CrossSite Request Forgery to Plugin Deactivation via edd_sendwp_disconnect and edd_sendwp_remote_install Functions vulnerability
1 day ago
Authenticated (Contributor+) Stored CrossSite Scripting via edd_receipt Shortcode vulnerability
28 May, 2025
Unauthenticated Private Post Title Disclosure vulnerability
24 March, 2025
Authenticated (Admin+) Stored CrossSite Scripting via Title vulnerability
20 January, 2025
Authenticated (Admin+) Arbitrary File Download vulnerability
23 December, 2024