- March 18, 2026The Web Push Notifications – Webpushr plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to,…
- March 18, 2026The Share This Image plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a…
- March 18, 2026The Schedula – Smart Appointment Booking plugin for WordPress is vulnerable to unauthorized access due to a missing capability check…
- March 18, 2026The Integrate Google Drive plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a…
- March 18, 2026The WP Job Portal – AI-Powered Recruitment System for Company or Job Board website plugin for WordPress is vulnerable to…
- March 18, 2026The Materialis Companion plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function…
- March 18, 2026The Save as PDF Plugin by PDFCrowd plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘options’ parameter…
- March 18, 2026The WPElemento Importer plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function…
- March 18, 2026The WP Bannerize Pro plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a…
- March 18, 2026The WP Go Maps (formerly WP Google Maps) plugin for WordPress is vulnerable to unauthorized modification of data due to…
- March 18, 2026The Automatic Featured Images from Videos plugin for WordPress is vulnerable to unauthorized access due to a missing capability check…
- March 18, 2026The CubeWP – All-in-One Dynamic Content Framework plugin for WordPress is vulnerable to Information Exposure in all versions up to,…
- March 18, 2026The Latest Post Shortcode plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a…
- March 18, 2026The Wired Impact Volunteer Management plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on…
- March 18, 2026The Term Order plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.1.0. This…
- March 18, 2026The HD Quiz plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function…
- March 18, 2026The Postalicious plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and…
- March 18, 2026The LeadBI Plugin for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'form_id' parameter of the…
- March 18, 2026The Timeline Event History plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the `id` parameter in all versions…
- March 18, 2026The Friendly Functions for Welcart plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and…
