WordPress Advanced Fancybox plugin <= 1.1.1 - CSRF to Stored XSS vulnerability

CSRF to Stored XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin Advanced Fancybox versions = 1.1.1...

WordPress Flaming Forms plugin <= 1.0.1 - CSRF to Stored XSS vulnerability

CSRF to Stored XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin Flaming Forms versions = 1.0.1...

WordPress WP微信机器人 plugin <= 5.3.5 - CSRF to Stored XSS vulnerability

CSRF to Stored XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin WP微信机器人 versions = 5.3.5...

WordPress Posts Date Ranges plugin <= 2.2 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Muhamad Agil Fachrian Patchstack Alliance in WordPress Plugin Posts Date Ranges versions = 2.2...

WordPress Banner System plugin <= 1.0.0 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by ghsinfosec Patchstack Alliance in WordPress Plugin Banner System versions = 1.0.0...

WordPress Falcon – WordPress Optimizations & Tweaks plugin <= 2.8.3 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Abdi Pranata Patchstack Alliance in WordPress Plugin Falcon – WordPress Optimizations & Tweaks versions = 2.8.3...

WordPress WP Cookies Enabler plugin <= 1.0.1 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by tahu.datar Patchstack Alliance in WordPress Plugin WP Cookies Enabler versions = 1.0.1...

WordPress Quietly Insights plugin <= 1.2.2 - Arbitrary Option Update to Privilege Escalation vulnerability

Arbitrary Option Update to Privilege Escalation vulnerability discovered by Mika Patchstack Alliance in WordPress Plugin Quietly Insights versions = 1.2.2...

WordPress EduAdmin Booking plugin <= 5.2.0 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by theviper17 Patchstack Alliance in WordPress Plugin EduAdmin Booking versions = 5.2.0...

WordPress Video & Photo Gallery for Ultimate Member plugin <= 1.1.0 - Arbitrary File Upload vulnerability

Arbitrary File Upload vulnerability discovered by theviper17 Patchstack Alliance in WordPress Plugin Video & Photo Gallery for Ultimate Member versions = 1.1.0...

WordPress ForumWP plugin <= 2.1.0 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by Mika Patchstack Alliance in WordPress Plugin ForumWP versions = 2.1.0...

WordPress Vimeography plugin <= 2.4.4 - Full Path Disclosure (FPD) vulnerability

Full Path Disclosure FPD vulnerability discovered by Fariq Fadillah Gusti Insani Patchstack Alliance in WordPress Plugin Vimeography versions = 2.4.4...

WordPress Feedpress Generator plugin <= 1.2.1 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by thiennv Patchstack Alliance in WordPress Plugin Feedpress Generator versions = 1.2.1...

WordPress Wp NssUser Register plugin <= 1.0.0 - Privilege Escalation vulnerability

Privilege Escalation vulnerability discovered by ghsinfosec Patchstack Alliance in WordPress Plugin Wp NssUser Register versions = 1.0.0...

WordPress Avada theme <= 7.11.10 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Ananda Dhakal Patchstack in WordPress Theme Avada versions = 7.11.10...

WordPress Sogrid plugin <= 1.5.2 - CSRF to Privilege Escalation vulnerability

CSRF to Privilege Escalation vulnerability discovered by Mika Patchstack Alliance in WordPress Plugin Sogrid versions = 1.5.2...

WordPress Fancy Roller Scroller plugin <= 1.4.0 - CSRF to Stored XSS vulnerability

CSRF to Stored XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin Fancy Roller Scroller versions = 1.4.0...

WordPress Bicycleshop theme <= 1.5 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by stealthcopter Patchstack Alliance in WordPress Theme Bicycleshop versions = 1.5...

WordPress WP Currency Exchange Rates plugin <= 1.2.0 - CSRF to Stored XSS vulnerability

CSRF to Stored XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin WP Currency Exchange Rates versions = 1.2.0...

WordPress SMSify plugin <= 6.0.4 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Mika Patchstack Alliance in WordPress Plugin SMSify versions = 6.0.4...