CVE-2024-2220: Stored Cross-Site Scripting (XSS) Vulnerability in Button Contact VR WordPress Plugin through 4.7
The Button Contact VR WordPress plugin (versions up to and including 4.7) is found to be vulnerable to Stored Cross-Site Scripting (XSS) attacks. This
CVE-2024-2771: Privilege Escalation Vulnerability in Contact Form Plugin by Fluent Forms for WordPress
Attention, WordPress users! If you're utilizing the Contact Form Plugin by Fluent Forms for Quiz, Survey, and Drag & Drop WP Form Builder,
CVE-2024-33644 - Code Injection Vulnerability in WPCustomify's Customify Site Library
A critical vulnerability (CVE-2024-33644) has been discovered in WPCustomify's popular Customify Site Library WordPress plugin. This vulnerability allows unauthorized hackers to inject and
CVE-2024-31231 - Rehub Theme Path Traversal Vulnerability Leading to PHP Local File Inclusion (LFI)
Security researchers have discovered a potentially critical vulnerability in the Sizam Design Rehub WordPress theme. Dubbed CVE-2024-31231, this vulnerability allows an attacker to exploit an
CVE-2024-27954 - WP Automatic Path Traversal and Server Side Request Forgery Vulnerability
In this post, we will discuss an important vulnerability discovered in WP Automatic - a popular WordPress plugin. The vulnerability, designated as CVE-2024-27954, allows an
Episode
00:00:00
00:00:00