Category: Plugin Exploit

PrestaShop’s Customer Photo Gallery Module Vulnerable to SQL Injection Attacks, Versions < 2.9.3 Affected

Reflected XSS Vulnerability In “Ivory Search” WP Plugin Impact Over 60K sites

Reflected XSS vulnerability found in ‘Cooked Pro – Recipe Plugin v1.7.5.5’ for WordPress – Update Immediately

Zero-Day Vulnerability in The Plus Addons for Elementor Plugin Puts Over 20,000 Websites at Risk

Unrestricted File Upload Vulnerability found in Contact Form 7, update immediately (5 million+ sites affected)

WPBakery WordPress plugin fixes a critical vulnerability that affected over 4.3 million sites

Hackers targeting OpenCart sites, sending an email about OpenCart Database Hacked

SQL Errors resulting in Sensitive Data Exposure in Journal OpenCart Theme < 3.1.0 - Update immediately

XSS Vulnerability found in Coming Soon Page, Under Construction & Maintenance Mode by SeedProd <= 5.1.0 - update immediately

Targeted Redirection Attacks to Digestcolect .com in WordPress Websites – Linked To Vulnerabilities in Elementor Pro

Elementor Pro and Ultimate Addons For Elementor Under Attack: Update Quickly

XSS Vulnerability found in WPForms Plugin < 1.5.9 - Update immediately

CSV Injection in Export Users to CSV WordPress Plugin <= 1.4.2

Cross-Site Request Forgery in Tutor LMS Plugin <= 1.5.2 - update immediately