WordPress plugin security
Content Control Vulnerability – The Ultimate Content Restriction Plugin! Restrict Content, Create Conditional Blocks & More – Missing Authorization to Sensitive Information Exposure – CVE-2024-0615 | WordPress Plugin Vulnerability Report
Plugin Name: Content Control – The Ultimate Content Restriction Plugin! Restrict Content, Create Conditional Blocks & More Key Information: Software Type: Plugin Software Slug: content-control Software Status: Active Software Author: codeatlantic Software Downloads: 548,038 Active Installs: 40,000 Last Updated: April 29, 2024 Patched Versions: 2.2.0 Affected Versions: <= 2.1.0 Vulnerability Details: Name: Content Control <=…
Forminator Vulnerability – Contact Form, Payment Form & Custom Form Builder – Authenticated (Contributor+) Stored Cross-Site Scripting via forminator_form Shortcode – CVE-2024-3053 | WordPress Plugin Vulnerability Report
Plugin Name: Forminator – Contact Form, Payment Form & Custom Form Builder Key Information: Software Type: Plugin Software Slug: forminator Software Status: Active Software Author: wpmudev Software Downloads: 6,757,114 Active Installs: 500,000 Last Updated: April 16, 2024 Patched Versions: 1.29.3 Affected Versions: <= 1.29.2 Vulnerability Details: Name: Forminator – Contact Form, Payment Form & Custom…
ElementsKit Elementor addons Vulnerability – Authenticated (Contributor+) Stored Cross-Site Scripting – CVE-2024-1239 | WordPress Plugin Vulnerability Report
Plugin Name: ElementsKit Elementor addons Key Information: Software Type: Plugin Software Slug: elementskit-lite Software Status: Active Software Author: xspeedstudio Software Downloads: 16,983,084 Active Installs: 1,000,000 Last Updated: March 19, 2024 Patched Versions: 3.0.5 Affected Versions: <= 3.0.4 Vulnerability Details: Name: ElementsKit Elementor addons <= 3.0.4 Title: Authenticated (Contributor+) Stored Cross-Site Scripting Type: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N CVE: CVE-2024-1239…