- March 18, 2026The WP ULike plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including,…
- March 18, 2026The Unlimited Elements for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Border Hero widget's Button…
- March 18, 2026The ThirstyAffiliates – Affiliate Links, Link Branding, Link Tracking & Marketing Plugin plugin for WordPress is vulnerable to Cross-Site Request…
- March 18, 2026The Mail Mint plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.19.2.…
- March 18, 2026The Happy Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the '_elementor_data' meta field in…
- March 18, 2026The Popup Box plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 6.1.1.…
- March 18, 2026The NEX-Forms – Ultimate Forms Plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability…
- March 18, 2026The Ajax Load More – Infinite Scroll, Load More, & Lazy Load plugin for WordPress is vulnerable to unauthorized access…
- March 18, 2026The Mizan Demo Importer plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a…
- March 18, 2026The Travelpayouts plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in…
