Page last updated:

Type

Affected Software

Latest Version

Description

Severity

Date

  • Plugin

    Contact Form 7 Database Addon – CFDB7

    <=

    1.3.1

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    7.1

    5 days ago

    Type

    Plugin

    7.1

    Affected Software

    Latest Version

    <=

    1.3.1

    Description

    pulse_description

    5 days ago

  • Plugin

    Essential Addons for Elementor

    <=

    6.1.19

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    5 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    6.1.19

    Description

    pulse_description

    5 days ago

  • Plugin

    Uncode Core

    <=

    2.9.4.2

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    5 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    2.9.4.2

    Description

    pulse_description

    5 days ago

  • Plugin

    Post Grid, Image Gallery & Portfolio for Elementor | PowerFolio

    <=

    3.2.0

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    5 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    3.2.0

    Description

    pulse_description

    5 days ago

  • Plugin

    Gutenberg Blocks by Kadence Blocks

    <=

    3.5.10

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    5 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    3.5.10

    Description

    pulse_description

    5 days ago

  • Plugin

    DearFlip

    <=

    2.3.65

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    7.1

    12 days ago

    Type

    Plugin

    7.1

    Affected Software

    Latest Version

    <=

    2.3.65

    Description

    pulse_description

    12 days ago

  • Plugin

    Qi Addons For Elementor

    <=

    1.9.1

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    13 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    1.9.1

    Description

    pulse_description

    13 days ago

  • Plugin

    Ninja Forms

    <=

    3.10.2.1

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    17 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    3.10.2.1

    Description

    pulse_description

    17 days ago

  • Plugin

    GiveWP

    <=

    4.3.0

    Broken Access Control – A broken access control issue refers to a missing authorization, authentication or nonce token check in a function that could lead to an unprivileged user to executing a certain higher privileged action.

    5.4

    19 days ago

    Type

    Plugin

    5.4

    Affected Software

    Latest Version

    <=

    4.3.0

    Description

    pulse_description

    19 days ago

  • Theme

    OceanWP

    <=

    4.0.9

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    19 days ago

    Type

    Theme

    6.5

    Affected Software

    Latest Version

    <=

    4.0.9

    Description

    pulse_description

    19 days ago

  • Plugin

    Elements kit Elementor addons

    <=

    3.5.2

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    19 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    3.5.2

    Description

    pulse_description

    19 days ago

  • Plugin

    Firelight Lightbox

    <=

    2.3.16

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    20 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    2.3.16

    Description

    pulse_description

    20 days ago

  • Plugin

    Breeze

    <=

    2.2.13

    Broken Access Control – A broken access control issue refers to a missing authorization, authentication or nonce token check in a function that could lead to an unprivileged user to executing a certain higher privileged action.

    4.3

    20 days ago

    Type

    Plugin

    4.3

    Affected Software

    Latest Version

    <=

    2.2.13

    Description

    pulse_description

    20 days ago

  • Plugin

    Ninja Forms

    <=

    3.8.24

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    27 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    3.8.24

    Description

    pulse_description

    27 days ago

  • Plugin

    YITH WooCommerce Wishlist

    <=

    4.5.0

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    27 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    4.5.0

    Description

    pulse_description

    27 days ago

  • Plugin

    Smash Balloon Social Post Feed

    <=

    4.3.1

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    31 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    4.3.1

    Description

    pulse_description

    31 days ago

  • Plugin

    Sassy Social Share

    <=

    3.3.75

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    7.1

    34 days ago

    Type

    Plugin

    7.1

    Affected Software

    Latest Version

    <=

    3.3.75

    Description

    pulse_description

    34 days ago

  • Plugin

    Simple History

    <=

    5.8.1

    Sensitive Data Exposure – This could allow a malicious actor to view sensitive information that is normally not available to regular users. This can be used to exploit other weaknesses in the system.

    4.9

    35 days ago

    Type

    Plugin

    4.9

    Affected Software

    Latest Version

    <=

    5.8.1

    Description

    pulse_description

    35 days ago

  • Plugin

    Forminator

    <=

    1.44.1

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    38 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    1.44.1

    Description

    pulse_description

    38 days ago

  • Plugin

    Shortcodes Ultimate

    <=

    7.3.5

    Cross Site Scripting (XSS) -This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    39 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    7.3.5

    Description

    pulse_description

    39 days ago

Is Your WordPress Site in Good Health? 🔍 

Get a free, 30-second health scan of your WordPress site.

 

We’ll show you what’s working and what needs attention with clear, actionable steps to improve security, performance, and overall site health.

Close the CTA
Check My Site Health