Critical vulnerability fixed in WordPress LifterLMS plugin.
The WordPress LifterLMS plugin , which has 9,000+ active installations, fixed a critical vulnerability in version 3.34.5 and earlier.
Tag: WordPress
Settings change vulnerability in WordPress Search Exclude plugin.
The WordPress Search Exclude plugin, which has 30,000+ active installations, was prone to two vulnerabilities that could allow any user to change its settings.
Unauthenticated options change vulnerability in WordPress WP Private Content Plus plugin.
The WordPress WP Private Content Plus (9,000+ active installations) was prone to an unauthenticated options change vulnerability.
Critical vulnerability in WordPress Bold Page Builder plugin currently being exploited.
A critical vulnerability in the WordPress Bold Page Builder plugin, which has 20,000+ active installations, has been exploited for the past 24 hours.
HTML injection vulnerability in WordPress CformsII plugin.
The WordPress CformsII plugin (10,000+ active installations) was prone to an HTML injection vulnerability that could be used to target the administrator.