Lucene search

Wordfence Intelligence Weekly WordPress Vulnerability Report (May 1, 2023 to May 7, 2023)

🗓️ 11 May 2023 13:44:16Reported by Chloe ChamberlandType

Wordfence Intelligence weekly report on 58 WordPress vulnerabilities, firewall rules, and severity. Stay protected with free API access

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 199
Patchstack	WordPress Hostel Plugin <= 1.1.5.1 is vulnerable to Cross Site Scripting (XSS)	4 May 202300:00	–	patchstack
Patchstack	WordPress TheGem (Elementor) Theme < 5.8.1.1 is vulnerable to Cross Site Scripting (XSS)	5 May 202300:00	–	patchstack
Patchstack	WordPress WP Job Portal Plugin <= 2.0.1 is vulnerable to Broken Access Control	5 May 202300:00	–	patchstack
Patchstack	WordPress Spiffy Calendar Plugin <= 4.9.3 is vulnerable to Cross Site Scripting (XSS)	4 May 202300:00	–	patchstack
Patchstack	WordPress Manager for Icomoon Plugin <= 2.1 is vulnerable to Cross Site Scripting (XSS)	4 May 202300:00	–	patchstack
Patchstack	WordPress CM Pop-Up banners Plugin <= 1.5.10 is vulnerable to SQL Injection	3 May 202300:00	–	patchstack
Patchstack	WordPress TheGem Theme < 5.8.1.1 is vulnerable to Broken Access Control	5 May 202300:00	–	patchstack
Patchstack	WordPress Albo Pretorio Online Plugin <= 4.6.3 is vulnerable to Cross Site Scripting (XSS)	3 May 202300:00	–	patchstack
Patchstack	WordPress JupiterX Theme <= 3.0.0 is vulnerable to Local File Inclusion	3 May 202300:00	–	patchstack
Patchstack	WordPress Albo Pretorio Online Plugin <= 4.6.3 is vulnerable to Cross Site Scripting (XSS)	3 May 202300:00	–	patchstack

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

11 May 2023 13:16Current

8.9High risk

Vulners AI Score8.9

EPSS0.87287