Blog

WordPress Plugin Vulnerabilities Strong Testimonials < 2.40.1 – Stored Cross Site Scripting (XSS)GistPress < 3.0.2 – Authenticated Stored XSSCode Snippets < 2.14.0 – CSRF to RCEElementor Page Builder < 2.8.5 – Authenticated Reflected XSSElementor Page Builder < 2.7.6 – Authenticated Stored XSSWPS Hide Login < 1.5.5 – Secret Login Page DisclosureWP DS FAQ Plus <…

We’re happy to announce that WPScan’s CLI JSON output can now be seamlessly imported into the Dradis Framework!

We have just launched a new feature on our WordPress Vulnerability Database that will allow Enterprise API users to configure a Webhook that will be triggered every time a new vulnerability is added to our database. This has been a much requested feature by our Enterprise users and we are happy to be able to supply a…