WordPress SimpleCharm Theme <= 1.4.3 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by 0xd4rk5id3 Patchstack Alliance in WordPress Theme SimpleCharm versions = 1.4.3...

WordPress WP2LEADS Plugin <= 3.4.2 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by LVT-tholv2k Patchstack Alliance in WordPress Plugin WP2LEADS versions = 3.4.2...

WordPress Pretty Simple Popup Builder Plugin <= 1.0.9 - Stored Cross Site Scripting (XSS) vulnerability

Stored Cross Site Scripting XSS vulnerability discovered by satrya wira yudha Patchstack Alliance in WordPress Plugin Pretty Simple Popup Builder versions = 1.0.9...

WordPress Highlight plugin <= 2.0.2 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Pham Van Tam Patchstack Alliance in WordPress Plugin Highlight versions = 2.0.2...

WordPress Post/Page Copying Tool plugin <= 2.0.0 - Sensitive Data Exposure vulnerability

Sensitive Data Exposure vulnerability discovered by stealthcopter Patchstack Alliance in WordPress Plugin Post/Page Copying Tool versions = 2.0.0...

WordPress Nexter Blocks plugin <= 4.0.7 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Khalid Yusuf Patchstack Alliance in WordPress Plugin Nexter Blocks versions = 4.0.7...

WordPress Groundhogg plugin <= 3.7.3.3 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Webula Patchstack Alliance in WordPress Plugin Groundhogg versions = 3.7.3.3...

WordPress WP Docs plugin <= 2.2.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by b4orvn Patchstack Alliance in WordPress Plugin WP Docs versions = 2.2.1...

WordPress PlainInventory – Inventory Management Plugin Plugin <= 3.1.6 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by LVT-tholv2k Patchstack Alliance in WordPress Plugin PlainInventory versions = 3.1.6...

WordPress Accessibility by AllAccessible plugin <= 1.3.4 - Privilege Escalation vulnerability

Privilege Escalation vulnerability discovered by Mika Patchstack Alliance in WordPress Plugin Accessibility by AllAccessible versions = 1.3.4...

WordPress WP Ultimate Exporter plugin <= 2.9.1 - Remote Code Execution (RCE) vulnerability

Remote Code Execution RCE vulnerability discovered by Webula Patchstack Alliance in WordPress Plugin WP Ultimate Exporter versions = 2.9.1...

WordPress WPForms Lite plugin <= 1.9.2.2 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Rafie Muhammad Patchstack in WordPress Plugin Contact Form by WPForms versions = 1.9.2.2...

WordPress Envato Elements plugin <= 2.0.14 - Server Side Request Forgery (SSRF) vulnerability

Server Side Request Forgery SSRF vulnerability discovered by Rafie Muhammad Patchstack in WordPress Plugin Envato Elements versions = 2.0.14...

WordPress WPvivid Backup plugin <= 0.9.106 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Rafie Muhammad Patchstack in WordPress Plugin WPvivid Backup and Migration versions = 0.9.106...

WordPress Event Espresso plugin <= 5.0.28.decaf - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Dhabaleshwar Das Patchstack Alliance in WordPress Plugin Event Espresso 4 Decaf versions = 5.0.28.decaf...

WordPress Just Writing Statistics plugin <= 4.7 - SQL Injection vulnerability

SQL Injection vulnerability discovered by l8BL Patchstack Alliance in WordPress Plugin Just Writing Statistics versions = 4.7...

WordPress WPSSO Core plugin <= 18.18.1 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Ngô Thái An Patchstack Alliance in WordPress Plugin WPSSO Core versions = 18.18.1...

WordPress Arconix Shortcodes plugin <= 2.1.14 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Peter Thaleikis Patchstack Alliance in WordPress Plugin Arconix Shortcodes versions = 2.1.14...

WordPress Floating Action Buttons plugin <= 0.9.1 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Mika Patchstack Alliance in WordPress Plugin Floating Action Buttons versions = 0.9.1...

WordPress ConvertCalculator for WordPress plugin <= 1.1.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by theviper17 Patchstack Alliance in WordPress Plugin ConvertCalculator for WordPress versions = 1.1.1...