Page last updated:

Type

Affected Software

Latest Version

Description

Severity

Date

  • Plugin

    DearFlip

    <=

    2.3.65

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    7.1

    374 days ago

    Type

    Plugin

    7.1

    Affected Software

    Latest Version

    <=

    2.3.65

    Description

    pulse_description

    374 days ago

  • Plugin

    Qi Addons For Elementor

    <=

    1.9.1

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    375 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    1.9.1

    Description

    pulse_description

    375 days ago

  • Plugin

    Ninja Forms

    <=

    3.10.2.1

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    379 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    3.10.2.1

    Description

    pulse_description

    379 days ago

  • Plugin

    GiveWP

    <=

    4.3.0

    Broken Access Control – A broken access control issue refers to a missing authorization, authentication or nonce token check in a function that could lead to an unprivileged user to executing a certain higher privileged action.

    5.4

    382 days ago

    Type

    Plugin

    5.4

    Affected Software

    Latest Version

    <=

    4.3.0

    Description

    pulse_description

    382 days ago

  • Theme

    OceanWP

    <=

    4.0.9

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    382 days ago

    Type

    Theme

    6.5

    Affected Software

    Latest Version

    <=

    4.0.9

    Description

    pulse_description

    382 days ago

  • Plugin

    Elements kit Elementor addons

    <=

    3.5.2

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    382 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    3.5.2

    Description

    pulse_description

    382 days ago

  • Plugin

    Firelight Lightbox

    <=

    2.3.16

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    382 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    2.3.16

    Description

    pulse_description

    382 days ago

  • Plugin

    Breeze

    <=

    2.2.13

    Broken Access Control – A broken access control issue refers to a missing authorization, authentication or nonce token check in a function that could lead to an unprivileged user to executing a certain higher privileged action.

    4.3

    382 days ago

    Type

    Plugin

    4.3

    Affected Software

    Latest Version

    <=

    2.2.13

    Description

    pulse_description

    382 days ago

  • Plugin

    Ninja Forms

    <=

    3.8.24

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    389 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    3.8.24

    Description

    pulse_description

    389 days ago

  • Plugin

    YITH WooCommerce Wishlist

    <=

    4.5.0

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    389 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    4.5.0

    Description

    pulse_description

    389 days ago

  • Plugin

    Smash Balloon Social Post Feed

    <=

    4.3.1

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    394 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    4.3.1

    Description

    pulse_description

    394 days ago

  • Plugin

    Sassy Social Share

    <=

    3.3.75

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    7.1

    396 days ago

    Type

    Plugin

    7.1

    Affected Software

    Latest Version

    <=

    3.3.75

    Description

    pulse_description

    396 days ago

  • Plugin

    Simple History

    <=

    5.8.1

    Sensitive Data Exposure – This could allow a malicious actor to view sensitive information that is normally not available to regular users. This can be used to exploit other weaknesses in the system.

    4.9

    397 days ago

    Type

    Plugin

    4.9

    Affected Software

    Latest Version

    <=

    5.8.1

    Description

    pulse_description

    397 days ago

  • Plugin

    Forminator

    <=

    1.44.1

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    401 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    1.44.1

    Description

    pulse_description

    401 days ago

  • Plugin

    Shortcodes Ultimate

    <=

    7.3.5

    Cross Site Scripting (XSS) -This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    401 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    7.3.5

    Description

    pulse_description

    401 days ago

  • Plugin

    GamiPress

    <=

    7.4.5

    SQL Injection – This could allow a malicious actor to directly interact with your database, including but not limited to stealing information.

    7.6

    401 days ago

    Type

    Plugin

    7.6

    Affected Software

    Latest Version

    <=

    7.4.5

    Description

    pulse_description

    401 days ago

  • Plugin

    Popup Maker

    <=

    1.20.4

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    401 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    1.20.4

    Description

    pulse_description

    401 days ago

  • Plugin

    Squirrly SEO – Advanced Pack

    <=

    2.4.01

    SQL Injection – This could allow a malicious actor to directly interact with your database, including but not limited to stealing information.

    7.6

    403 days ago

    Type

    Plugin

    7.6

    Affected Software

    Latest Version

    <=

    2.4.01

    Description

    pulse_description

    403 days ago

  • Plugin

    Ocean Extra

    <=

    2.4.8

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    403 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    2.4.8

    Description

    pulse_description

    403 days ago

  • Plugin

    Royal Elementor Addons

    <=

    1.7.1020

    Cross Site Scripting (XSS) – This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site.

    6.5

    404 days ago

    Type

    Plugin

    6.5

    Affected Software

    Latest Version

    <=

    1.7.1020

    Description

    pulse_description

    404 days ago