Stay up to date with WordPress Security
High-Severity Vulnerability Detected in Download CloudNet360 Plugin
A Cross-Site Scripting (XSS) vulnerability has been discovered in the WordPress Download CloudNet360 plugin. This vulnerability could allow a malicious actor to
Critical Settings Change Vulnerability in Deeper Comments Plugin
A critical Settings Change vulnerability has been identified in the Deeper Comments plugin. This vulnerability could allow a malicious actor to change
Critical Broken Access Control Vulnerability in Security & Malware scan by CleanTalk Plugin
A critical Broken Access Control vulnerability has been identified in the Security & Malware scan by CleanTalk plugin. This vulnerability could allow
Critical XSS Vulnerability in Smart Online Order for Clover Plugin
A critical Cross-Site Scripting (XSS) vulnerability has been identified in the Smart Online Order for Clover plugin. This vulnerability could allow a
WordPress Advanced Local Pickup for WooCommerce Plugin SQL Injection Vulnerability
A SQL Injection vulnerability has been discovered in the WordPress Advanced Local Pickup for WooCommerce Plugin. This vulnerability could allow a malicious
WordPress Soisy Pagamento Rateale Plugin Broken Access Control Vulnerability
A Broken Access Control vulnerability has been discovered in the WordPress Soisy Pagamento Rateale Plugin. This vulnerability could allow an unprivileged user
SQL Injection vulnerability in WordPress ChatBot Plugin
A critical SQL Injection vulnerability has been identified in the WordPress AI ChatBot plugin. This vulnerability could allow a malicious actor to
Arbitrary File Deletion vulnerability in WordPress ChatBot Plugin
A critical Arbitrary File Deletion vulnerability has been identified in the WordPress AI ChatBot plugin. This vulnerability could allow a malicious actor
SQL Injection vulnerability in WordPress iPanorama 360 WordPress Virtual Tour Builder Plugin
A critical SQL Injection vulnerability has been identified in the WordPress iPanorama 360 WordPress Virtual Tour Builder Plugin. This vulnerability could allow
Directory Traversal vulnerability in WordPress ChatBot Plugin
A Directory Traversal vulnerability has been identified in the WordPress AI ChatBot plugin. This vulnerability could allow a malicious actor to see
Local File Inclusion (LFI) vulnerability in WordPress Ultimate Addons for WPBakery Page Builder Plugin
A Local File Inclusion (LFI) vulnerability has been identified in the WordPress Ultimate Addons for WPBakery Page Builder Plugin. This vulnerability could
Cross-Site Scripting (XSS) vulnerability in WordPress Motors – Car Dealer & Classified Ads Plugin
A Cross-Site Scripting (XSS) vulnerability has been identified in the WordPress Motors – Car Dealer & Classified Ads Plugin. This vulnerability could
Cross-Site Request Forgery (CSRF) vulnerability in WordPress Webpushr Plugin
A Cross-Site Request Forgery (CSRF) vulnerability has been identified in the WordPress Webpushr Plugin. This vulnerability could allow a malicious actor to
Cross-Site Scripting (XSS) vulnerability in WordPress Grid Plus Plugin
A Cross-Site Scripting (XSS) vulnerability has been identified in the WordPress Grid Plus Plugin. This vulnerability could allow a malicious actor to
Broken Access Control vulnerability in WordPress BetterLinks Plugin
A Broken Access Control vulnerability has been identified in the WordPress BetterLinks Plugin. This vulnerability could allow an unprivileged user to execute