WordPress Traveler theme <= 3.1.8 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by Rafie Muhammad Patchstack in WordPress Theme Traveler versions 3.2.1...

WordPress TranslatePress plugin <= 2.9.6 - PHP Object Injection Vulnerability

PHP Object Injection Vulnerability discovered by Ananda Dhakal Patchstack in WordPress Plugin TranslatePress versions = 2.9.6...

WordPress RainbowNews theme <= 1.0.7 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by stealthcopter Patchstack Alliance in WordPress Theme RainbowNews versions = 1.0.7...

WordPress Whitish Lite theme <= 2.1.13 - Stored Cross Site Scripting (XSS) vulnerability

Stored Cross Site Scripting XSS vulnerability discovered by stealthcopter Patchstack Alliance in WordPress Theme Whitish Lite versions = 2.1.13...

WordPress MorningTime Lite theme <= 1.3.2 - Stored Cross Site Scripting (XSS) vulnerability

Stored Cross Site Scripting XSS vulnerability discovered by stealthcopter Patchstack Alliance in WordPress Theme MorningTime Lite versions = 1.3.2...

WordPress Hester plugin <= 1.1.10 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by stealthcopter Patchstack Alliance in WordPress Theme Hester versions = 1.1.10...

WordPress Image Slider / Slideshow Pearlbells plugin <= 4.0 - CSRF to Privilege Escalation vulnerability

CSRF to Privilege Escalation vulnerability discovered by Mika Patchstack Alliance in WordPress Plugin Image Slider / Slideshow Pearlbells versions = 4.0...

WordPress GetShop ecommerce plugin <= 1.3 - Path Traversal vulnerability

Path Traversal vulnerability discovered by Dimas Maulana Patchstack Alliance in WordPress Plugin GetShop ecommerce versions = 1.3...

WordPress Church Admin plugin <= 5.0.18 - SQL Injection vulnerability

SQL Injection vulnerability discovered by NAWardRox Patchstack Alliance in WordPress Plugin Church Admin versions = 5.0.18...

WordPress Accounting for WooCommerce plugin <= 1.6.8 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by b4orvn Patchstack Alliance in WordPress Plugin Accounting for WooCommerce versions = 1.6.8...

WordPress Event post plugin <= 5.9.8 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by preo Patchstack Alliance in WordPress Plugin Event post versions = 5.9.8...

WordPress SecuPress Free plugin <= 2.2.5.3 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Michael Patchstack Alliance in WordPress Plugin SecuPress Free versions = 2.2.5.3...

WordPress WPBookit plugin <= 1.0.1 - Cross Site Request Forgery (CSRF) Vulnerability

Cross Site Request Forgery CSRF Vulnerability discovered by Khang Duong Patchstack Alliance in WordPress Plugin WPBookit versions = 1.0.1...

WordPress Recapture for WooCommerce Plugin <= 1.0.43 - CSRF to Settings Change vulnerability

CSRF to Settings Change vulnerability discovered by Nguyen Xuan Chien Patchstack Alliance in WordPress Plugin Recapture for WooCommerce versions = 1.0.43...

WordPress Animated Text Block plugin <= 1.0.7 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Peter Thaleikis Patchstack Alliance in WordPress Plugin Animated Text Block versions = 1.0.7...

WordPress Photo Gallery ( Responsive ) plugin <= 4.0 - CSRF to Privilege Escalation vulnerability

CSRF to Privilege Escalation vulnerability discovered by Mika Patchstack Alliance in WordPress Plugin Photo Gallery Responsive versions = 4.0...

WordPress Pie Register Premium plugin <= 3.8.3.2 - Path Traversal to Non-Arbitrary File Deletion vulnerability

Path Traversal to Non-Arbitrary File Deletion vulnerability discovered by Ananda Dhakal Patchstack in WordPress Plugin Pie Register Premium versions = 3.8.3.2...

WordPress Booknetic plugin <= 4.0.9 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Ananda Dhakal Patchstack in WordPress Plugin Booknetic versions = 4.0.9...

WordPress Ohio Theme Extra plugin <= 3.4.7 - Shortcode Injection vulnerability

Shortcode Injection vulnerability discovered by Kursat Cetin Patchstack in WordPress Plugin Ohio Extra versions = 3.4.7...

WordPress PrivateContent plugin <= 8.11.5 - Unauthenticated Account Takeover vulnerability

Unauthenticated Account Takeover vulnerability discovered by Rafie Muhammad Patchstack in WordPress Plugin PrivateContent versions = 8.11.5...