WordPress Banner System plugin <= 1.0.0 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by ghsinfosec Patchstack Alliance in WordPress Plugin Banner System versions = 1.0.0...

WordPress Falcon – WordPress Optimizations & Tweaks plugin <= 2.8.3 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Abdi Pranata Patchstack Alliance in WordPress Plugin Falcon – WordPress Optimizations & Tweaks versions = 2.8.3...

WordPress WP Cookies Enabler plugin <= 1.0.1 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by tahu.datar Patchstack Alliance in WordPress Plugin WP Cookies Enabler versions = 1.0.1...

WordPress Quietly Insights plugin <= 1.2.2 - Arbitrary Option Update to Privilege Escalation vulnerability

Arbitrary Option Update to Privilege Escalation vulnerability discovered by Mika Patchstack Alliance in WordPress Plugin Quietly Insights versions = 1.2.2...

WordPress EduAdmin Booking plugin <= 5.2.0 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by theviper17 Patchstack Alliance in WordPress Plugin EduAdmin Booking versions = 5.2.0...

WordPress Video & Photo Gallery for Ultimate Member plugin <= 1.1.0 - Arbitrary File Upload vulnerability

Arbitrary File Upload vulnerability discovered by theviper17 Patchstack Alliance in WordPress Plugin Video & Photo Gallery for Ultimate Member versions = 1.1.0...

WordPress ForumWP plugin <= 2.1.0 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by Mika Patchstack Alliance in WordPress Plugin ForumWP versions = 2.1.0...

WordPress Feedpress Generator plugin <= 1.2.1 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by thiennv Patchstack Alliance in WordPress Plugin Feedpress Generator versions = 1.2.1...

WordPress Wp NssUser Register plugin <= 1.0.0 - Privilege Escalation vulnerability

Privilege Escalation vulnerability discovered by ghsinfosec Patchstack Alliance in WordPress Plugin Wp NssUser Register versions = 1.0.0...

WordPress Sogrid plugin <= 1.5.2 - CSRF to Privilege Escalation vulnerability

CSRF to Privilege Escalation vulnerability discovered by Mika Patchstack Alliance in WordPress Plugin Sogrid versions = 1.5.2...

WordPress Fancy Roller Scroller plugin <= 1.4.0 - CSRF to Stored XSS vulnerability

CSRF to Stored XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin Fancy Roller Scroller versions = 1.4.0...

WordPress Bicycleshop theme <= 1.5 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by stealthcopter Patchstack Alliance in WordPress Theme Bicycleshop versions = 1.5...

WordPress WP Currency Exchange Rates plugin <= 1.2.0 - CSRF to Stored XSS vulnerability

CSRF to Stored XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin WP Currency Exchange Rates versions = 1.2.0...

WordPress SMSify plugin <= 6.0.4 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Mika Patchstack Alliance in WordPress Plugin SMSify versions = 6.0.4...

WordPress Hive Support plugin <= 1.1.2 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by hunter85 Patchstack Alliance in WordPress Plugin Hive Support versions = 1.1.2...

WordPress Web Stories plugin <= 1.37.0 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by shinobu Patchstack Alliance in WordPress Plugin Web Stories versions = 1.37.0...

WordPress AIcomments plugin <= 1.4.1 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Dhabaleshwar Das Patchstack Alliance in WordPress Plugin AIcomments versions = 1.4.1...

WordPress AIKCT Engine Chatbot, ChatGPT, Gemini, GPT-4o Best AI Chatbot plugin <= 1.6.2 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Dhabaleshwar Das Patchstack Alliance in WordPress Plugin AIKCT Engine Chatbot, ChatGPT, Gemini, GPT-4o Best AI Chatbot versions = 1.6.2...

WordPress FormFacade plugin <= 1.3.6 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by thiennv Patchstack Alliance in WordPress Plugin FormFacade versions = 1.3.6...

WordPress AutoWP plugin <= 2.0.8 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Dhabaleshwar Das Patchstack Alliance in WordPress Plugin AutoWP versions = 2.0.8...