Blog

For the past few weeks we have been busy working on new features and improvements to our WordPress Vulnerability Database, which went live today. Even though the whole world is going through difficult times right now, we are still here adding vulnerabilities to our databases and improving our services. So, what do we have for you!

WordPress Plugin Vulnerabilities LifterLMS < 3.37.15 – Arbitrary File WritingWordPress SEO Plugin – Rank Math < 1.0.41 – Redirect Creation via Unprotected REST API EndpointWordPress SEO Plugin – Rank Math < 1.0.41 – Privilege Escalation via Unprotected REST API EndpointElementor Page Builder < 2.9.6 – Authenticated Safe Mode Privilege EscalationCM Pop-Up banners < 1.4.11 -…

From today all Enterprise users have access to Slack Incoming Webhook Notifications functionality. The new notifications allow Enterprise users to set a Slack Incoming Webhook URL within their profile page that will send a Slack notification with the vulnerability title and URL every time a new vulnerability is added to our database.