Stay up to date with WordPress Security
Cross-Site Scripting (XSS) vulnerability in WordPress Awesome Weather Widget Plugin
A Cross-Site Scripting (XSS) vulnerability has been identified in the WordPress Awesome Weather Widget Plugin. This vulnerability could allow a malicious actor
Privilege Escalation vulnerability in WordPress BAN Users Plugin
A Privilege Escalation vulnerability has been identified in the WordPress BAN Users Plugin. This vulnerability could allow a malicious actor to escalate
Insecure Direct Object References (IDOR) vulnerability in WordPress Simplr Registration Form Plus+ Plugin
An Insecure Direct Object References (IDOR) vulnerability has been identified in the WordPress Simplr Registration Form Plus+ Plugin. This vulnerability could allow
Cross-Site Request Forgery (CSRF) vulnerability in WordPress Login with phone number Plugin
A Cross-Site Request Forgery (CSRF) vulnerability has been identified in the WordPress Login with phone number Plugin. This vulnerability could allow a
Local File Inclusion vulnerability in WordPress Dropbox Folder Share Plugin
A Local File Inclusion vulnerability has been identified in the WordPress Dropbox Folder Share Plugin. This vulnerability could allow a malicious actor
Cross-Site Request Forgery (CSRF) vulnerability in WordPress File Manager Pro Plugin
A Cross-Site Request Forgery (CSRF) vulnerability has been identified in the WordPress File Manager Pro Plugin. This vulnerability could allow a malicious
SQL Injection vulnerability in WordPress WooCommerce Beta Tester Plugin
An SQL Injection vulnerability has been identified in the WordPress WooCommerce Beta Tester Plugin. This vulnerability could allow a malicious actor to
PHP Object Injection vulnerability in WordPress Read More & Accordion Plugin
A PHP Object Injection vulnerability has been identified in the WordPress Read More & Accordion Plugin. This vulnerability could allow a malicious
Privilege Escalation vulnerability in WordPress ProfilePress Plugin
A Privilege Escalation vulnerability has been identified in the WordPress ProfilePress Plugin. This vulnerability could allow a malicious actor with low privileges
Privilege Escalation vulnerability in WordPress MasterStudy LMS Plugin
A high-severity vulnerability has been identified in the WordPress MasterStudy LMS Plugin. This vulnerability could allow a malicious actor with low privileges
SQL Injection vulnerability in WordPress Slimstat Analytics Plugin
A SQL Injection vulnerability has been identified in the WordPress Slimstat Analytics plugin. This vulnerability could allow a malicious actor to directly
Arbitrary File Upload vulnerability in WordPress My Account Page Editor for WooCommerce Plugin
An Arbitrary File Upload vulnerability has been identified in the WordPress My Account Page Editor for WooCommerce Plugin. This vulnerability allows an
Arbitrary File Upload vulnerability in WordPress Form Maker by 10Web Plugin
An Arbitrary File Upload vulnerability has been identified in the WordPress Form Maker by 10Web Plugin. This vulnerability allows an attacker to
Cross-Site Scripting (XSS) vulnerability in WordPress Locatoraid Store Locator Plugin
A Cross-Site Scripting (XSS) vulnerability has been identified in the WordPress Locatoraid Store Locator Plugin. This vulnerability could allow an attacker to
Remote Code Execution (RCE) vulnerability in WordPress Media Library Assistant Plugin
A Remote Code Execution (RCE) vulnerability has been identified in the WordPress Media Library Assistant Plugin. This vulnerability could allow an attacker