Category: Vulnerabilities

13/03/2026

CVE-2026-32365

Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) vulnerability in robfelty Collapsing Archives collapsing-archives allows Blind SQL Injection.This issue affects Collapsing Archives: from n/a through

13/03/2026

CVE-2026-32366

Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) vulnerability in robfelty Collapsing Categories collapsing-categories allows Blind SQL Injection.This issue affects Collapsing Categories: from n/a through

13/03/2026

CVE-2026-32367

Improper Control of Generation of Code (‘Code Injection’) vulnerability in Yannick Lefebvre Modal Dialog modal-dialog allows Remote Code Inclusion.This issue affects Modal Dialog: from n/a through

13/03/2026

CVE-2026-32360

Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in richplugins Rich Showcase for Google Reviews widget-google-reviews allows Stored XSS.This issue affects Rich Showcase for Google Reviews: from n/a through

13/03/2026

CVE-2026-32361

Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in Marketing Fire Editorial Calendar editorial-calendar allows DOM-Based XSS.This issue affects Editorial Calendar: from n/a through

13/03/2026

CVE-2026-32357

Server-Side Request Forgery (SSRF) vulnerability in Katsushi Kawamori Simple Blog Card simple-blog-card allows Server Side Request Forgery.This issue affects Simple Blog Card: from n/a through

13/03/2026

CVE-2026-32358

Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) vulnerability in wpdevelop Booking Calendar booking allows Blind SQL Injection.This issue affects Booking Calendar: from n/a through

13/03/2026

CVE-2026-32359

Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in bPlugins Icon List Block icon-list-block allows Stored XSS.This issue affects Icon List Block: from n/a through

13/03/2026

CVE-2026-32351

Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in blubrry PowerPress Podcasting powerpress allows Stored XSS.This issue affects PowerPress Podcasting: from n/a through

13/03/2026

CVE-2026-32352

Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in Elementor Elementor Website Builder elementor allows DOM-Based XSS.This issue affects Elementor Website Builder: from n/a through

13/03/2026

CVE-2026-32353

Server-Side Request Forgery (SSRF) vulnerability in MailerPress Team MailerPress mailerpress allows Server Side Request Forgery.This issue affects MailerPress: from n/a through

13/03/2026

CVE-2026-32354

Insertion of Sensitive Information Into Sent Data vulnerability in magepeopleteam WpEvently mage-eventpress allows Retrieve Embedded Sensitive Data.This issue affects WpEvently: from n/a through < 5.1.9. More information : https://patchstack.com/database/Wordpress/Plugin/mage-eventpress/vulnerability/wordpress-wpevently-plugin-5-1-9-sensitive-data-exposure-vulnerability?_s_id=cve

13/03/2026

CVE-2026-32355

Deserialization of Untrusted Data vulnerability in Crocoblock JetEngine jet-engine allows Object Injection.This issue affects JetEngine: from n/a through < 3.8.4.1. More information : https://patchstack.com/database/Wordpress/Plugin/jet-engine/vulnerability/wordpress-jetengine-plugin-3-8-4-1-deserialization-of-untrusted-data-vulnerability?_s_id=cve

13/03/2026

CVE-2026-32356

Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in robosoft Robo Gallery robo-gallery allows DOM-Based XSS.This issue affects Robo Gallery: from n/a through

Category: Vulnerabilities

Recent Posts

Categories

Tags