Vulnerabilities
Stay ahead of the curve with our comprehensive coverage of WordPress plugin and theme vulnerabilities. Don’t let outdated software put your website at risk.
Remote Code Execution (RCE) vulnerability in WordPress File Manager Pro Plugin
A Remote Code Execution (RCE) vulnerability has been identified in the WordPress File Manager Pro Plugin. This vulnerability could allow a malicious
Cross-Site Scripting (XSS) vulnerability in WordPress Spider Facebook Plugin
A Cross-Site Scripting (XSS) vulnerability has been identified in the WordPress Spider Facebook Plugin. This vulnerability could allow a malicious actor to
Cross-Site Scripting (XSS) vulnerability in WordPress Conversios.io Plugin
The concern revolves around a Cross Site Scripting (XSS) vulnerability detected in the Conversios.io Plugin for WordPress. This vulnerability could allow a
SQL Injection vulnerability in WordPress Bookly Plugin
A critical SQL Injection vulnerability has been identified in the WordPress Bookly Plugin. This vulnerability could allow a malicious actor to directly
SQL Injection vulnerability in WordPress WPSchoolPress Plugin
A critical SQL Injection vulnerability has been identified in the WordPress WPSchoolPress Plugin. This vulnerability could allow a malicious actor to directly
Critical XSS Vulnerability in WooCommerce PDF Invoice Builder Plugin
A Cross-Site Scripting (XSS) vulnerability has been identified in the WooCommerce PDF Invoice Builder plugin. This vulnerability could allow a malicious actor
WordPress The Awesome Feed – Custom Feed Plugin Cross-Site Scripting (XSS) Vulnerability
A Cross-Site Scripting (XSS) vulnerability has been discovered in the WordPress The Awesome Feed – Custom Feed Plugin. This vulnerability could allow
High-Severity Vulnerability Uncovered in Protección de Datos RGPD Plugin
A critical Cross-Site Scripting (XSS) vulnerability has been identified in the Protección de Datos RGPD plugin. This vulnerability could allow a malicious
High-Severity XSS Vulnerability Found in Add Shortcodes Actions And Filters Plugin
A critical Cross-Site Scripting (XSS) vulnerability has been identified in the Add Shortcodes Actions And Filters plugin. This plugin has been closed
Critical XSS Vulnerability in Contact Form Builder, Contact Widget Plugin
A critical Cross-Site Scripting (XSS) vulnerability has been identified in the Contact Form Builder, Contact Widget plugin. This vulnerability could allow a
Critical Cross-Site Scripting Vulnerability in EG-Attachments Plugin
A critical Cross-Site Scripting (XSS) vulnerability has been identified in the EG-Attachments plugin. This vulnerability could allow a malicious actor to inject
WordPress Lava Directory Manager Plugin Cross-Site Scripting (XSS) Vulnerability
A Cross-Site Scripting (XSS) vulnerability has been discovered in the WordPress Lava Directory Manager Plugin. This vulnerability could allow a malicious actor
WordPress Icons Font Loader Plugin SQL Injection Vulnerability
A SQL Injection vulnerability has been discovered in the WordPress Icons Font Loader Plugin. This vulnerability could allow a malicious actor to
WordPress WooCommerce Ninja Forms Product Add-ons Plugin Arbitrary File Upload Vulnerability
A critical severity Arbitrary File Upload vulnerability has been discovered in the WordPress WooCommerce Ninja Forms Product Add-ons plugin. This vulnerability could
Critical Sensitive Data Exposure Vulnerability in WordPress WPvivid Backup and Migration Plugin
A Sensitive Data Exposure vulnerability has been discovered in the WordPress WPvivid Backup and Migration plugin. This vulnerability could allow an attacker