- March 18, 2026The Spectra Gutenberg Blocks – Website Builder for the Block Editor plugin for WordPress is vulnerable to Information Disclosure in…
- March 18, 2026The Mizan Demo Importer plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a…
- March 18, 2026The Travelpayouts plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in…
- March 18, 2026The WP Wand – Unlimited Content Generation using AI – for OpenAI, Claude, Openrouter and Deepseek plugin for WordPress is…
- March 18, 2026The Serious Slider plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function…
- March 18, 2026The SupportCandy – Helpdesk & Customer Support Ticket System plugin for WordPress is vulnerable to SQL Injection via the Number-type…
- March 18, 2026The Booking Calendar plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on…
- March 18, 2026The Visual Feedback, Review & AI Collaboration Tool For WordPress – Atarim plugin for WordPress is vulnerable to unauthorized access…
- March 18, 2026The KiviCare plugin for WordPress is vulnerable to SQL Injection in versions up to, and including, 3.6.16 due to insufficient…
- March 18, 2026The Popup Box plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 6.1.1.…
- March 18, 2026The NEX-Forms – Ultimate Forms Plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability…
- March 18, 2026The Ajax Load More – Infinite Scroll, Load More, & Lazy Load plugin for WordPress is vulnerable to unauthorized access…
- March 18, 2026The Broken Link Notifier plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a…
- March 18, 2026The B Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 2.0.6 due…
- March 18, 2026The WP Sync for Notion – Notion to WordPress plugin for WordPress is vulnerable to unauthorized access due to a…
- March 18, 2026The Enter Addons – Ultimate Template Builder for Elementor plugin for WordPress is vulnerable to Cross-Site Request Forgery in all…
- March 18, 2026The UsersWP – Front-end login form, User Registration, User Profile & Members Directory plugin for WP plugin for WordPress is…
- March 18, 2026The The Grid plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function…
- March 18, 2026The ID Arrays plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions up to, and including, 2.1.2 due…
- March 18, 2026The Bit Form plugin for WordPress is vulnerable to SQL Injection in versions up to, and including, 2.21.10 due to…
