Page last updated:

Type

Affected Software

Latest Version

Description

Severity

Date

  • Plugin

    Custom Twitter Feeds

    <=

    2.2.5

    Cross Site Request Forgery (CSRF) – This could allow a malicious actor to force higher privileged users to execute unwanted actions under their current authentication.

    4.3

    483 days ago

    Type

    Plugin

    4.3

    Affected Software

    Latest Version

    <=

    2.2.5

    Description

    pulse_description

    483 days ago

  • Plugin

    Order Export & Order Import for WooCommerce

    <=

    2.6.0

    Arbitrary File Download – This could allow a malicious actor to download any file from your website. This includes but is not limited to files that contain login credentials or backup files.

    4.9

    483 days ago

    Type

    Plugin

    4.9

    Affected Software

    Latest Version

    <=

    2.6.0

    Description

    pulse_description

    483 days ago

  • Plugin

    GS Logo Slider

    <=

    3.7.3

    Content Injection – This could allow a malicious actor to inject their own content into pages and posts of your website. This could also be abused to inject phishing pages into your website.

    7.3

    485 days ago

    Type

    Plugin

    7.3

    Affected Software

    Latest Version

    <=

    3.7.3

    Description

    pulse_description

    485 days ago

  • Plugin

    Conditional Fields for Contact Form 7

    <=

    2.4.13

    Cross Site Request Forgery (CSRF) – This could allow a malicious actor to force higher privileged users to execute unwanted actions under their current authentication.

    4.3

    486 days ago

    Type

    Plugin

    4.3

    Affected Software

    Latest Version

    <=

    2.4.13

    Description

    pulse_description

    486 days ago

  • Plugin

    ShareThis Dashboard for Google Analytics

    <=

    3.2.1

    Broken Access Control – A broken access control issue refers to a missing authorization, authentication or nonce token check in a function that could lead to an unprivileged user to executing a certain higher privileged action.

    5.4

    489 days ago

    Type

    Plugin

    5.4

    Affected Software

    Latest Version

    <=

    3.2.1

    Description

    pulse_description

    489 days ago

  • Plugin

    DethemeKit For Elementor

    <=

    2.1.9

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    489 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    2.1.9

    Description

    pulse_description

    489 days ago

  • Plugin

    LoginPress

    <=

    3.3.1

    Cross Site Request Forgery (CSRF) – This could allow a malicious actor to force higher privileged users to execute unwanted actions under their current authentication.

    5.4

    490 days ago

    Type

    Plugin

    5.4

    Affected Software

    Latest Version

    <=

    3.3.1

    Description

    pulse_description

    490 days ago

  • Plugin

    WP Recipe Maker

    <=

    9.8.0

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    490 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    9.8.0

    Description

    pulse_description

    490 days ago

  • Plugin

    Post SMTP

    <=

    3.1.2

    SQL Injection – This could allow a malicious actor to directly interact with your database, including but not limited to stealing information.

    7.6

    493 days ago

    Type

    Plugin

    7.6

    Affected Software

    Latest Version

    <=

    3.1.2

    Description

    pulse_description

    493 days ago

  • Plugin

    Essential Blocks for Gutenberg

    <=

    5.3.1

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    493 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    5.3.1

    Description

    pulse_description

    493 days ago

  • Plugin

    The Plus Addons for Elementor

    <=

    6.2.2

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    493 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    6.2.2

    Description

    pulse_description

    493 days ago

  • Plugin

    PixelYourSite

    <=

    10.1.1.1

    PHP Object Injection – This could allow a malicious actor to execute code injection, SQL injection, path traversal, denial of service, and more if a proper POP chain is present.

    9.8

    499 days ago

    Type

    Plugin

    9.8

    Affected Software

    Latest Version

    <=

    10.1.1.1

    Description

    pulse_description

    499 days ago

  • Plugin

    Recapture for WooCommerce

    <=

    1.0.43

    Cross Site Request Forgery (CSRF) – This could allow a malicious actor to force higher privileged users to execute unwanted actions under their current authentication.

    6.5

    500 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    1.0.43

    Description

    pulse_description

    500 days ago

  • Plugin

    Page Builder by SiteOrigin

    <=

    2.31.4

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    500 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    2.31.4

    Description

    pulse_description

    500 days ago

  • Plugin

    GenerateBlocks

    <=

    1.9.1

    Sensitive Data Exposure – This could allow a malicious actor to view sensitive information that is normally not available to regular users. This can be used to exploit other weaknesses in the system.

    4.3

    500 days ago

    Type

    Plugin

    4.3

    Affected Software

    Latest Version

    <=

    1.9.1

    Description

    pulse_description

    500 days ago

  • Plugin

    Kadence Blocks

    <=

    3.4.9

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    500 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    3.4.9

    Description

    pulse_description

    500 days ago

  • Plugin

    Forminator

    <=

    1.39.2

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    504 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    1.39.2

    Description

    pulse_description

    504 days ago

  • Plugin

    Essential Blocks

    <=

    5.2.3

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    505 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    5.2.3

    Description

    pulse_description

    505 days ago

  • Plugin

    Simple Image Sizes

    <=

    3.2.2

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    5.9

    506 days ago

    Type

    Plugin

    5.9

    Affected Software

    Latest Version

    <=

    3.2.2

    Description

    pulse_description

    506 days ago

  • Plugin

    Logo Slider

    <=

    4.5.9

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    506 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    4.5.9

    Description

    pulse_description

    506 days ago