WordPress Auto Featured Image (Auto Post Thumbnail) plugin <= 4.1.7 - Authenticated (Author+) Server-Side Request Forgery vulnerability

Authenticated Author+ Server-Side Request Forgery vulnerability discovered by Nex Team in WordPress Plugin Auto Featured Image Auto Post Thumbnail versions = 4.1.7...

WordPress Unlimited Elements for Elementor plugin <= 1.5.89 - Authenticated(Contributor+) Remote Code Execution via template import vulnerability

AuthenticatedContributor+ Remote Code Execution via template import vulnerability discovered by Nex Team in WordPress Plugin Unlimited Elements For Elementor Free Widgets, Addons, Templates versions = 1.5.89...

WordPress Pods plugin <= 3.0.10 - Authenticated (Contributor+) SQL Injection via Shortcode vulnerability

Authenticated Contributor+ SQL Injection via Shortcode vulnerability discovered by Nex Team in WordPress Plugin Pods versions = 3.0.10...

WordPress Pods Plugin <= 3.0.10 is vulnerable to Broken Access Control

Software Pods Type Plugin Vulnerable versions = 3.0.10 Fixed in 3.0.10.2 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-6965 Patch priority Low CVSS severity Low 4.3 Developer Pods Framework PSID 636da473e23f Credits Nex Team Required privilege Contributo...

WordPress WP Go Maps Plugin <= 9.0.28 is vulnerable to Cross Site Scripting (XSS)

Software WP Go Maps Type Plugin Vulnerable versions = 9.0.28 Fixed in 9.0.29 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-6697 Patch priority Medium CVSS severity Medium 7.1 Developer WP Go Maps PSID a5d68fb003d8 Credits Nex Team Required privileg...

WordPress Envira Photo Gallery Plugin <= 1.8.7.2 is vulnerable to Broken Access Control

Software Envira Photo Gallery Type Plugin Vulnerable versions = 1.8.7.2 Fixed in 1.8.7.3 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-6742 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID c7d340beb959 Credits Nex Team Required...