- March 18, 2026The Advanced iFrame plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 2025.10 due…
- March 18, 2026The SEO Booster plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function…
- March 18, 2026The Image Photo Gallery Final Tiles Grid plugin for WordPress is vulnerable to unauthorized access and modification of data due…
- March 18, 2026The AJAX Hits Counter + Popular Posts Widget plugin for WordPress is vulnerable to unauthorized access due to a missing…
- March 18, 2026The Premium Addons for Elementor – Powerful Elementor Templates & Widgets plugin for WordPress is vulnerable to unauthorized access due…
- March 18, 2026The Houzez Theme - Functionality plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including,…
- March 18, 2026The Advanced WooCommerce Product Sales Reporting – Statistics & Forecast plugin for WordPress is vulnerable to Sensitive Information Exposure in…
- March 18, 2026The UPI QR Code Payment Gateway for WooCommerce plugin for WordPress is vulnerable to unauthorized access due to a missing…
- March 18, 2026The Blockons plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 1.2.15 due to…
- March 18, 2026The Monetag Official plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function…
- March 18, 2026The GeoDirectory plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.8.149. This is…
- March 18, 2026The Uncanny Automator – Easy Automation, Integration, Webhooks & Workflow Builder Plugin plugin for WordPress is vulnerable to Stored Cross-Site…
- March 18, 2026The KiviCare – Clinic & Patient Management System (EHR) plugin for WordPress is vulnerable to arbitrary file uploads due to…
- March 18, 2026The Fraud Prevention For WooCommerce and EDD plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up…
- March 18, 2026The Cloudinary plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in…
- March 18, 2026The Integration for HubSpot and Contact Form 7, WPForms, Elementor, Ninja Forms plugin for WordPress is vulnerable to Sensitive Information…
- March 18, 2026The Schema & Structured Data for WP & AMP plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the…
- March 18, 2026The Fluent Forms Pro Add On Pack plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up…
- March 18, 2026The Sigmize: A/B Testing, Session Recordings, Heatmaps & Revenue Tracking for WooCommerce, SureCart & EDD plugin for WordPress is vulnerable…
- March 18, 2026The RVCFDI para Woocommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions up to, and including, 8.1.8…
