WordPress Global Content Blocks plugin version 2.1.5 suffers from a cross site request forgery vulnerability.
0f2b9abeb8b770a6bc6a9870916904a2c4d2bfff9701bd7c0c0df561111e1a69
WordPress Trust Form plugin version 2.0 suffers from a cross site scripting vulnerability.
f0520b62eba5142812d52e24b0842400be91238307a22751b2fc0270207501f7
WordPress Analytics Stats Counter Statistics plugin version 1.2.2.5 suffers from a PHP object injection vulnerability.
d1935f94c13d237a769e00666940587d42964a0f386dbc6ac59063ea3b38e413
WordPress WP-Filebase Download Manager plugin version 3.4.4 suffers from a cross site scripting vulnerability.
979fbbeecfa00a214223f001ac5c8d271726113e0cf0f2b7d1d6a1a6d7cb5942
WordPress Admin Custom Login plugin version 2.4.5.2 suffers from a persistent cross site scripting vulnerability.
6d78f22f7c67f695ae49fc60ee47fad5693fd927af00a1ecb56df1fdaf5bd89c
WordPress WP-SpamFree Anti-Spam plugin version 2.1.1.4 suffers from a cross site scripting vulnerability.
db5dbfcbe4a5e667c55abb55d4576550faf4d3a1fe318516f8a382e265bfffd1
Western Digital My Cloud with firmware version 2.21.119 suffers from an authentication bypass vulnerability.
07f438c38cd48633a9f62d69405eb28f29efca802afed3c49bd9740875178ddc
WordPress User Access Manager plugin version 1.2.6.7 suffer from a cross site scripting vulnerability.
6922073e4128970a34c759af113c580b26f672963ff2a12e052ca6848ce12293
WordPress FormBuilder plugin version 1.05 suffers from a cross site request forgery vulnerability.
802b442dfa53531fd80f9ec001bf164207aa8164ff344771bb40415f62a94715
WordPress InfiniteWP Client plugin versions 1.5.1.3 and 1.6.0 suffer from a PHP object injection vulnerability.
74ff5245b2d5c61d42d72ec48e5ef102ec8f33a14a671e780a71faac3de023c7
WordPress CMS Command Client plugin version 2.21 suffer from a PHP object injection vulnerability.
7625040df4e8cd693c4e1f946eb49f919e552143bf24eb14f8dfd937809d5dd3
WordPress Google Forms plugin versions 0.8 through 0.87 suffer from a PHP object injection vulnerability.
ae94630680f1e42c5eeb8f1edcd5f27fe6bcea14d0a2979fd4b00f7a0817a4a2
WordPress Google Analytics Counter Tracker plugin version 3.1.5 suffers from an unauthenticated PHP object injection vulnerability.
01654689636bef5925c245d7d1217729afb3e51f7b76fc4dde4ed5b426e5deed
WordPress Insert Html Snippet plugin version 1.2 suffers from a cross site request forgery vulnerability.
88cdb0cc08fc0716a77ecedb0dcebc1babd0f1b3b9aff65d890c24afc0b2ffb3
WordPress Image Gallery plugin version 1.9.65 suffers from a persistent cross site scripting vulnerability.
0bb0d94ef5393df1da4ec3d3dd81c9738261921d4c15cfd9d9d4d0d680c19feb
WordPress Canvas - Shortcodes plugin version 1.92 suffers from a persistent cross site scripting vulnerability.
df2444b47f4a472964932e55ac22ed373bde66c7f0329b98e3a724aa42845768
WordPress Instagram Feed plugin version 1.4.6.2 suffers from cross site request forgery and cross site scripting vulnerabilities.
8c232c763429aed63e5b28b16fa33e0f73a8715bf58d2dc309b8f4d2b55e9e39
WordPress Huge IT Portfolio Gallery plugin version 2.0.77 suffers from a cross site scripting vulnerability.
4a873701d99ad10e859208f48cd91f7b0f74705e5e6ab575559ba46bf5c767b8
WordPress Check Email plugin version 0.3 suffers from a cross site scripting vulnerability.
063154870774d2d61ea0560efe97056df2a3d78625a3957b081ed145a8c443db
WordPress W3 Total Cache plugin version 0.9.4.1 suffers from a cross site scripting vulnerability.
dad348fbfcafead56be5e0cbe894d149a654cc0e0a985c5d4ecbd785eae06fff
An information disclosure vulnerability was found in the W3 Total Cache plugin. This issue allows an attacker to hijack sensitive information, such as the administrator's session cookie. Exploiting the vulnerability is possible during a short period of time when an administrator submits the support form. Version 0.9.4.1 is affected.
7a6aaf418ea8e714659aa334b04274d3631ce06a115fe6141fe555d1aa58a51d
WordPress Google Maps plugin version 6.3.14 suffers from a cross site request forgery vulnerability.
f561f52225402b48f3f253963d3a14e7732f445a9eb81cedba6aa67394d63d00
A vulnerability in the validation of Amazon SNS messages was found in the W3 Total Cache plugin. This issue allows an attacker to perform a variety of actions concerning the server's cache, which may result in a denial of service attack. Version 0.9.4.1 is affected.
59cce5048bc779a87a1b48d11a7eaae8585ecf4fcf88a05433fae03944d7dfd8
WordPress 404 to 301 plugin version 2.2.8 suffers from a persistent cross site scripting vulnerability.
caf5fe4e82197491c2d860c9c6183c6cfbe9f3b073eb49cb2472f0de886a1e21
WordPress Calendar plugin version 1.3.7 suffers from a cross site scripting vulnerability.
ea052d53851c7851e99b09704105a6c6efd2ea912fa3031b5a38723b58c17e60