- March 18, 2026The Custom Logo plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to,…
- March 18, 2026The Theater for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 0.19…
- March 18, 2026The WooCommerce Coming Soon Product with Countdown plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to,…
- March 18, 2026The EM Cost Calculator plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 2.3.1.…
- March 18, 2026The Tutor LMS – eLearning and online course solution plugin for WordPress is vulnerable to unauthorized access due to a…
- March 18, 2026The Responsive Zoom In/Out Slider WordPress Plugin plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions up to,…
- March 18, 2026The Site Suggest plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function…
- March 18, 2026The LambertGroup - AllInOne - Banner with Playlist plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions up…
- March 18, 2026The The Events Calendar plugin for WordPress is vulnerable to unauthorized modification of data and loss of data due to…
- March 18, 2026The Responsive Lightbox & Gallery plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and…
- March 18, 2026The Rise Blocks – A Complete Gutenberg Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the…
- March 18, 2026The Secure Copy Content Protection and Content Locking plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's…
- March 18, 2026The WP Recipe Maker plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check…
- March 18, 2026The Post Duplicator plugin for WordPress is vulnerable to unauthorized arbitrary protected post meta insertion in all versions up to,…
- March 18, 2026The Bakery Autoresponder Addon plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a…
- March 18, 2026The Scientific and Interactive Blocks – inseri core plugin for WordPress is vulnerable to unauthorized access due to a missing…
- March 18, 2026The Disable Admin Notices – Hide Dashboard Notifications plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions…
- March 18, 2026The Responsive Posts Carousel WordPress Plugin plugin for WordPress is vulnerable to unauthorized access due to a missing capability check…
- March 18, 2026The WeDesignTech Ultimate Booking Addon plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on…
- March 18, 2026The Awa Plugins plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions up to, and including, 1.4.4 due…
