Vulnerabilities
Stay ahead of the curve with our comprehensive coverage of WordPress plugin and theme vulnerabilities. Don’t let outdated software put your website at risk.
Cross Site Scripting (XSS) Vulnerability in Bus Ticket Booking with Seat Reservation Plugin
A Cross-Site Scripting (XSS) vulnerability has been identified in the WordPress Bus Ticket Booking with Seat Reservation plugin. This vulnerability could allow
Critical Privilege Escalation vulnerability in Stripe Payment Gateway for WooCommerce Plugin
A critical Privilege Escalation vulnerability has been identified in the widely-used Stripe Payment Gateway for WooCommerce Plugin. This vulnerability could allow an
Cross-Site Scripting (XSS) Vulnerability in PostX – Gutenberg Blocks for Post Grid Plugin
We want to draw attention to a high-severity Cross-Site Scripting (XSS) vulnerability discovered in the widely used PostX – Gutenberg Blocks for
High-severity Privilege Escalation vulnerability in WordPress Shop as a Customer for WooCommerce plugin
A Privilege Escalation vulnerability has been identified in the WordPress Shop as a Customer for WooCommerce plugin. This vulnerability could allow an
Critical arbitrary file upload vulnerability in WordPress Job Board and Recruitment Plugin – JobWP plugin
A critical Arbitrary File Upload vulnerability has been uncovered in the widely-used WordPress Job Board and Recruitment Plugin – JobWP Plugin. This
High-severity Broken Access Control Vulnerability in Booster for WooCommerce Plugin
A Broken Access Control vulnerability has been identified in the Booster for WooCommerce Plugin. This vulnerability could allow an attacker to gain
Critical arbitrary file upload vulnerability in WordPress Job Board and Recruitment Plugin
An arbitrary file upload vulnerability has been identified in the WordPress Job Board and Recruitment Plugin – JobWP plugin. The Arbitrary File
Medium-severity Cross-Site Scripting (XSS) vulnerability in WordPress Simple Blog Card plugin
A Cross-Site Scripting (XSS) vulnerability has been identified in the WordPress Simple Blog Card plugin. This vulnerability could allow an attacker to
Immediate Action Required for Media from FTP Plugin
A Broken Access Control vulnerability has been identified in the WordPress Media from FTP plugin. This vulnerability could allow an unprivileged user
SQL Injection Vulnerability in TI WooCommerce Wishlist Plugin
A critical SQL Injection vulnerability has been identified in the TI WooCommerce Wishlist Plugin. This vulnerability could allow an attacker to execute
High-Severity SQL Injection Vulnerability in WPML String Translation Plugin
WordPress security should always be a top priority, especially when it comes to plugin vulnerabilities. Recently, a high-severity SQL Injection vulnerability has
High-Severity XSS Vulnerability in WPCode Plugin
A high-severity Cross-Site Scripting (XSS) vulnerability in the WPCode plugin for WordPress has been discovered by Erwan LR (WPScan), bringing attention to
Critical SQL Injection Vulnerability Found in WordPress WP Database Administrator Plugin
WordPress website owners should take immediate action to address a critical SQL Injection vulnerability in the WP Database Administrator Plugin. This security
Critical BAC vulnerability in WordPress InstaWP Connect Plugin
WordPress website owners must take immediate action to address a critical Broken Access Control vulnerability in the InstaWP Connect Plugin. This security
Critical XSS vulnerability in Molongui Plugin
WordPress website owners should be aware of a high severity Cross-Site Scripting (XSS) vulnerability identified in the Molongui Plugin. This security flaw