Stay up to date with WordPress Security
SQL Injection Vulnerability in TI WooCommerce Wishlist Plugin
A critical SQL Injection vulnerability has been identified in the TI WooCommerce Wishlist Plugin. This vulnerability could allow an attacker to execute
High-Severity SQL Injection Vulnerability in WPML String Translation Plugin
WordPress security should always be a top priority, especially when it comes to plugin vulnerabilities. Recently, a high-severity SQL Injection vulnerability has
High-Severity XSS Vulnerability in WPCode Plugin
A high-severity Cross-Site Scripting (XSS) vulnerability in the WPCode plugin for WordPress has been discovered by Erwan LR (WPScan), bringing attention to
Critical SQL Injection Vulnerability Found in WordPress WP Database Administrator Plugin
WordPress website owners should take immediate action to address a critical SQL Injection vulnerability in the WP Database Administrator Plugin. This security
Critical BAC vulnerability in WordPress InstaWP Connect Plugin
WordPress website owners must take immediate action to address a critical Broken Access Control vulnerability in the InstaWP Connect Plugin. This security
Critical XSS vulnerability in Molongui Plugin
WordPress website owners should be aware of a high severity Cross-Site Scripting (XSS) vulnerability identified in the Molongui Plugin. This security flaw
Critical XSS vulnerability in User Email Verification for WooCommerce Plugin
WordPress website owners using the User Email Verification for WooCommerce Plugin: A high severity Cross-Site Scripting (XSS) vulnerability has been identified, posing
High severity Cross-Site Scripting (XSS) vulnerability in JobWP Plugin
Attention WordPress website owners using the Job Board and Recruitment Plugin – JobWP Plugin: A high severity Cross-Site Scripting (XSS) vulnerability has
High-Severity XSS Vulnerability in AGP Font Awesome Collection Plugin
WordPress security remains a top priority as websites are frequently targeted by malicious actors exploiting vulnerabilities in plugins. In a recent discovery,
Critical Remote Code Execution (RCE) vulnerability in PHP Everywhere plugin
A critical Remote Code Execution (RCE) vulnerability has been identified in the PHP Everywhere plugin. This vulnerability could allow an attacker to
Cross-Site Request Forgery (CSRF) Vulnerability Found in WordPress tagDiv Composer Plugin
WordPress website administrators should be aware of a high severity Cross-Site Request Forgery (CSRF) vulnerability detected in the tagDiv Composer Plugin. This
Urgent Action Needed for Quasar Form Plugin
WordPress website owners using the Quasar Form plugin: An alarming high-severity SQL Injection vulnerability has been detected, posing significant risks to the
Urgent Action Required for Custom Field Template Plugin
Attention WordPress website owners using the Custom Field Template plugin: A high-severity Cross-Site Scripting (XSS) vulnerability has been identified, posing significant risks
Critical Broken Access Control Vulnerability in Convert Pro Plugin
WordPress website owners using the Convert Pro plugin are urged to take immediate action to address a critical Broken Access Control vulnerability,
High-severity Arbitrary File Download vulnerability in JupiterX Core plugin
Attention WordPress website owners using the JupiterX Core plugin: A high-severity Arbitrary File Download vulnerability has been identified, posing significant risks to