WordPress Highlight plugin <= 2.0.2 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Pham Van Tam Patchstack Alliance in WordPress Plugin Highlight versions = 2.0.2...

WordPress Post/Page Copying Tool plugin <= 2.0.0 - Sensitive Data Exposure vulnerability

Sensitive Data Exposure vulnerability discovered by stealthcopter Patchstack Alliance in WordPress Plugin Post/Page Copying Tool versions = 2.0.0...

WordPress Nexter Blocks plugin <= 4.0.7 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Khalid Yusuf Patchstack Alliance in WordPress Plugin Nexter Blocks versions = 4.0.7...

WordPress Groundhogg plugin <= 3.7.3.3 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Webula Patchstack Alliance in WordPress Plugin Groundhogg versions = 3.7.3.3...

WordPress PlainInventory – Inventory Management Plugin Plugin <= 3.1.6 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by LVT-tholv2k Patchstack Alliance in WordPress Plugin PlainInventory versions = 3.1.6...

WordPress Accessibility by AllAccessible plugin <= 1.3.4 - Privilege Escalation vulnerability

Privilege Escalation vulnerability discovered by Mika Patchstack Alliance in WordPress Plugin Accessibility by AllAccessible versions = 1.3.4...

WordPress Event Espresso plugin <= 5.0.28.decaf - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Dhabaleshwar Das Patchstack Alliance in WordPress Plugin Event Espresso 4 Decaf versions = 5.0.28.decaf...

WordPress Just Writing Statistics plugin <= 4.7 - SQL Injection vulnerability

SQL Injection vulnerability discovered by l8BL Patchstack Alliance in WordPress Plugin Just Writing Statistics versions = 4.7...

WordPress WPSSO Core plugin <= 18.18.1 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Ngô Thái An Patchstack Alliance in WordPress Plugin WPSSO Core versions = 18.18.1...

WordPress Arconix Shortcodes plugin <= 2.1.14 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Peter Thaleikis Patchstack Alliance in WordPress Plugin Arconix Shortcodes versions = 2.1.14...

WordPress Floating Action Buttons plugin <= 0.9.1 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Mika Patchstack Alliance in WordPress Plugin Floating Action Buttons versions = 0.9.1...

WordPress ConvertCalculator for WordPress plugin <= 1.1.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by theviper17 Patchstack Alliance in WordPress Plugin ConvertCalculator for WordPress versions = 1.1.1...

WordPress Gulri Slider plugin <= 3.5.8 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by thiennv Patchstack Alliance in WordPress Plugin Gulri Slider versions = 3.5.8...

WordPress CodeBard Help Desk plugin <= 1.1.1 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by hunter85 Patchstack Alliance in WordPress Plugin CodeBard Help Desk versions = 1.1.1...

WordPress WooCommerce - PDF Vouchers plugin < 4.9.9 - Cross Site Scripting (XSS) vulnerability

WordPress WooCommerce - PDF Vouchers plugin 4.9.9 - Cross Site Scripting XSS vulnerability discovered by Bonds Patchstack Alliance in WordPress Plugin WooCommerce PDF Vouchers versions 4.9.9...

WordPress Sinking Dropdowns plugin <= 1.25 - CSRF to Privilege Escalation vulnerability

CSRF to Privilege Escalation vulnerability discovered by Mika Patchstack Alliance in WordPress Plugin Sinking Dropdowns versions = 1.25...

WordPress Simple Dashboard plugin <= 2.0 - Privilege Escalation vulnerability

Privilege Escalation vulnerability discovered by Mika Patchstack Alliance in WordPress Plugin Simple Dashboard versions = 2.0...

WordPress Agency Toolkit plugin <= 1.0.23 - Privilege Escalation vulnerability

Privilege Escalation vulnerability discovered by Mika Patchstack Alliance in WordPress Plugin Agency Toolkit versions = 1.0.23...

WordPress HTML Forms plugin <= 1.4.1 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Peter Thaleikis Patchstack Alliance in WordPress Plugin HTML Forms versions = 1.4.1...

WordPress Partners plugin <= 0.2.0 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by Le Ngoc Anh Patchstack Alliance in WordPress Plugin Partners versions = 0.2.0...