WP Plugin Vulnerabilities Image - Page Builder by SiteOrigin Vulnerability - Authenticated (Contributor+) Stored Cross-Site Scripting via Legacy Image Widget - CVE-2024-2202 | WordPress Plugin Vulnerability Report - Vulnerabilities

Page Builder by SiteOrigin Vulnerability – Authenticated (Contributor+) Stored Cross-Site Scripting via Legacy Image Widget – CVE-2024-2202 | WordPress Plugin Vulnerability Report

March 22, 2024
Posted in Vulnerabilities, Security

Plugin Name: Page Builder by SiteOrigin Key Information: Software Type: Plugin Software Slug: siteorigin-panels Software Status: Active Software Author: gpriday…

Read about this Latest WordPress Vulnerability
WP Plugin Vulnerabilities Image - Embed PDF, Google Docs, Vimeo, Wistia, Embed YouTube Videos, Audios, Maps & Embed Any Documents in Gutenberg & Elementor - Authenticated (Contributor+) Stored Cross-site Scripting via 'embedpress_doc_custom_color' - CVE-2024-2688 | WordPress Plugin Vulnerability Report - EmbedPress - Vulnerabilities

Embed PDF, Google Docs, Vimeo, Wistia, Embed YouTube Videos, Audios, Maps & Embed Any Documents in Gutenberg & Elementor – Authenticated (Contributor+) Stored Cross-site Scripting via ’embedpress_doc_custom_color’ – CVE-2024-2688 | WordPress Plugin Vulnerability Report – EmbedPress

March 22, 2024
Posted in Vulnerabilities, Security

Plugin Name: EmbedPress – Embed PDF, Google Docs, Vimeo, Wistia, Embed YouTube Videos, Audios, Maps & Embed Any Documents in…

Read about this Latest WordPress Vulnerability

Blocksy Companion Vulnerability- Authenticated (Contributor+) Stored Cross-Site Scripting – CVE-2024-2392 |WordPress Plugin Vulnerability Report

March 21, 2024
Posted in Security, Vulnerabilities

Plugin Name: Blocksy Companion Key Information: Software Type: Plugin Software Slug: blocksy-companion Software Status: Active Software Author: creativethemeshq Software Downloads:…

Read about this Latest WordPress Vulnerability
WP Plugin Vulnerabilities Image - WooCommerce PDF Invoices, Packing Slips, Delivery Notes, and Shipping Labels - Unauthenticated Stored Cross-Site Scripting - CVE-2024-0957| WordPress Plugin Vulnerability Report - Vulnerabilities

WooCommerce PDF Invoices, Packing Slips, Delivery Notes, and Shipping Labels – Unauthenticated Stored Cross-Site Scripting – CVE-2024-0957| WordPress Plugin Vulnerability Report

March 21, 2024
Posted in Vulnerabilities, Security

Plugin Name: WooCommerce PDF Invoices, Packing Slips, Delivery Notes, and Shipping Labels Key Information: Software Type: Plugin Software Slug: print-invoices-packing-slip-labels-for-woocommerce…

Read about this Latest WordPress Vulnerability
WP Plugin Vulnerabilities Image - Advanced Access Manager Vulnerability– Restricted Content, Users & Roles, Enhanced Security and More - Reflected Cross-Site Scripting - CVE-2024-29127 | WordPress Plugin Vulnerability Report - Vulnerabilities

Advanced Access Manager Vulnerability– Restricted Content, Users & Roles, Enhanced Security and More – Reflected Cross-Site Scripting – CVE-2024-29127 | WordPress Plugin Vulnerability Report

March 20, 2024
Posted in Vulnerabilities, Security

Plugin Name: Advanced Access Manager – Restricted Content, Users & Roles, Enhanced Security and More Key Information: Software Type: Plugin…

Read about this Latest WordPress Vulnerability
WP Plugin Vulnerabilities Image - Appointment Booking Calendar Vulnerability— Simply Schedule Appointments Booking Plugin - Authenticated (Subscriber+) SQL Injection - CVE-2024-2341 |WordPress Plugin Vulnerability Report - Vulnerabilities

Appointment Booking Calendar Vulnerability— Simply Schedule Appointments Booking Plugin – Authenticated (Subscriber+) SQL Injection – CVE-2024-2341 |WordPress Plugin Vulnerability Report

March 20, 2024
Posted in Vulnerabilities, Security

Plugin Name: Appointment Booking Calendar – Simply Schedule Appointments Booking Plugin Key Information: Software Type: Plugin Software Slug: simply-schedule-appointments Software…

Read about this Latest WordPress Vulnerability
WP Plugin Vulnerabilities Image - Permalink Manager Pro Vulnerability- Missing Authorization via get_uri_editor - CVE-2024-2543 |WordPress Plugin Vulnerability Report - Vulnerabilities

Permalink Manager Pro Vulnerability- Missing Authorization via get_uri_editor – CVE-2024-2543 |WordPress Plugin Vulnerability Report

March 20, 2024
Posted in Vulnerabilities, Security

Plugin Name: Permalink Manager Pro Key Information: Software Type: Plugin Software Slug: permalink-manager Software Status: Active Software Author: mbis Software…

Read about this Latest WordPress Vulnerability
WP Plugin Vulnerabilities Image - Essential Blocks Vulnerability – Page Builder Gutenberg Blocks, Patterns & Templates - Authenticated (Contributor+) Stored Cross-Site Scripting - CVE-2024-2255 |WordPress Plugin Vulnerability Report - Vulnerabilities

Essential Blocks Vulnerability – Page Builder Gutenberg Blocks, Patterns & Templates – Authenticated (Contributor+) Stored Cross-Site Scripting – CVE-2024-2255 |WordPress Plugin Vulnerability Report

March 19, 2024
Posted in Vulnerabilities, Security

Plugin Name: Essential Blocks – Page Builder Gutenberg Blocks, Patterns & Templates Key Information: Software Type: Plugin Software Slug: essential-blocks…

Read about this Latest WordPress Vulnerability
WP Plugin Vulnerabilities Image - GiveWP Vulnerability– Donation Plugin and Fundraising Platform - Authenticated (Contributor+) Stored Cross-Site Scripting - CVE-2024-1424 | WordPress Plugin Vulnerability Report - Vulnerabilities

GiveWP Vulnerability– Donation Plugin and Fundraising Platform – Authenticated (Contributor+) Stored Cross-Site Scripting – CVE-2024-1424 | WordPress Plugin Vulnerability Report

March 19, 2024
Posted in Vulnerabilities, Security

Plugin Name: GiveWP – Donation Plugin and Fundraising Platform Key Information: Software Type: Plugin Software Slug: give Software Status: Active…

Read about this Latest WordPress Vulnerability
WP Plugin Vulnerabilities Image - Smart Custom Fields Vulnerability - Missing Authorization to Authenticated (Subscriber+) Post Content Disclosure - CVE-2024-1995 | WordPress Plugin Vulnerability Report - Vulnerabilities

Smart Custom Fields Vulnerability – Missing Authorization to Authenticated (Subscriber+) Post Content Disclosure – CVE-2024-1995 | WordPress Plugin Vulnerability Report

March 19, 2024
Posted in Vulnerabilities, Security

Plugin Name: Smart Custom Fields Key Information: Software Type: Plugin Software Slug: smart-custom-fields Software Status: Active Software Author: inc2734 Software…

Read about this Latest WordPress Vulnerability
WP Plugin Vulnerabilities Image - Translate WordPress and go Multilingual Vulnerability– Weglot - Authenticated (Contributor+) Stored Cross-Site Scripting via Block Attributes - CVE-2024-2124 | WordPress Plugin Vulnerability Report - Vulnerabilities

Translate WordPress and go Multilingual Vulnerability– Weglot – Authenticated (Contributor+) Stored Cross-Site Scripting via Block Attributes – CVE-2024-2124 | WordPress Plugin Vulnerability Report

March 18, 2024
Posted in Vulnerabilities, Security

Plugin Name: Translate WordPress and go Multilingual – Weglot Key Information: Software Type: Plugin Software Slug: weglot Software Status: Active…

Read about this Latest WordPress Vulnerability
WP Plugin Vulnerabilities Image - Permalink Manager Pro Vulnerability - Missing Authorization to Authenticated (Author+) Arbitrary Post Slug Modification - CVE-2024-2538 | WordPress Plugin Vulnerability Report - Vulnerabilities

Permalink Manager Pro Vulnerability – Missing Authorization to Authenticated (Author+) Arbitrary Post Slug Modification – CVE-2024-2538 | WordPress Plugin Vulnerability Report

March 18, 2024
Posted in Vulnerabilities, Security

Plugin Name: Permalink Manager Pro Key Information: Software Type: Plugin Software Slug: permalink-manager Software Status: Active Software Author: mbis Software…

Read about this Latest WordPress Vulnerability