- March 18, 2026The LatePoint – Calendar Booking Plugin for Appointments and Events plugin for WordPress is vulnerable to SQL Injection via the…
- March 18, 2026The WP CTA – Sticky CTA Builder, Generate Leads, Promote Sales plugin for WordPress is vulnerable to unauthorized access due…
- March 18, 2026The Email Subscribers by Icegram Express plugin for WordPress is vulnerable to SQL Injection via the 'workflow_ids' parameter in all…
- March 18, 2026The pixfort Core plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions up to, and including, 3.2.22 due…
- March 18, 2026The Pixfort Core plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function…
- March 18, 2026The EventON plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions up to, and including, 4.9.12 due to…
- March 18, 2026The Ultimate Addons for WPBakery Page Builder plugin for WordPress is vulnerable to unauthorized access due to a missing capability…
- March 18, 2026The WP Accessibility plugin for WordPress is vulnerable to Stored DOM-Based Cross-Site Scripting via the 'alt' attribute of images processed…
- March 18, 2026The Japanized for WooCommerce plugin for WordPress is vulnerable to Improper Authentication in versions up to, and including, 2.8.4. This…
- March 18, 2026The MailArchiver plugin for WordPress is vulnerable to SQL Injection via the ‘logid’ parameter in all versions up to, and…
