Settings change and CSS injection in WordPress Ocean Extra plugin.
The WordPress Ocean Extra plugin, which has over 400,000 active installations, was prone to settings change and CSS injection vulnerabilities in version 1.5.8 and below.
Search Results for: admin_init
Critical zero-day vulnerability fixed in WordPress Easy WP SMTP plugin.
The popular Easy WP SMTP plugin, which as 300,000+ active installations, was prone to a critical zero-day vulnerability.