Privilege escalation vulnerability in WordPress ND Learning Courses plugin.

The WordPress ND Learning Courses plugin (2,000+ active installations) was prone to a critical vulnerability that could allow an attacker to take over the blog and its database.

Privilege escalation vulnerability in WordPress ND Booking plugin.

The WordPress ND Bookings plugin (3,000+ active installations) was prone to a critical vulnerability that could allow an attacker to take over the blog and its database.

Privilege escalation vulnerability in WordPress ND Donations plugin.

The WordPress ND Donations plugin (2,000+ active installations) was prone to a critical vulnerability that could allow an attacker to take over the blog and its database.

Privilege escalation vulnerability in WordPress ND Travel Management plugin.

The WordPress ND Travel Management plugin (1,000+ active installations) was prone to a critical vulnerability that could allow an attacker to take over the blog and its database

Multiple vulnerabilities in WordPress Woody Ad Snippets plugin lead to remote code execution.

A unauthenticated options import vulnerability combined with a stored XSS vulnerability can lead to remote code execution in the WordPress “Woody Ad Snippets” plugin (90,000+ active installations), allowing hackers to compromise the website and its database.