Vulnerabilities
Stay ahead of the curve with our comprehensive coverage of WordPress plugin and theme vulnerabilities. Don’t let outdated software put your website at risk.
Cross-Site Scripting (XSS) vulnerability in WordPress PeproDev CF7 Database Plugin
A Cross-Site Scripting (XSS) vulnerability has been identified in the WordPress PeproDev CF7 Database Plugin. This vulnerability could allow an attacker to
Cross-Site Scripting (XSS) vulnerability in WordPress Order Delivery Date for WooCommerce Plugin
A high-severity vulnerability has been identified in the WordPress Order Delivery Date for WooCommerce Plugin. This security concern, originally discovered and reported
Privilege Escalation vulnerability in WordPress GiveWP Plugin
A Privilege Escalation vulnerability has been identified in the WordPress GiveWP Plugin. This vulnerability could allow a malicious actor with low privileges
Cross-Site Scripting (XSS) vulnerability in WordPress WooCommerce PensoPay Plugin
A Cross-Site Scripting (XSS) vulnerability has been identified in the WordPress WooCommerce PensoPay plugin. This vulnerability could allow a malicious actor to
SQL Injection vulnerability in WordPress Woocommerce Support System Plugin
A SQL Injection vulnerability has been identified in the WordPress Woocommerce Support System Plugin. This vulnerability could allow an attacker to inject
Cross-Site Scripting (XSS) vulnerability in WordPress User Feedback Plugin
A High Severity Cross-Site Scripting (XSS) vulnerability has been identified in the User Feedback Plugin. The XSS vulnerability discovered by Revan Arifio
SQL Injection vulnerability in WordPress WP Project Manager Plugin
A SQL Injection vulnerability has been identified in the WordPress WP Project Manager Plugin. This vulnerability could allow an attacker to inject
Arbitrary File Upload vulnerability in WordPress Export Import Menus Plugin
An Arbitrary File Upload vulnerability has been identified in the WordPress Export Import Menus Plugin. This vulnerability allows an attacker to upload
Broken Access Control vulnerability in WordPress Surfer Plugin
A Broken Access Control vulnerability has been identified in the WordPress Surfer Plugin. This vulnerability allows an unprivileged user to perform actions
Cross-Site Scripting (XSS) vulnerability in WordPress Photo Gallery Slideshow & Masonry Tiled Gallery Plugin
A Cross-Site Scripting (XSS) vulnerability has been identified in the WordPress Photo Gallery Slideshow & Masonry Tiled Gallery Plugin. This vulnerability allows
Cross-Site Scripting (XSS) vulnerability in WordPress WP-dTree Plugin
A Cross-Site Scripting (XSS) vulnerability has been identified in the WordPress WP-dTree Plugin. This vulnerability allows an attacker to inject malicious scripts
Cross-Site Scripting (XSS) vulnerability in WordPress WP Bannerize Pro Plugin
A Cross-Site Scripting (XSS) vulnerability has been identified in the WordPress WP Bannerize Pro Plugin. This vulnerability allows an attacker to inject
Broken Access Control vulnerability in WordPress All-in-One WP Migration Dropbox Extension Plugin
A Broken Access Control vulnerability has been identified in the WordPress All-in-One WP Migration Dropbox Extension Plugin. This vulnerability allows an unprivileged
Broken Access Control vulnerability in WordPress All-in-One WP Migration Google Drive Extension Plugin
At the core of our concerns lies WordPress security and the identification of potential plugin vulnerabilities. Today, we are sounding the alarm
Cross-Site Scripting (XSS) vulnerability in WordPress Social Media & Share Icons Plugin
A Cross-Site Scripting (XSS) vulnerability has been identified in the WordPress Social Media & Share Icons Plugin. This vulnerability allows an attacker