Page last updated:

Type

Affected Software

Latest Version

Description

Severity

Date

  • Plugin

    Ninja Forms

    <=

    3.8.24

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    5 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    3.8.24

    Description

    pulse_description

    5 days ago

  • Plugin

    YITH WooCommerce Wishlist

    <=

    4.5.0

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    5 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    4.5.0

    Description

    pulse_description

    5 days ago

  • Plugin

    Smash Balloon Social Post Feed

    <=

    4.3.1

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    10 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    4.3.1

    Description

    pulse_description

    10 days ago

  • Plugin

    Sassy Social Share

    <=

    3.3.75

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    7.1

    12 days ago

    Type

    Plugin

    7.1

    Affected Software

    Latest Version

    <=

    3.3.75

    Description

    pulse_description

    12 days ago

  • Plugin

    Simple History

    <=

    5.8.1

    Sensitive Data Exposure – This could allow a malicious actor to view sensitive information that is normally not available to regular users. This can be used to exploit other weaknesses in the system.

    4.9

    13 days ago

    Type

    Plugin

    4.9

    Affected Software

    Latest Version

    <=

    5.8.1

    Description

    pulse_description

    13 days ago

  • Plugin

    Forminator

    <=

    1.44.1

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    17 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    1.44.1

    Description

    pulse_description

    17 days ago

  • Plugin

    Shortcodes Ultimate

    <=

    7.3.5

    Cross Site Scripting (XSS) -This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    17 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    7.3.5

    Description

    pulse_description

    17 days ago

  • Plugin

    GamiPress

    <=

    7.4.5

    SQL Injection – This could allow a malicious actor to directly interact with your database, including but not limited to stealing information.

    7.6

    17 days ago

    Type

    Plugin

    7.6

    Affected Software

    Latest Version

    <=

    7.4.5

    Description

    pulse_description

    17 days ago

  • Plugin

    Popup Maker

    <=

    1.20.4

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    18 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    1.20.4

    Description

    pulse_description

    18 days ago

  • Plugin

    Squirrly SEO – Advanced Pack

    <=

    2.4.01

    SQL Injection – This could allow a malicious actor to directly interact with your database, including but not limited to stealing information.

    7.6

    19 days ago

    Type

    Plugin

    7.6

    Affected Software

    Latest Version

    <=

    2.4.01

    Description

    pulse_description

    19 days ago

  • Plugin

    Ocean Extra

    <=

    2.4.8

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    20 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    2.4.8

    Description

    pulse_description

    20 days ago

  • Plugin

    Royal Elementor Addons

    <=

    1.7.1020

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    20 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    1.7.1020

    Description

    pulse_description

    20 days ago

  • Plugin

    Instagram Feed

    <=

    6.9.0

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    24 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    6.9.0

    Description

    pulse_description

    24 days ago

  • Plugin

    WooCommerce

    <=

    9.3.2

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    7.1

    24 days ago

    Type

    Plugin

    7.1

    Affected Software

    Latest Version

    <=

    9.3.2

    Description

    pulse_description

    24 days ago

  • Plugin

    Easy Digital Downloads

    <=

    3.3.8.1

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    24 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    3.3.8.1

    Description

    pulse_description

    24 days ago

  • Plugin

    Bold Page Builder

    <=

    5.3.6

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    24 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    5.3.6

    Description

    pulse_description

    24 days ago

  • Plugin

    URL Shortify

    <=

    1.10.5.1

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    5.9

    24 days ago

    Type

    Plugin

    5.9

    Affected Software

    Latest Version

    <=

    1.10.5.1

    Description

    pulse_description

    24 days ago

  • Plugin

    All In One SEO Pack

    <=

    4.8.1.1

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    33 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    4.8.1.1

    Description

    pulse_description

    33 days ago

  • Plugin

    Shortlinks by Pretty Links

    <=

    3.6.15

    Broken Access Control – A broken access control issue refers to a missing authorization, authentication or nonce token check in a function that could lead to an unprivileged user to executing a certain higher privileged action.

    4.3

    34 days ago

    Type

    Plugin

    4.3

    Affected Software

    Latest Version

    <=

    3.6.15

    Description

    pulse_description

    34 days ago

  • Plugin

    Social Pug

    <=

    1.34.3

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    5.9

    34 days ago

    Type

    Plugin

    5.9

    Affected Software

    Latest Version

    <=

    1.34.3

    Description

    pulse_description

    34 days ago

Is Your WordPress Site in Good Health? 🔍 

Get a free, 30-second health scan of your WordPress site.

 

We’ll show you what’s working and what needs attention with clear, actionable steps to improve security, performance, and overall site health.

Close the CTA
Check My Site Health