Stay up to date with WordPress Security
Cross-Site Scripting (XSS) vulnerability in WordPress Funnelforms Free Plugin
A Cross-Site Scripting (XSS) vulnerability has been identified in the WordPress Funnelforms Free plugin. This vulnerability could allow a malicious actor to
SQL Injection vulnerability in WordPress wpDiscuz Plugin
A Critical Severity SQL Injection vulnerability has been identified in the WordPress wpDiscuz Plugin. This vulnerability could allow a malicious actor to
Remote Code Execution (RCE) vulnerability in WordPress Allow PHP in Posts and Pages Plugin
A Critical Severity Remote Code Execution (RCE) vulnerability has been identified in the WordPress Allow PHP in Posts and Pages Plugin. This
SQL Injection vulnerability in WordPress Horizontal Scrolling Announcement Plugin
A SQL Injection vulnerability has been identified in the WordPress Horizontal Scrolling Announcement Plugin. This vulnerability could allow a malicious actor to
Server-Side Request Forgery (SSRF) vulnerability in WordPress Dropbox Folder Share Plugin
A Server-Side Request Forgery (SSRF) vulnerability has been identified in the WordPress Dropbox Folder Share Plugin. This vulnerability could allow a malicious
SQL Injection vulnerability in WordPress Welcart e-Commerce Plugin
A SQL Injection vulnerability has been identified in the WordPress Welcart e-Commerce plugin. This vulnerability could allow a malicious actor to directly
Privilege Escalation vulnerability in WordPress Essential Addons for Elementor Plugin
A Privilege Escalation vulnerability has been identified in the WordPress Essential Addons for Elementor Plugin. This vulnerability could allow a malicious actor
Cross-Site Scripting (XSS) vulnerability in WordPress WS Facebook Like Box Widget Plugin
A Cross-Site Scripting (XSS) vulnerability has been identified in the WordPress WS Facebook Like Box Widget Plugin. This vulnerability could allow a
PHP Object Injection vulnerability in WordPress Essential Blocks for Gutenberg Plugin
A PHP Object Injection vulnerability has been identified in the WordPress Essential Blocks for Gutenberg Plugin. This vulnerability could allow a malicious
PHP Object Injection vulnerability in WordPress Essential Blocks Pro Plugin
A PHP Object Injection vulnerability has been identified in the WordPress Essential Blocks Pro Plugin. This vulnerability could allow a malicious actor
Cross-Site Scripting (XSS) vulnerability in WordPress Awesome Weather Widget Plugin
A Cross-Site Scripting (XSS) vulnerability has been identified in the WordPress Awesome Weather Widget Plugin. This vulnerability could allow a malicious actor
Privilege Escalation vulnerability in WordPress BAN Users Plugin
A Privilege Escalation vulnerability has been identified in the WordPress BAN Users Plugin. This vulnerability could allow a malicious actor to escalate
Insecure Direct Object References (IDOR) vulnerability in WordPress Simplr Registration Form Plus+ Plugin
An Insecure Direct Object References (IDOR) vulnerability has been identified in the WordPress Simplr Registration Form Plus+ Plugin. This vulnerability could allow
Cross-Site Request Forgery (CSRF) vulnerability in WordPress Login with phone number Plugin
A Cross-Site Request Forgery (CSRF) vulnerability has been identified in the WordPress Login with phone number Plugin. This vulnerability could allow a
Local File Inclusion vulnerability in WordPress Dropbox Folder Share Plugin
A Local File Inclusion vulnerability has been identified in the WordPress Dropbox Folder Share Plugin. This vulnerability could allow a malicious actor