- March 18, 2026The Enter Addons – Ultimate Template Builder for Elementor plugin for WordPress is vulnerable to Cross-Site Request Forgery in all…
- March 18, 2026The UsersWP – Front-end login form, User Registration, User Profile & Members Directory plugin for WP plugin for WordPress is…
- March 18, 2026The The Grid plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function…
- March 18, 2026The ID Arrays plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions up to, and including, 2.1.2 due…
- March 18, 2026The ModelTheme Framework plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function…
- March 18, 2026The WP-CORS plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in…
- March 18, 2026The Sendy plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in…
- March 18, 2026The News Kit Addons For Elementor plugin for WordPress is vulnerable to unauthorized access due to a missing capability check…
- March 18, 2026The WP Recipe Maker plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a…
- March 18, 2026The Popularis Extra plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.2.10. This…
- March 18, 2026The Revision Manager TMC plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.8.22.…
- March 18, 2026The EventPrime – Events Calendar, Bookings and Tickets plugin for WordPress is vulnerable to unauthorized access due to a missing…
- March 18, 2026The Quiz And Survey Master plugin for WordPress is vulnerable to SQL Injection in versions up to, and including, 10.3.1…
- March 18, 2026The Bitcoin Donate Button plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including,…
- March 18, 2026The JAMstack Deployments plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function…
- March 18, 2026The UpsellWP plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in…
- March 18, 2026The imwptip plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.1. This…
- March 18, 2026The Recooty – Job Widget (Old Dashboard) plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up…
- March 18, 2026The Vzaar Media Management plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in all versions up to, and including,…
- March 18, 2026The Interactions – Create Interactive Experiences in the Block Editor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via…
