ID Added Title
10247 2020-06-01 Multiple Domain < 1.0.3 - XSS in Canonical/Alternate Tags
10246 2020-05-30 MapPress Maps < 2.54.6 - Improper Capability Checks in AJAX Calls
10237 2020-05-26 Form Maker by 10Web <= 1.13.35 - Authenticated SQL Injection
10234 2020-05-25 ThirstyAffiliates < 3.9.3 - Authenticated Stored XSS
10232 2020-05-22 WP Frontend Profile < 1.2.2 - CSRF Check Incorrectly Implemented
10230 2020-05-18 Ajax Load More < 5.3.2 - Authenticated SQL Injection
10226 2020-05-14 WP Product Review < 3.7.6 - Unauthenticated Stored Cross-Site Scripting ...
10225 2020-05-14 Login/Signup Popup < 1.5 - Authenticated Stored Cross-Site Scripting (XSS)
10222 2020-05-13 Elementor < 2.7.5 - Authenticated Arbitrary File Upload
10218 2020-05-11 Email Before Download < 4.0 - SMTP Header Injection
10217 2020-05-11 Email Before Download < 4.0 - SQL Injection
10215 2020-05-07 Ultimate Addons for Elementor < 1.24.2 - Registration Bypass
10211 2020-05-04 Email Before Download < 3.4.1 - SQL Injection
10210 2020-05-02 WTI Like Post <= 1.4.5 - Authenticated Stored Cross-Site Scripting (XSS)
10209 2020-05-01 Avada < 6.2.3 - Missing Permission Checks leading to Arbitrary Post Crea...
10206 2020-04-30 WordPress < 5.4.1 - Authenticated Cross-Site Scripting (XSS) in File Upl...
10205 2020-04-30 WordPress < 5.4.1 - Cross-Site Scripting (XSS) in wp-object-cache
10204 2020-04-30 WordPress < 5.4.1 - Authenticated Cross-Site Scripting (XSS) in Search B...
10203 2020-04-30 WordPress < 5.4.1 - Authenticated Cross-Site Scripting (XSS) in Customizer
10202 2020-04-30 WordPress < 5.4.1 - Unauthenticated Users View Private Posts
10201 2020-04-30 WordPress < 5.4.1 - Password Reset Tokens Failed to Be Properly Invalidated
10200 2020-04-29 Ninja Forms < 3.4.24.2 - CSRF to Stored XSS
10197 2020-04-28 Gmedia Photo Gallery < 1.18.5 - Multiple Cross-Site Scripting (XSS)
10195 2020-04-28 LearnPress < 3.2.6.9 - Privilege Escalation to "LP Instructor"
10194 2020-04-28 LearnPress < 3.2.6.9 - Authenticated Post Creation and Status Modification