WordPress Hive Support plugin <= 1.1.2 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by hunter85 Patchstack Alliance in WordPress Plugin Hive Support versions = 1.1.2...

WordPress Web Stories plugin <= 1.37.0 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by shinobu Patchstack Alliance in WordPress Plugin Web Stories versions = 1.37.0...

WordPress AIcomments plugin <= 1.4.1 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Dhabaleshwar Das Patchstack Alliance in WordPress Plugin AIcomments versions = 1.4.1...

WordPress AIKCT Engine Chatbot, ChatGPT, Gemini, GPT-4o Best AI Chatbot plugin <= 1.6.2 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Dhabaleshwar Das Patchstack Alliance in WordPress Plugin AIKCT Engine Chatbot, ChatGPT, Gemini, GPT-4o Best AI Chatbot versions = 1.6.2...

WordPress FormFacade plugin <= 1.3.6 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by thiennv Patchstack Alliance in WordPress Plugin FormFacade versions = 1.3.6...

WordPress AutoWP plugin <= 2.0.8 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Dhabaleshwar Das Patchstack Alliance in WordPress Plugin AutoWP versions = 2.0.8...

WordPress vBSSO-lite plugin <= 1.4.3 - Account Takeover vulnerability

Account Takeover vulnerability discovered by stealthcopter Patchstack Alliance in WordPress Plugin vBSSO-lite versions = 1.4.3...

WordPress CoSchool LMS plugin <= 1.4.3 - Account Takeover vulnerability

Account Takeover vulnerability discovered by stealthcopter Patchstack Alliance in WordPress Plugin CoSchool LMS versions = 1.4.3...

WordPress ListApp Mobile Manager plugin <= 1.7.7 - Account Takeover vulnerability

Account Takeover vulnerability discovered by stealthcopter Patchstack Alliance in WordPress Plugin ListApp Mobile Manager versions = 1.7.7...

WordPress Firebase OTP Authentication plugin <= 1.0.1 - Account Takeover vulnerability

Account Takeover vulnerability discovered by stealthcopter Patchstack Alliance in WordPress Plugin Firebase OTP Authentication versions = 1.0.1...

WordPress Appsplate plugin <= 2.1.3 - SQL Injection vulnerability

SQL Injection vulnerability discovered by stealthcopter Patchstack Alliance in WordPress Plugin Appsplate versions = 2.1.3...

WordPress Smaily for WP plugin <= 3.1.5 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin Smaily for WP versions = 3.1.5...

WordPress Nias course plugin <= 1.2.10 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Gab Patchstack Alliance in WordPress Plugin Nias course versions = 1.2.10...

WordPress Axeptio plugin <= 2.5.4 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by h0j3n Patchstack Alliance in WordPress Plugin Axeptio versions = 2.5.4...

WordPress SiteOrigin Widgets Bundle plugin <= 1.64.0 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Rafie Muhammad Patchstack in WordPress Plugin SiteOrigin Widgets Bundle versions = 1.64.0...

WordPress Echoza plugin <= 0.1.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin Echoza versions = 0.1.1...

WordPress Simple Notification plugin <= 1.3 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by SOPROBRO Patchstack Alliance in WordPress Plugin Simple Notification versions = 1.3...

WordPress Easy Blocks pro plugin <= 1.0.21 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Khalid Yusuf Patchstack Alliance in WordPress Plugin Easy Blocks pro versions = 1.0.21...

WordPress Login Widget With Shortcode plugin <= 6.1.2 - Open Redirection vulnerability

Open Redirection vulnerability discovered by Muhamad Agil Fachrian Patchstack Alliance in WordPress Plugin Login Widget With Shortcode versions = 6.1.2...

WordPress Pinpoint Booking System Plugin <= 2.9.9.5.7 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Muhammad Daffa Patchstack Alliance in WordPress Plugin Pinpoint Booking System versions = 2.9.9.5.7...