- March 18, 2026The Real 3D FlipBook plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a…
- March 18, 2026The Product Options and Price Calculation Formulas for WooCommerce – Uni CPO (Premium) plugin for WordPress is vulnerable to unauthorized…
- March 18, 2026The NEX-Forms plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions up to, and including, 9.1.7 due to…
- March 18, 2026The WCFM Membership – WooCommerce Memberships for Multivendor Marketplace plugin for WordPress is vulnerable to Insecure Direct Object Reference in…
- March 18, 2026The WCFM Marketplace – Multivendor Marketplace for WooCommerce plugin for WordPress is vulnerable to Insecure Direct Object Reference in all…
- March 18, 2026The PopupKit plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 2.2.0. This is…
- March 18, 2026The The Events Calendar Shortcode & Block plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's `ecs-list-events`…
- March 18, 2026The Visitor Maps Extended Referer Field plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions up to, and…
- March 18, 2026The Business Template Blocks for WPBakery (Visual Composer) Page Builder plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in…
- March 18, 2026The Primer MyData for Woocommerce plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including,…
- March 18, 2026The WooCommerce Bulk Product Editor plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on…
- March 18, 2026The Whizz Plugins plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions up to, and including, 1.9 due…
- March 18, 2026The Visual Feedback, Review & AI Collaboration Tool For WordPress – Atarim plugin for WordPress is vulnerable to unauthorized access…
- March 18, 2026The Timeline Event History plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions up to, and including, 3.2…
- March 18, 2026The Simple File List plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 6.1.15.…
- March 18, 2026The Fluent Forms plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the AI Form Builder module in all…
- March 18, 2026The Cliengo – Chatbot plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a…
- March 18, 2026The YayCurrency – WooCommerce Multi-Currency Switcher plugin for WordPress is vulnerable to unauthorized modification of data due to a missing…
- March 18, 2026The NEX-Forms – Ultimate Forms Plugin for WordPress plugin for WordPress is vulnerable to unauthorized modification of data due to…
- March 18, 2026The Thim Kit for Elementor – Pre-built Templates & Widgets for Elementor plugin for WordPress is vulnerable to unauthorized access…
