- March 18, 2026The Quiz and Survey Master (QSM) – Easy Quiz and Survey Maker plugin for WordPress is vulnerable to unauthorized access…
- March 18, 2026The Shortcodes and extra features for Phlox theme plugin for WordPress is vulnerable to Information Exposure in all versions up…
- March 18, 2026The Appointment Booking and Scheduling Calendar Plugin – WP Timetics plugin for WordPress is vulnerable to unauthorized access and modification…
- March 18, 2026The Tag, Category, and Taxonomy Manager – AI Autotagger with OpenAI plugin for WordPress is vulnerable to unauthorized modification of…
- March 18, 2026The Popupkit plugin for WordPress is vulnerable to arbitrary subscriber data deletion due to missing authorization on the DELETE `/subscribers`…
- March 18, 2026The Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in…
- March 18, 2026The ilGhera Support System for WooCommerce plugin for WordPress is vulnerable to unauthorized modification and loss of data due to…
- March 18, 2026The FastDup – Fastest WordPress Migration & Duplicator plugin for WordPress is vulnerable to Path Traversal in all versions up…
- March 18, 2026The CBX Bookmark & Favorite plugin for WordPress is vulnerable to generic SQL Injection via the ‘orderby’ parameter in all…
- March 18, 2026The URL Image Importer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions…
- March 18, 2026The Spiffy Calendar plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function…
- March 18, 2026The Form Vibes – Database Manager for Forms plugin for WordPress is vulnerable to SQL Injection via the 'params' parameter…
- March 18, 2026The ForumWP – Forum & Discussion Board plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the User's Display…
- March 18, 2026The Page Expire Popup/Redirection for WordPress plugin for WordPress is vulnerable to time-based SQL Injection via the 'id' shortcode attribute…
- March 18, 2026The Popup and Slider Builder by Depicter – Add Email collecting Popup, Popup Modal, Coupon Popup, Image Slider, Carousel Slider,…
- March 18, 2026The Demo Importer Plus plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a…
- March 18, 2026The Appointment Booking Calendar – WP Timetics Booking Plugin plugin for WordPress is vulnerable to unauthorized access due to a…
- March 18, 2026The Depicter — Popup & Slider Builder plugin for WordPress is vulnerable to unauthorized access due to a missing capability…
- March 18, 2026The Link Whisper Free plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions up to, and including, 0.8.8…
- March 18, 2026The Post and Page Builder by BoldGrid – Visual Drag and Drop Editor plugin for WordPress is vulnerable to unauthorized…
