WordPress Ad Inserter plugin <= 2.7.10 - Admin+ RCE / Stored XSS vulnerability

Admin+ RCE / Stored XSS vulnerability discovered by Viktor Markopoulos in WordPress Ad Inserter plugin versions = 2.7.10. Solution Update the WordPress Ad Inserter plugin to the latest available version at least 2.7.11...

WordPress SP Project & Document Manager plugin <= 4.21 - Authenticated Shell Upload vulnerability

Authenticated Shell Upload discovered by Viktor Markopoulos vict0ni in WordPress SP Project & Document Manager plugin versions = 4.21. Solution Update the WordPress SP Project & Document Manager plugin to the latest available version at least 4.22...

WordPress Weekly Schedule plugin <= 3.4.2 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability

Authenticated Stored Cross-Site Scripting XSS vulnerability discovered by Viktor Markopoulos in WordPress Weekly Schedule plugin versions = 3.4.2. Solution Update the WordPress Weekly Schedule plugin to the latest available version at least 3.4.3...

WordPress AcyMailing SMTP Newsletter plugin <= 7.4.1 - Unauthenticated Open Redirect vulnerability

Unauthenticated Open Redirect vulnerability discovered by Viktor Markopoulos WordPress AcyMailing SMTP Newsletter plugin versions = 7.4.1. Solution Update the WordPress AcyMailing SMTP Newsletter plugin to the latest available version at least 7.5.0...