WordPress PeproDev CF7 Database Plugin <= 1.8.0 is vulnerable to Cross Site Request Forgery (CSRF)

Software PeproDev CF7 Database Type Plugin Vulnerable versions = 1.8.0 Fixed in 1.9.0 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-41864 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 3d141a658694 Credits RE-ALTER...

WordPress WP Club Manager Plugin <= 2.2.11 is vulnerable to Cross Site Scripting (XSS)

Software WP Club Manager Type Plugin Vulnerable versions = 2.2.11 Fixed in 2.2.12 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-32566 Patch priority Low CVSS severity Low 6.5 Developer WP Club Manager PSID 673c46e5f536 Credits CatFather Required...

WordPress Related Posts for WordPress plugin <= 4.0.3 - CSRF to XSS vulnerability

CSRF to XSS vulnerability discovered by Dimas Maulana Patchstack Alliance in WordPress Plugin Related Posts for WordPress versions = 4.0.3...

WordPress Netgsm plugin <= 2.8 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Majed Refaea Patchstack Alliance in WordPress Plugin Netgsm versions = 2.8...

WordPress Bulk Block Converter plugin <= 1.0.1 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Dimas Maulana Patchstack Alliance in WordPress Plugin Bulk Block Converter versions = 1.0.1...

WordPress WP-Cufon plugin <= 1.6.10 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Dimas Maulana Patchstack Alliance in WordPress Plugin WP-Cufon versions = 1.6.10...

WordPress Easy CountDowner plugin <= 1.0.8 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by LVT-tholv2k Patchstack Alliance in WordPress Plugin Easy CountDowner versions = 1.0.8...

WordPress Simple Testimonials Showcase plugin <= 1.1.5 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by LVT-tholv2k Patchstack Alliance in WordPress Plugin Simple Testimonials Showcase versions = 1.1.5...

WordPress Jotform Online Forms plugin <= 1.3.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by NGÔ THIÊN AN Patchstack Alliance in WordPress Plugin Jotform Online Forms versions = 1.3.1...

WordPress Theme My Login plugin <= 7.1.6 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Abdi Pranata Patchstack Alliance in WordPress Plugin Theme My Login versions = 7.1.6...

WordPress GG Woo Feed for WooCommerce plugin <= 1.2.6 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Abdi Pranata Patchstack Alliance in WordPress Plugin GG Woo Feed for WooCommerce versions = 1.2.6...

WordPress Custom Thank You Page Customize For WooCommerce by Binary Carpenter plugin <= 1.4.12 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Abdi Pranata Patchstack Alliance in WordPress Plugin Custom Thank You Page Customize For WooCommerce by Binary Carpenter versions = 1.4.12...

WordPress Multi Currency For WooCommerce plugin <= 1.5.5 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Abdi Pranata Patchstack Alliance in WordPress Plugin Multi Currency For WooCommerce versions = 1.5.5...

WordPress Product Feed PRO for WooCommerce plugin <= 13.3.1 - Sensitive Data Exposure vulnerability

Sensitive Data Exposure vulnerability discovered by Yudistira Arya Patchstack Alliance in WordPress Plugin Product Feed PRO for WooCommerce versions = 13.3.1...

WordPress weForms plugin <= 1.6.20 - Form Submission Restriction Bypass vulnerability

Form Submission Restriction Bypass vulnerability discovered by Kyle Sanchez Patchstack Alliance in WordPress Plugin weForms versions = 1.6.20...

WordPress WP Cost Estimation & Payment Forms Builder plugin <= 10.1.75 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Rafie Muhammad Patchstack in WordPress Plugin WP Cost Estimation & Payment Forms Builder versions = 10.1.75...

WordPress Mailster plugin <= 4.0.6 - Unauthenticated Local File Inclusion vulnerability

Unauthenticated Local File Inclusion vulnerability discovered by Rafie Muhammad Patchstack in WordPress Plugin Mailster versions = 4.0.6...

WordPress DethemeKit For Elementor plugin <= 2.0.2 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Khalid Patchstack Alliance in WordPress Plugin DethemeKit For Elementor versions = 2.0.2...

WordPress Radio Player plugin <= 2.0.73 - Sensitive Data Exposure vulnerability

Sensitive Data Exposure vulnerability discovered by Steven Julian Patchstack Alliance in WordPress Plugin Radio Player versions = 2.0.73...

WordPress ElementsKit Elementor addons plugin <= 3.0.6 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by NGÔ THIÊN AN Patchstack Alliance in WordPress Plugin Elements kit Elementor addons versions = 3.0.6...