appointments and Events Calendar – Amelia plugin for WordPress is vulnerable to unauthorized access due to a…
- March 18, 2026The Penci Shortcodes & Performance plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including,…
- March 18, 2026The HurryTimer – An Scarcity and Urgency Countdown Timer for WordPress & WooCommerce plugin for WordPress is vulnerable to Stored…
- March 18, 2026The Penci Recipe plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 4.1 due…
- March 18, 2026The Schedule Post Changes With PublishPress Future: Unpublish, Delete, Change Status, Trash, Change Categories plugin for WordPress is vulnerable to…
- March 18, 2026The Penci Podcast plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 1.7 due…
- March 18, 2026The Penci Filter Everything plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 1.7…
- March 18, 2026The Live sales notification for WooCommerce plugin for WordPress is vulnerable to unauthorized access due to a missing capability check…
- March 18, 2026The File Uploads Addon for WooCommerce plugin for WordPress is vulnerable to unauthorized access due to a missing capability check…
