WordPress Elementor 插件的图像比较附加组件 <= 1.0.2.2 - 缺少对经过身份验证 (订阅者+) 的任意插件上传的授权漏洞

WordPress Elementor 插件的图像比较附加组件 <= 1.0.2.2 - 缺少对经过身份验证 (订阅者+) 的任意插件上传的授权漏洞

WordPress Posts Navigation Links for Sections and Headings plugin <= 1.0.1 - Cross-Site Request Forgery to Settings Update vulnerability

WordPress DominoKit plugin <= 1.1.0 - Missing Authorization to Unauthenticated Settings Update vulnerability

WordPress Simple User Capabilities plugin <= 1.0 - Missing Authorization to Authenticated (Subscriber+) Privilege Escalation vulnerability

WordPress Crypto Payment Gateway with Payeer for WooCommerce plugin <= 1.0.3 - Unauthenticated Payment Bypass vulnerability

WordPress Post SMTP插件 <= 3.6.0 - 缺少未经身份验证的电子邮件日志泄露导致的账户接管授权

WordPress SiteSEO plugin <= 1.3.1 - Missing Authorization to Authenticated (Author+) Plugin Settings Update vulnerability

WordPress WP Discourse plugin <= 2.5.9 - Authenticated (Author+) Information Exposure vulnerability

WordPress ERI File Library plugin <= 1.1.0 - Missing Authorization to Unauthenticated Protected File Download vulnerability