web management

Slider, Gallery, and Carousel by MetaSlider Vulnerability – Responsive WordPress Slideshows – Authenticated (Contributor+) Stored Cross-Site Scripting via metaslider Shortcode – CVE-2024-3285 | WordPress Plugin Vulnerability Report

By Your WP Guy / Apr 10, 2024

Plugin Name: Slider, Gallery, and Carousel by MetaSlider – Responsive WordPress Slideshows Key Information: Software Type: Plugin Software Slug: ml-slider Software Status: Active Software Author: metaslider Software Downloads: 27,208,376 Active Installs: 600,000 Last Updated: April 22, 2024 Patched Versions: 3.70.1 Affected Versions: <= 3.70.0 Vulnerability Details: Name: Slider, Gallery, and Carousel by MetaSlider <= 3.70.0…

Read More

Contact Form Plugin by Fluent Forms Vulnerability- Authenticated (Contributor+) Stored Cross-Site Scripting – CVE-2023-6957 | WordPress Plugin Vulnerability Report 

By Your WP Guy / Mar 5, 2024

Plugin Name: Contact Form Plugin by Fluent Forms for Quiz, Survey, and Drag & Drop WP Form Builder Key Information: Software Type: Plugin Software Slug: fluentform Software Status: Active Software Author: techjewel Software Downloads: 5,973,827 Active Installs: 400,000 Last Updated: March 7, 2024 Patched Versions: 5.1.10 Affected Versions: <= 5.1.9 Vulnerability Details: Name: Fluent Forms…

Read More

SiteOrigin Widgets Bundle Vulnerability – Authenticated (Contributor+) Stored Cross-Site Scripting – CVE-2024-1723 | WordPress Plugin Vulnerability Report

By Your WP Guy / Mar 4, 2024

Plugin Name: SiteOrigin Widgets Bundle Key Information: Software Type: Plugin Software Slug: so-widgets-bundle Software Status: Active Software Author: gpriday Software Downloads: 38,486,908 Active Installs: 600,000 Last Updated: March 7, 2024 Patched Versions: 1.58.8 Affected Versions: <= 1.58.7 Vulnerability Details: Name: SiteOrigin Widgets Bundle <= 1.58.7 Title: Authenticated (Contributor+) Stored Cross-Site Scripting Type: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N CVE: CVE-2024-1723…

Read More

Custom Field Suite Vulnerability- Authenticated (Admin+) Stored Cross-Site Scripting – CVE-2024-0689 | WordPress Plugin Vulnerability Report

By Your WP Guy / Feb 28, 2024

Plugin Name: Custom Field Suite Key Information: Software Type: Plugin Software Slug: custom-field-suite Software Status: Active Software Author: mgibbs189 Software Downloads: 590,448 Active Installs: 50,000 Last Updated: February 28, 2024 Patched Versions: 2.6.5 Affected Versions: <= 2.6.4 Vulnerability Details: Name: Custom Field Suite <= 2.6.4 Title: Authenticated (Admin+) Stored Cross-Site Scripting Type: CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N CVE: CVE-2024-0689…

Read More

The High Cost of Waiting: Real-world Impacts of Slow Support Responses

By Your WP Guy / Sep 19, 2023

Your website crashes during a sale. Pages load at a crawl. Online forms stop working. You reach out for support, only to wait helplessly as the precious minutes tick by without resolution. The lackadaisical response from your website management team obstructs progress and drains productivity across your business. As a small business owner, you feel…

Read More