Lucene search
K
PatchstackRecent

46704 matches found

Patchstack
Patchstack
added 2026/03/26 2:49 p.m.5 views

WordPress Nexter Blocks plugin <= 4.7.0 - Sensitive Data Exposure vulnerability

Sensitive Data Exposure vulnerability discovered by Bao - BlueRock in WordPress Plugin Nexter Blocks versions = 4.7.0...

5.3CVSS5.9AI score0.0024EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/26 2:8 p.m.6 views

WordPress Sunshine Photo Cart plugin < 3.6.2 - Sensitive Data Exposure vulnerability

Sensitive Data Exposure vulnerability discovered by Bao - BlueRock in WordPress Plugin Sunshine Photo Cart versions 3.6.2...

5.3CVSS5.9AI score0.0024EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/26 2:1 p.m.8 views

WordPress Share This Image plugin <= 2.12 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Bao - BlueRock in WordPress Plugin Share This Image versions = 2.12...

5.3CVSS5.9AI score0.0019EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/26 8:20 a.m.6 views

WordPress Broken Link Checker plugin <= 2.4.7 - SQL Injection vulnerability

SQL Injection vulnerability discovered by daroo in WordPress Plugin Broken Link Checker versions = 2.4.7...

7.6CVSS6AI score0.00279EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/26 6:31 a.m.7 views

WordPress SureCart plugin <= 4.0.2 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin SureCart versions = 4.0.2...

6.3CVSS5.9AI score0.00184EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/26 4:46 a.m.4 views

WordPress Simply Schedule Appointments plugin <= 1.6.9.27 - SQL Injection vulnerability

SQL Injection vulnerability discovered by daroo in WordPress Plugin Simply Schedule Appointments versions = 1.6.9.27...

8.5CVSS5.9AI score0.00253EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/26 2:13 a.m.6 views

WordPress Seriously Simple Podcasting plugin <= 3.14.2 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by hivesec in WordPress Plugin Seriously Simple Podcasting versions = 3.14.2...

5.3CVSS5.9AI score0.00221EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/25 12:11 p.m.6 views

WordPress Amelia plugin <= 2.1.1 - SQL Injection vulnerability

SQL Injection vulnerability discovered by daroo in WordPress Plugin Amelia versions = 2.1.1...

7.6CVSS5.9AI score0.00271EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/25 8:34 a.m.5 views

WordPress Instantio plugin <= 3.3.30 - Sensitive Data Exposure vulnerability

Sensitive Data Exposure vulnerability discovered by Que Thanh Tuan in WordPress Plugin Instantio versions = 3.3.30...

5.3CVSS5.9AI score0.0024EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/25 8:26 a.m.6 views

WordPress WP DSGVO Tools (GDPR) plugin <= 3.1.38 - Missing Authorization to Unauthenticated Account Destruction of Non-Admin Users vulnerability

Missing Authorization to Unauthenticated Account Destruction of Non-Admin Users vulnerability discovered by shark3y in WordPress Plugin WP DSGVO Tools GDPR versions = 3.1.38...

9.1CVSS5.8AI score0.00431EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/25 8:20 a.m.8 views

WordPress JetEngine plugin <= 3.8.6.1 - Unauthenticated SQL Injection via Listing Grid 'filtered_query' Parameter vulnerability

Unauthenticated SQL Injection via Listing Grid 'filteredquery' Parameter vulnerability discovered by hoshino in WordPress Plugin JetEngine versions = 3.8.6.1...

7.5CVSS5.9AI score0.00322EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/25 7:6 a.m.5 views

WordPress Download Monitor plugin <= 5.1.8 - SQL Injection vulnerability

SQL Injection vulnerability discovered by daroo in WordPress Plugin Download Monitor versions = 5.1.8...

7.6CVSS5.9AI score0.00256EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/24 7:36 p.m.8 views

WordPress WPGraphQL plugin <= 2.9.1 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by sshell in WordPress Plugin WPGraphQL versions = 2.9.1...

4.3CVSS5.8AI score0.00177EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/24 6:45 p.m.9 views

WordPress Woocommerce Custom Product Addons Pro plugin <= 5.4.1 - Unauthenticated Remote Code Execution via Custom Pricing Formula vulnerability

Unauthenticated Remote Code Execution via Custom Pricing Formula vulnerability discovered by Ren Voza in WordPress Plugin Woocommerce Custom Product Addons Pro versions = 5.4.1...

9.8CVSS5.9AI score0.00707EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/24 6:28 p.m.7 views

WordPress Contest Gallery plugin <= 28.1.5 - Unauthenticated Privilege Escalation Admin Account Takeover via Registration Confirmation Email-to-ID Type Confusion vulnerability

Unauthenticated Privilege Escalation Admin Account Takeover via Registration Confirmation Email-to-ID Type Confusion vulnerability discovered by Supakiad S. m3ez - E-CQURITY Thailand in WordPress Plugin Contest Gallery versions = 28.1.5...

8.1CVSS5.8AI score0.00436EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/24 6:21 p.m.5 views

WordPress JupiterX Core plugin <= 4.14.1 - Authenticated (Subscriber+) Missing Authorization To Limited File Upload via Popup Template Import vulnerability

Authenticated Subscriber+ Missing Authorization To Limited File Upload via Popup Template Import vulnerability discovered by Jack Pas Dark. - Black Lantern Security in WordPress Plugin JupiterX Core versions = 4.14.1...

8.8CVSS5.8AI score0.00676EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/24 6:13 p.m.7 views

WordPress WP Job Portal plugin <= 2.4.8 - Unauthenticated SQL Injection via 'radius' Parameter vulnerability

Unauthenticated SQL Injection via 'radius' Parameter vulnerability discovered by Leonid Semenenko lsemenenko in WordPress Plugin WP Job Portal versions = 2.4.8...

7.5CVSS5.9AI score0.00409EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/24 6:6 p.m.7 views

WordPress Product Filter for WooCommerce by WBW plugin <= 3.1.2 - Missing Authorization to Unauthenticated Filter Data Deletion via TRUNCATE TABLE vulnerability

Missing Authorization to Unauthenticated Filter Data Deletion via TRUNCATE TABLE vulnerability discovered by Youssef Elouaer in WordPress Plugin Product Filter by WBW versions = 3.1.2...

6.5CVSS5.8AI score0.00273EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/24 5:23 p.m.5 views

WordPress LearnDash LMS plugin <= 5.0.3 - Authenticated (Contributor+) SQL Injection via 'filters[orderby_order]' Parameter vulnerability

Authenticated Contributor+ SQL Injection via 'filtersorderbyorder' Parameter vulnerability discovered by Osvaldo Noe Gonzalez Del Rio Os - krei.dev | ogbuilders.io in WordPress Plugin LearnDash LMS versions = 5.0.3...

6.5CVSS5.9AI score0.00272EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/24 5:17 p.m.8 views

WordPress User Registration & Membership plugin <= 5.1.4 - Missing Authorization to Authenticated (Contributor+) Content Access Rule Manipulation vulnerability

Missing Authorization to Authenticated Contributor+ Content Access Rule Manipulation vulnerability discovered by darkmode in WordPress Plugin User Registration versions = 5.1.4...

5.4CVSS5.8AI score0.00182EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/24 4:50 p.m.9 views

WordPress LearnPress plugin <= 4.3.2.8 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Quiz Answer Deletion vulnerability

Missing Authorization to Authenticated Subscriber+ Arbitrary Quiz Answer Deletion vulnerability discovered by Jack Pas Dark. - Black Lantern Security in WordPress Plugin LearnPress versions = 4.3.2.8...

4.3CVSS5.8AI score0.00262EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/24 4:49 p.m.6 views

WordPress Quiz and Survey Master (QSM) plugin <= 10.3.5 - Authenticated (Contributor+) SQL Injection via 'merged_question' Parameter vulnerability

Authenticated Contributor+ SQL Injection via 'mergedquestion' Parameter vulnerability discovered by d.v4ns3c in WordPress Plugin Quiz And Survey Master versions = 10.3.5...

6.5CVSS5.9AI score0.00318EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/24 4:46 p.m.8 views

WordPress Smart Custom Fields plugin <= 5.0.6 - Missing Authorization to Authenticated (Contributor+) Sensitive Information Exposure via Relational Post Search vulnerability

Missing Authorization to Authenticated Contributor+ Sensitive Information Exposure via Relational Post Search vulnerability discovered by darkmode in WordPress Plugin Smart Custom Fields versions = 5.0.6...

4.3CVSS5.8AI score0.00289EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/24 3:19 p.m.5 views

WordPress King Addons for Elementor plugin <= 51.1.49 - Unauthenticated API Keys Disclosure vulnerability

Unauthenticated API Keys Disclosure vulnerability discovered by Ulyses Saicha in WordPress Plugin King Addons for Elementor versions = 51.1.49...

5.3CVSS5.8AI score0.00219EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/24 3:18 p.m.6 views

WordPress Sina Extension for Elementor plugin <= 3.7.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via `Fancy Text Widget` And `Countdown Widget` vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via Fancy Text Widget And Countdown Widget vulnerability discovered by Webbernaut in WordPress Plugin Sina Extension for Elementor versions = 3.7.0...

6.4CVSS5.8AI score0.00159EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/24 10:43 a.m.10 views

WordPress JetFormBuilder plugin <= 3.5.6.2 - Unauthenticated Arbitrary File Read via Media Field vulnerability

Unauthenticated Arbitrary File Read via Media Field vulnerability discovered by daroo in WordPress Plugin JetFormBuilder versions = 3.5.6.2...

7.5CVSS5.8AI score0.00397EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/24 9:37 a.m.7 views

WordPress Shortcodes Blocks Creator Ultimate plugin <= 2.2.0 - Reflected Cross-Site Scripting via 'page' vulnerability

Reflected Cross-Site Scripting via 'page' vulnerability discovered by Colin Xu in WordPress Plugin Shortcodes Blocks Creator Ultimate versions = 2.2.0...

6.1CVSS5.8AI score0.0031EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/24 9:33 a.m.7 views

WordPress Shortcodes Blocks Creator Ultimate plugin <= 2.2.0 - Reflected Cross-Site Scripting via _wpnonce vulnerability

Reflected Cross-Site Scripting via wpnonce vulnerability discovered by vgo0 in WordPress Plugin Shortcodes Blocks Creator Ultimate versions = 2.2.0...

6.1CVSS5.8AI score0.00304EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/24 9:21 a.m.7 views

WordPress SEO Help plugin <= 6.1.3 - Reflected Cross-Site Scripting vulnerability

Reflected Cross-Site Scripting vulnerability discovered by Colin Xu in WordPress Plugin SEO Help versions = 6.1.3...

6.1CVSS5.8AI score0.00389EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/24 9:11 a.m.5 views

WordPress Video & Photo Gallery for Ultimate Member plugin <= 1.1.1 - Reflected Cross-Site Scripting vulnerability

Reflected Cross-Site Scripting vulnerability discovered by Colin Xu in WordPress Plugin Video & Photo Gallery for Ultimate Member versions = 1.1.1...

6.1CVSS7.3AI score0.00398EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/24 9:2 a.m.6 views

WordPress ReviewX - WooCommerce Product Reviews with Multi-Criteria, Reminder Emails, Google Reviews, Schema & More plugin <= 2.2.10 - Incorrect Authorization to Unauthenticated Information Exposure and Data Manipulation vulnerability

WordPress ReviewX - WooCommerce Product Reviews with Multi-Criteria, Reminder Emails, Google Reviews, Schema & More plugin = 2.2.10 - Incorrect Authorization to Unauthenticated Information Exposure and Data Manipulation vulnerability discovered by abrahack in WordPress Plugin ReviewX versions =...

6.5CVSS5.8AI score0.00171EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/24 8:50 a.m.4 views

WordPress Task Manager plugin <= 3.0.2 - Authenticated (Subscriber+) Arbitrary Shortcode Execution via 'task_id' Parameter vulnerability

Authenticated Subscriber+ Arbitrary Shortcode Execution via 'taskid' Parameter vulnerability discovered by theviper17y in WordPress Plugin Task Manager versions = 3.0.2...

6.5CVSS5.8AI score0.00254EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/24 8:47 a.m.6 views

WordPress WP-WebAuthn plugin <= 1.3.4 - Unauthenticated Stored Cross-Site Scripting vulnerability

Unauthenticated Stored Cross-Site Scripting vulnerability discovered by wesley wcraft in WordPress Plugin WP-WebAuthn versions = 1.3.4...

6.1CVSS5.8AI score0.00265EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/24 8:44 a.m.7 views

WordPress Comment Genius plugin <= 1.2.5 - Reflected Cross-Site Scripting via $_SERVER['PHP_SELF'] vulnerability

Reflected Cross-Site Scripting via $SERVER'PHPSELF' vulnerability discovered by Abdulsamad Yusuf 0xVenus - Envorasec in WordPress Plugin Comment Genius versions = 1.2.5...

6.1CVSS5.8AI score0.00265EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/24 8:42 a.m.4 views

WordPress rexCrawler plugin <= 1.0.15 - Reflected Cross-Site Scripting via 'url' and 'regex' Parameters vulnerability

Reflected Cross-Site Scripting via 'url' and 'regex' Parameters vulnerability discovered by san6051 - PWC in WordPress Plugin rexCrawler versions = 1.0.15...

6.1CVSS5.8AI score0.00265EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/24 8:40 a.m.9 views

WordPress SurveyJS: Drag & Drop Form Builder plugin <= 2.5.3 - Unauthenticated Stored Cross-Site Scripting vulnerability

Unauthenticated Stored Cross-Site Scripting vulnerability discovered by Daniel Basta whizzu - NASK PIB in WordPress Plugin SurveyJS versions = 2.5.3...

7.2CVSS5.8AI score0.00282EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/24 8:31 a.m.10 views

WordPress ARForms plugin <= 1.7.2 - Unauthenticated Blind Arbitrary Shortcode Execution vulnerability

Unauthenticated Blind Arbitrary Shortcode Execution vulnerability discovered by Krzysztof Zając - CERT PL in WordPress Plugin ARForms Form Builder versions = 1.7.2...

5.6CVSS5.8AI score0.00268EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/24 8:29 a.m.7 views

WordPress WP Maps - Store Locator,Google Maps,OpenStreetMap,Mapbox,Listing,Directory & Filters plugin <= 4.9.1 - Unauthenticated SQL Injection via 'orderby' Parameter vulnerability

WordPress WP Maps - Store Locator,Google Maps,OpenStreetMap,Mapbox,Listing,Directory & Filters plugin = 4.9.1 - Unauthenticated SQL Injection via 'orderby' Parameter vulnerability discovered by Chiao-Lin Yu Steven Meow - Trend Micro in WordPress Plugin WP Maps versions = 4.9.1...

7.5CVSS5.9AI score0.00444EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/24 8:24 a.m.8 views

WordPress Import and export users and customers plugin <= 1.29.7 - Privilege Escalation to Administrator via save_extra_user_profile_fields vulnerability

Privilege Escalation to Administrator via saveextrauserprofilefields vulnerability discovered by kai63001 in WordPress Plugin Import and export users and customers versions = 1.29.7...

8.1CVSS5.8AI score0.00418EPSS
Exploits1References1Affected Software1
Patchstack
Patchstack
added 2026/03/24 8:13 a.m.8 views

WordPress The Ultimate WordPress Toolkit - WP Extended plugin <= 3.2.4 - Authenticated (Subscriber+) Privilege Escalation via Menu Editor Module vulnerability

WordPress The Ultimate WordPress Toolkit - WP Extended plugin = 3.2.4 - Authenticated Subscriber+ Privilege Escalation via Menu Editor Module vulnerability discovered by Hung Nguyen yoriss - VN in WordPress Plugin The Ultimate WordPress Toolkit – WP Extended versions = 3.2.4...

8.8CVSS5.8AI score0.00286EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/24 8:2 a.m.5 views

WordPress ReviewX - WooCommerce Product Reviews with Multi-Criteria, Reminder Emails, Google Reviews, Schema & More plugin <= 2.2.12 - Unauthenticated Limited Remote Code Execution vulnerability

WordPress ReviewX - WooCommerce Product Reviews with Multi-Criteria, Reminder Emails, Google Reviews, Schema & More plugin = 2.2.12 - Unauthenticated Limited Remote Code Execution vulnerability discovered by abrahack in WordPress Plugin ReviewX versions = 2.2.12...

7.3CVSS5.9AI score0.00447EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/23 8:23 p.m.5 views

WordPress FOX plugin <= 1.4.5 - SQL Injection vulnerability

SQL Injection vulnerability discovered by timomangcut in WordPress Plugin FOX versions = 1.4.5...

7.6CVSS5.9AI score0.00279EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2026/03/23 8:15 p.m.4 views

WordPress ReviewX - WooCommerce Product Reviews with Multi-Criteria, Reminder Emails, Google Reviews, Schema & More plugin <= 2.2.12 - Unauthenticated Sensitive Information Exposure vulnerability

WordPress ReviewX - WooCommerce Product Reviews with Multi-Criteria, Reminder Emails, Google Reviews, Schema & More plugin = 2.2.12 - Unauthenticated Sensitive Information Exposure vulnerability discovered by abrahack in WordPress Plugin ReviewX versions = 2.2.12...

5.3CVSS5.8AI score0.00219EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/23 8:14 p.m.6 views

WordPress ReviewX - WooCommerce Product Reviews with Multi-Criteria, Reminder Emails, Google Reviews, Schema & More plugin <= 2.2.12 - Unauthenticated Sensitive Information Exposure to Data Export vulnerability

WordPress ReviewX - WooCommerce Product Reviews with Multi-Criteria, Reminder Emails, Google Reviews, Schema & More plugin = 2.2.12 - Unauthenticated Sensitive Information Exposure to Data Export vulnerability discovered by abrahack in WordPress Plugin ReviewX versions = 2.2.12...

5.3CVSS5.8AI score0.00312EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/23 8:10 p.m.7 views

WordPress Yoast SEO plugin <= 27.1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'jsonText' Block Attribute vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via 'jsonText' Block Attribute vulnerability discovered by Osvaldo Noe Gonzalez Del Rio Os - krei.dev | ogbuilders.io in WordPress Plugin Yoast SEO versions = 27.1.1...

6.4CVSS5.8AI score0.00193EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/23 8:5 p.m.6 views

WordPress Filestack Official plugin <= 2.1.0 - Reflected Cross-Site Scripting vulnerability

Reflected Cross-Site Scripting vulnerability discovered by vgo0 in WordPress Plugin Filestack Official versions = 2.1.0...

6.1CVSS7.3AI score0.00369EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/23 7:57 p.m.6 views

WordPress Post Affiliate Pro plugin <= 1.28.0 - Authenticated (Administrator+) Server-Side Request Forgery via 'Post Affiliate Pro URL' Field vulnerability

Authenticated Administrator+ Server-Side Request Forgery via 'Post Affiliate Pro URL' Field vulnerability discovered by Phap Nguyen Anh - FIS in WordPress Plugin Post Affiliate Pro versions = 1.28.0...

6.5CVSS5.8AI score0.00259EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/23 7:53 p.m.7 views

WordPress Alfie - Feed Plugin plugin <= 1.2.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting via 'naam' Parameter vulnerability

WordPress Alfie - Feed Plugin plugin = 1.2.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting via 'naam' Parameter vulnerability discovered by Muhammad Nur Ibnu Hubab Ibnu - Pondok Teknologi in WordPress Plugin Alfie versions = 1.2.1...

6.1CVSS5.8AI score0.00242EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/23 7:53 p.m.6 views

WordPress WPFAQBlock- FAQ & Accordion Plugin For Gutenberg plugin <= 1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'class' Shortcode Attribute vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via 'class' Shortcode Attribute vulnerability discovered by theviper17y in WordPress Plugin WPFAQBlock versions = 1.1...

6.4CVSS5.8AI score0.00243EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2026/03/23 7:52 p.m.6 views

WordPress Vagaro Booking Widget plugin <= 0.3 - Unauthenticated Stored Cross-Site Scripting via 'vagaro_code' vulnerability

Unauthenticated Stored Cross-Site Scripting via 'vagarocode' vulnerability discovered by Nabil Irawan - Heroes Cyber Security in WordPress Plugin Vagaro Booking Widget versions = 0.3...

7.2CVSS5.8AI score0.00287EPSS
Exploits0References1Affected Software1
Total number of security vulnerabilities46704