- March 18, 2026The The User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration &…
- March 18, 2026The Quiz and Survey Master (QSM) – Easy Quiz and Survey Maker plugin for WordPress is vulnerable to unauthorized access…
- March 18, 2026The weDocs plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.1.15 via…
- March 18, 2026The Booking for Appointments and Events Calendar – Amelia plugin for WordPress is vulnerable to unauthorized access due to missing…
- March 18, 2026The Schedule Post Changes With PublishPress Future plugin for WordPress is vulnerable to authorization bypass in all versions up to,…
- March 18, 2026The Clearfy Cache – WordPress optimization plugin, Minify HTML, CSS & JS, Defer plugin for WordPress is vulnerable to Cross-Site…
- March 18, 2026The Japanized for WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check…
- March 18, 2026The WP Quick Post Duplicator plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on…
- March 18, 2026The nK Themes Helper plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including,…
- March 18, 2026The Kenta Companion plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.3.3. This…
- March 18, 2026The WP Attractive Donations System - Easy Stripe & Paypal donations plugin for WordPress is vulnerable to unauthorized access due…
- March 18, 2026The The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to arbitrary shortcode execution in all…
- March 18, 2026The WooCommerce Orders & Customers Exporter plugin for WordPress is vulnerable to SQL Injection in versions up to, and including,…
- March 18, 2026The Famous - Responsive Image And Video Grid Gallery WordPress plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in…
- March 18, 2026The Super Interactive Maps plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions up to, and including, 2.3…
- March 18, 2026The tagDiv Composer plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 5.4.2 due…
- March 18, 2026The Workreap (theme's plugin) plugin for WordPress is vulnerable to SQL Injection in versions up to, and including, 3.3.6 due…
- March 18, 2026The HTML5 Video Player with Playlist & Multiple Skins plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions…
- March 18, 2026The HTML5 Video Player plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions up to, and including, 5.3.5…
- March 18, 2026The Image&Video FullScreen Background plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions up to, and including, 1.6.7…
