- March 18, 2026The MemberPress Discord Addon plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions up to, and including, 1.1.4…
- March 18, 2026The Bookingor plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in…
- March 18, 2026The Easy Theme Options plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions up to, and including, 1.0…
- March 18, 2026The Frontis Blocks — Block Library for the Block Editor plugin for WordPress is vulnerable to Server-Side Request Forgery in…
- March 18, 2026The PeachPay — Payments & Express Checkout for WooCommerce (supports Stripe, PayPal, Square, Authorize.net) plugin for WordPress is vulnerable to…
- March 18, 2026The Viet contact plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to,…
- March 18, 2026The weMail - Email Marketing, Lead Generation, Optin Forms, Email Newsletters, A/B Testing, and Automation plugin for WordPress is vulnerable…
- March 18, 2026The Custom Fonts – Host Your Fonts Locally plugin for WordPress is vulnerable to unauthorized loss of data due to…
- March 18, 2026The WP Hello Bar plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'digit_one' and 'digit_two' parameters in…
- March 18, 2026The Points and Rewards for WooCommerce – Create Loyalty Programs, Reward Customer Purchases, User Badges, Gamification plugin for WordPress is…
