Wordfence Intelligence Weekly WordPress Vulnerability Report (January 29, 2024 to February 4, 2024)

---

🎉 Did you know we’re running a Bug Bounty Extravaganza again?

Earn over 6x our usual bounty rates, up to $10,000,  for all vulnerabilities submitted through February 29th, 2024 when you opt to have Wordfence handle responsible disclosure!

---

Last week, there were 122 vulnerabilities disclosed in 110 WordPress Plugins and no WordPress themes that have been added to the Wordfence Intelligence Vulnerability Database, and there were 52 Vulnerability Researchers that contributed to WordPress Security last week. Review those vulnerabilities in this report now to ensure your site is not affected.

Our mission with Wordfence Intelligence is to make valuable vulnerability information easily accessible to everyone, like the WordPress community, so individuals and organizations alike can utilize that data to make the internet more secure. That is why the Wordfence Intelligence user interface, vulnerability API, webhook integration, and Wordfence CLI Vulnerability Scanner are all completely free to access and utilize both personally and commercially, and why we are running this weekly vulnerability report.

Enterprises, Hosting Providers, and even Individuals can use the Wordfence CLI Vulnerability Scanner to run regular vulnerability scans across the sites they protect. Or alternatively, utilize the vulnerability Database API to receive a complete dump of our database of over 12,000 vulnerabilities and then utilize the webhook integration to stay on top of the newest vulnerabilities added in real-time, as well as any updates made to the database, all for free.

Click here to sign-up for our mailing list to receive weekly vulnerability reports like this and important WordPress Security reports in your inbox the moment they are published.

---

New Firewall Rules Deployed Last Week

The Wordfence Threat Intelligence Team reviews each vulnerability to determine impact and severity, along with assessing the likelihood of exploitation, to verify that the Wordfence Firewall provides sufficient protection.

The team rolled out enhanced protection via firewall rules for the following vulnerabilities in real-time to our Premium, Care, and Response customers last week:

• SlimStat Analytics <= 5.1.3 – Authenticated (Subscriber+) Stored Cross-Site Scripting
• WAF-RULE-670 – data redacted while we work with the developer on a patch.
• WAF-RULE-671 – data redacted while we work with the developer on a patch.
• WAF-RULE-672 – data redacted while we work with the developer on a patch.
• WAF-RULE-674 – data redacted while we work with the developer on a patch.

Wordfence Premium, Care, and Response customers received this protection immediately, while users still running the free version of Wordfence will receive this enhanced protection after a 30 day delay.

---

Total Unpatched & Patched Vulnerabilities Last Week

Patch Status	Number of Vulnerabilities
Unpatched	32
Patched	90

---

Total Vulnerabilities by CVSS Severity Last Week

Severity Rating	Number of Vulnerabilities
Low Severity	1
Medium Severity	104
High Severity	12
Critical Severity	5

---

Total Vulnerabilities by CWE Type Last Week

Vulnerability Type by CWE	Number of Vulnerabilities
Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’)	34
Missing Authorization	29
Cross-Site Request Forgery (CSRF)	24
Information Exposure	9
Deserialization of Untrusted Data	5
Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)	4
Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’)	3
Improper Authorization	3
Improper Access Control	3
Unrestricted Upload of File with Dangerous Type	2
Authentication Bypass by Spoofing	1
Improper Input Validation	1
Improper Limitation of a Pathname to a Restricted Directory (‘Path Traversal’)	1
Server-Side Request Forgery (SSRF)	1
URL Redirection to Untrusted Site (‘Open Redirect’)	1
Client-Side Enforcement of Server-Side Security	1

---

Researchers That Contributed to WordPress Security Last Week

Researcher Name	Number of Vulnerabilities
Francesco Carlucci	12
Yudistira Arya	8
Ngô Thiên An (ancorn_)	7
Nguyen Xuan Chien	7
Abdi Pranata	6
Dmitrii Ignatyev	5
Mika	5
Lucio Sá	4
Abu Hurayra (HurayraIIT)	4
emad	3
Webbernaut	3
Karl Emil Nikka	3
Dhabaleshwar Das	3
Huynh Tien Si	2
resecured.io	2
Krzysztof Zając	2
Dave Jong	2
Muhammad Daffa	2
Akbar Kustirama	2
Revan Arifio	1
Joshua Martinelle	1
Dimas Maulana	1
István Márton (Wordfence Vulnerability Researcher)	1
Yuhang Liu	1
Sean Murphy	1
Le Ngoc Anh	1
Skalucy	1
Bob Matyas	1
Steven Julian	1
wpdabh	1
Vulzap	1
stealthcopter	1
Nathaniel Oh (0x4n3)	1
Jeongwoo-Lee(Roronoa)	1
0x9567b	1
Elliot	1
Friday	1
isacaya	1
LVT-tholv2k	1
thiennv	1
Joshua Chan	1
Faizal Abroni	1
Marc-Alexandre Montpas	1
Savphill	1
Sh	1
Richard Telleng (stueotue)	1
Debangshu Kundu	1
Arpeet Rathi	1
kauenavarro	1
Daniel Ruf	1
Rob Stevens	1
Rafie Muhammad	1

 

Are you a security researcher who would like to be featured in our weekly vulnerability report? You can responsibly disclose your WordPress vulnerability discoveries to us and earn a bounty on in-scope vulnerabilities through this form. Responsibly disclosing your vulnerability discoveries to us will also get your name added on the Wordfence Intelligence leaderboard along with being mentioned in our weekly vulnerability report.

---

WordPress Plugins with Reported Vulnerabilities Last Week

Software Name	Software Slug
A no-code page builder for beautiful performance-based content	setka-editor
ACF Photo Gallery Field	navz-photo-gallery
ARMember – Membership Plugin, Content Restriction, Member Levels, User Profile & User signup	armember-membership
Accessibility	accessibility
Active Products Tables for WooCommerce. Professional products tables for WooCommerce store	profit-products-tables-for-woocommerce
Add Customer for WooCommerce	add-customer-for-woocommerce
Advanced iFrame	advanced-iframe
Affiliates Manager	affiliates-manager
Anonymous Restricted Content	anonymous-restricted-content
Auto Listings – Car Listings & Car Dealership Plugin for WordPress	auto-listings
BEAR – Bulk Editor and Products Manager Professional for WooCommerce by Pluginus.Net	woo-bulk-editor
Beds24 Online Booking	beds24-online-booking
Biteship: Plugin Ongkos Kirim Kurir Instant, Reguler, Kargo	biteship
BizPrint – Print WooCommerce Order Receipts, Invoices, Labels & More.	print-google-cloud-print-gcp-woocommerce
Booking Calendar | Appointment Booking | BookIt	bookit
CC BMI Calculator	cc-bmi-calculator
CP Media Player – Audio Player and Video Player	audio-and-video-player
Calculated Fields Form	calculated-fields-form
CalculatorPro Calculators	calculatorpro-calculators
Chartify – WordPress Chart Plugin	chart-builder
Cincopa video and media plug-in	video-playlist-and-gallery-plugin
Click To Tweet	click-to-tweet
Cookie Information | Free GDPR Consent Solution	wp-gdpr-compliance
Custom Order Numbers for WooCommerce	custom-order-numbers-for-woocommerce
Custom Order Status for WooCommerce	custom-order-statuses-woocommerce
Database for Contact Form 7, WPforms, Elementor forms	contact-form-entries
Debug	debug
Don’t Muck My Markup	dont-muck-my-markup
ERE Recently Viewed – Essential Real Estate Add-On	ere-recently-viewed
Easy Digital Downloads – Sell Digital Files (eCommerce Store & Payments Made Easy)	easy-digital-downloads
Element Pack Elementor Addons (Header Footer, Free Template Library, Grid, Carousel, Table, Parallax Animation, Register Form, Twitter Grid)	bdthemes-element-pack-lite
Email Before Download	email-before-download
Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders	essential-addons-for-elementor-lite
Event Manager and Tickets Selling Plugin for WooCommerce – WpEvently – WordPress Plugin	mage-eventpress
EventON Pro	eventon
EventPrime – Events Calendar, Bookings and Tickets	eventprime-event-calendar-management
FG Drupal to WordPress	fg-drupal-to-wp
FG Joomla to WordPress	fg-joomla-to-wordpress
FG PrestaShop to WooCommerce	fg-prestashop-to-woocommerce
Fatal Error Notify	fatal-error-notify
Feed Them Social – Page, Post, Video, and Photo Galleries	feed-them-social
Five Star Restaurant Reviews	good-reviews-wp
Form builder to get in touch with visitors, grow your email list and collect payments — Happyforms	happyforms
GDPR Data Request Form	gdpr-data-request-form
Happy Addons for Elementor	happy-elementor-addons
Heateor Social Login WordPress	heateor-social-login
Html5 Video Player	UNKNOWN-CVE-2023-6485-1
Icons Font Loader	icons-font-loader
Instant Images – One Click Image Uploads from Unsplash, Openverse, Pixabay and Pexels	instant-images
JTRT Responsive Tables	jtrt-responsive-tables
JetBackup – WP Backup, Migrate & Restore	backup
Kikote – Location Picker at Checkout & Google Address AutoFill Plugin for WooCommerce	map-location-picker-at-checkout-for-woocommerce
Knowledge Base for Documentation, FAQs with AI Assistance	echo-knowledge-base
LearnDash LMS	sfwd-lms
Load More Anything	ajax-load-more-anything
MW WP Form	mw-wp-form
MapPress Maps for WordPress	mappress-google-maps-for-wordpress
Mighty Addons for Elementor	mighty-addons
MultiVendorX Marketplace – WooCommerce MultiVendor Marketplace Solution	dc-woocommerce-multi-vendor
NEX-Forms – Ultimate Form Builder – Contact forms and much more	nex-forms-express-wp-form-builder
Ninja Forms Contact Form – The Drag and Drop Form Builder for WordPress	ninja-forms
OWL Carousel – WordPress Owl Carousel Slider	lgx-owl-carousel
Orbit Fox by ThemeIsle	themeisle-companion
Order Delivery Date for WP e-Commerce	order-delivery-date
PDF Flipbook, 3D Flipbook – DearFlip	3d-flipbook-dflip-lite
PT Sign Ups – Beautiful volunteer sign ups and management made easy	ptoffice-sign-ups
Page Builder: Pagelayer – Drag and Drop website builder	pagelayer
Page Restrict	pagerestrict
Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress	wp-user-avatar
Persian Fonts	persian-fonts
PilotPress	pilotpress
Popup More Popups, Lightboxes, and more popup modules	popup-more
PopupAlly	popupally
Post Thumbnail Editor	post-thumbnail-editor
PowerPack Pro for Elementor	powerpack-elements
Premium Addons for Elementor	premium-addons-for-elementor
ProductX – WooCommerce Builder & Gutenberg WooCommerce Blocks	product-blocks
Professional Social Sharing Buttons, Icons & Related Posts – Shareaholic	shareaholic
PropertyHive	propertyhive
Quicksand Post Filter jQuery Plugin	quicksand-jquery-post-filter
RSS Aggregator by Feedzy – Feed to Post, Autoblogging, News & YouTube Video Feeds Aggregator	feedzy-rss-feeds
Relevanssi – A Better Search (Pro)	relevanssi-premium
Restrict Usernames Emails Characters	restrict-usernames-emails-characters
SEO Plugin by Squirrly SEO	squirrly-seo
SP Project & Document Manager	sp-client-document-manager
Scheduling Plugin – Online Booking for WordPress	calendar-booking
Scroll Triggered Box	dreamgrow-scroll-triggered-box
SiteOrigin Widgets Bundle	so-widgets-bundle
SlimStat Analytics	wp-slimstat
Starbox – the Author Box for Humans	starbox
Structured Content (JSON-LD) #wpsc	structured-content
TablePress – Tables in WordPress made easy	tablepress
The Plus Addons for Elementor	the-plus-addons-for-elementor-page-builder
Total Upkeep – WordPress Backup Plugin plus Restore & Migrate by BoldGrid	boldgrid-backup
Ultra Companion – Companion plugin for WPoperation Themes	ultra-companion
User Activity Tracking and Log	user-activity-tracking-and-log
UserPro – Community and User Profile WordPress Plugin	userpro
W3SPEEDSTER	w3speedster-wp
WOLF – WordPress Posts Bulk Editor and Manager Professional	bulk-editor
WP Dummy Content Generator	wp-dummy-content-generator
WP Hotel Booking	wp-hotel-booking
WP STAGING WordPress Backup Plugin – Migration Backup Restore	wp-staging
WP Visitor Statistics (Real Time Traffic)	wp-stats-manager
WP-CFM	wp-cfm
Website Builder by SeedProd — Theme Builder, Landing Page Builder, Coming Soon Page, Maintenance Mode	coming-soon
WooCommerce Box Office	woocommerce-box-office
WooCommerce Conversion Tracking	woocommerce-conversion-tracking
Woostify Sites Library	woostify-sites-library
WordPress Review & Structure Data Schema Plugin – Review Schema	review-schema
WordPress Toolbar	wordpress-toolbar

---

Vulnerability Details

Please note that if you run the Wordfence plugin on your WordPress site, with the scanner enabled, you should’ve already been notified if your site was affected by any of these vulnerabilities. If you’d like to receive real-time notifications whenever a vulnerability is added to the Wordfence Intelligence Vulnerability Database, check out our Slack and HTTP Webhook Integration, which is completely free to utilize.

Knowledge Base for Documentation, FAQs with AI Assistance <= 11.30.2 – Unauthenticated PHP Object Injection in is_article_recently_viewed

---

ProductX – WooCommerce Builder & Gutenberg WooCommerce Blocks <= 3.1.4 – PHP Object Injection via wopb_wishlist and wopb_compare

---

ERE Recently Viewed <= 1.3 – Unauthenticated PHP Object Injection

---

JetBackup <= 2.0.9.7 – Sensitive Information Exposure via Directory Listing

---

Quicksand Post Filter jQuery Plugin <= 3.1.1 – Missing Authorization via quicksand_admin_ajax

---

Instant Images <= 6.1.0 – Authenticated (Author+) Arbitrary Options Update

---

Cookie Information | Free GDPR Consent Solution <= 2.0.22 – Authenticated (Subscriber+) Arbitrary Options Update

---

Event Manager and Tickets Selling Plugin for WooCommerce – WpEvently <= 4.1.1 – Authenticated (Contributor+) PHP Object Injection in mep_event_meta_save

---

SP Project & Document Manager <= 4.69 – Authenticated (Contributor+) SQL Injection via Shortcode

---

MultiVendorX Marketplace <= 4.1.2 – Missing Authorization

---

TablePress <= 2.2.4 – Authenticated(Author+) Server Side Request Forgery(SSRF) via _get_import_files

---

Website Builder by SeedProd — Theme Builder, Landing Page Builder, Coming Soon Page, Maintenance Mode <= 6.15.21 – Missing Authorization via seedprod_lite_new_lpage

---

Woostify Sites Library

---

PropertyHive <= 2.0.5 – Unauthenticated PHP Object Injection via propertyhive_currency

---

Total Upkeep <= 1.15.8 – Improper Authorization to Unauthenticated Arbitrary File Download

---

PowerPack Pro for Elementor <= 2.10.6 – Missing Authorization to Settings Reset

---

Contact Form Entries <= 1.3.2 – Authenticated (Administrator+) Arbitrary File Upload

---

Icons Font Loader <= 1.1.4 – Authenticated(Administrator+) Arbitrary File Upload

---

HTML5 Video Player <= 2.5.24 – Unauthenticated SQL Injection via id

---

Quicksand Post Filter jQuery Plugin <= 3.1.1 – Cross-Site Request Forgery via renderAdmin

---

Order Delivery Date for WP e-Commerce <= 1.2 – Unauthenticated Stored Cross-Site Scripting

---

WP Hotel Booking <= 2.0.9.2 – Improper Authorization on Multiple REST API Routes

---

Starbox <= 3.4.8 – Authenticated (Subscriber+) Stored Cross-Site Scripting via Profile Display Name and Social Settings

---

Heateor Social Login <= 1.1.30 – Authenticated(Contributor+) Stored Cross-Site Scripting via Shortcode

---

Advanced iFrame <= 2023.10 – Authenticated (Contributor+) Stored Cross-Site Scripting

---

Five Star Restaurant Reviews <= 2.3.5 – Authenticated (Contributor+) Stored Cross-Site Scripting via Review URL

---

SlimStat Analytics <= 5.1.3 – Authenticated (Subscriber+) Stored Cross-Site Scripting

---

Ultra Companion <= 1.1.9 – Authenticated (Contributor+) Stored Cross-Site Scripting

---

OWL Carousel <= 1.4.0 – Authenticated (Contributor+) Stored Cross-Site Scripting

---

SiteOrigin Widgets Bundle <= 1.58.1 – Authenticated (Contributor+) Stored Cross-Site Scripting

---

Scheduling Plugin – Online Booking for WordPress <= 3.5.10 – Authenticated (Contributor+) Stored Cross-Site Scripting

---

Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress <= 4.14.3 – Authenticated (Contributor+) Stored Cross-Site Scripting

---

Click To Tweet <= 2.0.14 – Authenticated (Contributor+) Stored Cross-Site Scripting

---

Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders <= 5.9.7 – Authenticated (Contributor+) Stored Cross-Site Scripting

---

Structured Content <= 1.6.1 – Authenticated (Contributor+) Stored Cross-Site Scripting via Classic Editor Shortcode

---

Auto Listings <= 2.6.5 – Authenticated(Contributor+) Stored Cross-Site Scripting via Shortcode

---

Calculated Fields Form <= 1.2.52 – Authenticated (Contributor+) Stored Cross-Site Scripting

---

The Plus Addons for Elementor <= 5.3.3 – Authenticated (Contributor+) Stored Cross-Site Scripting

---

CC BMI Calculator <= 2.0.1 – Authenticated (Contributor+) Stored Cross-Site Scripting

---

GDPR Data Request Form <= 1.6 – Authenticated (Contributor+) Stored Cross-Site Scripting

---

Premium Addons for Elementor <= 4.10.16 – Authenticated (Contributor+) Stored Cross-Site Scripting

---

MapPress <= 2.88.16 – Authenticated (Contributor+) Stored Cross-Site Scripting via Map Settings

---

CalculatorPro Calculators <= 1.1.7 – Reflected Cross-Site Scripting via CP_preview_calc

---

Mighty Addons for Elementor <= 1.9.3 – Reflected Cross-Site Scripting

---

Biteship <= 2.2.24 – Reflected Cross-Site Scripting via biteship_error and biteship_message

---

PT Sign Ups <= 1.0.4 – Unauthenticated Stored Cross-Site Scripting

---

EventON <= 4.4.0 – Reflected Cross-Site Scripting

---

PowerPack Pro for Elementor < 2.10.8 – Cross-Site Request Forgery to Plugin Settings Modification and Cross-Site Scripting

---

Ninja Forms Contact Form <= 3.7.1 – Unauthenticated Second Order SQL Injection

---

Easy Digital Downloads <= 3.2.6 – Authenticated(Shop Manager+) Stored Cross-Site Scripting via variable pricing options

---

BEAR <= 1.1.4 – Authenticated (Shop manager+) Stored Cross-Site Scripting via Plugin Options

---

Scroll Triggered Box <= 2.3 – Authenticated (Editor+) Stored Cross-Site Scripting

---

MW WP Form <= 5.0.6 – Authenticated (Editor+) Stored Cross-Site Scripting

---

Accessibility <= 1.0.6 – Cross-Site Request Forgery

---

PilotPress <= 2.0.29 – Authenticated(Subscriber+) Missing Authorization via multiple AJAX functions

---

WOLF – WordPress Posts Bulk Editor and Manager Professional <= 1.0.8.1 – Cross-Site Request Forgery

---

Load More Anything <= 3.3.3 – Missing Authorization to Plugin Settings Modification

---

PDF Flipbook, 3D Flipbook – DearFlip <= 2.2.26 – Authenticated (Contributor+) Stored Cross-Site Scripting

---

Happyforms <= 1.25.10 – Missing Authorization

---

User Activity Tracking and Log <= 4.1.3 – IP Spoofing

---

EventPrime <= 3.3.9 – Improper Input Validation via save_event_booking

---

NEX-Forms – Ultimate Form Builder – Contact forms and much more <= 8.5.6 – Missing Authorization via restore_records()

---

WP Dummy Content Generator <= 3.1.2 – Missing Authorization

---

BEAR <= 1.1.4 – Missing Authorization via Several Functions

---

BizPrint <= 4.5.1 – Missing Authorization in showTemplatePreview

---

NEX-Forms – Ultimate Form Builder – Contact forms and much more <= 8.5.6 – Missing Authorization via set_starred()

---

Relevanssi Pro < 2.25 – Unauthenticated Sensitive Information Exposure

---

Orbit Fox by ThemeIsle <= 2.10.28 – Missing Authorization

---

LearnDash LMS <= 4.10.1 – Sensitive Information Exposure via API

---

LearnDash LMS <= 4.10.1 – Sensitive Information Exposure via assignments

---

PropertyHive <= 2.0.6 – Missing Authorization via activate_pro_feature

---

LearnDash LMS <= 4.10.2 – Sensitive Information Exposure via API

---

Post Thumbnail Editor <= 2.4.8 – Sensitive Information Exposure

---

UserPro <= 5.1.6 – Disabled Membership Registration Bypass

---

ARMember <= 4.0.24 – Improper Access Control to Sensitive Information Exposure via REST API

---

NEX-Forms – Ultimate Form Builder – Contact forms and much more <= 8.5.6 – Missing Authorization via set_read()

---

WP Visitor Statistics (Real Time Traffic) <= 6.9.4 – Sensitive Information Exposure via Log File

---

Anonymous Restricted Content <= 1.6.2 – Protection Mechanism Bypass

---

Email Before Download <= 6.9.7 – Cross-Site Request Forgery

---

WP STAGING WordPress Backup Plugin < 3.2.0 – Sensitive Information Exposure via cache files

---

BookIt <=2.4.0 – Price Bypass

---

Popup More <= 2.2.4 – Authenticated (Admin+) Directory Traversal to Limited Local File Inclusion

---

Restrict Usernames Emails Characters <= 3.1.3 – Authenticated(Administrator+) Stored Cross-Site Scripting

---

Persian Fonts <= 1.6 – Authenticated (Admin+) Stored Cross-Site Scripting

---

Chartify <= 2.0.6 – Authenticated(Administrator+) Stored Cross-Site Scripting

---

SEO Plugin by Squirrly SEO <= 12.3.15 – Authenticated(Administrator+) Stored Cross-Site Scripting via plugin settings

---

Pagelayer <= 1.7.9 – Authenticated(Administrator+) Stored Cross-Site Scripting via Header/Footer code

---

Add Customer for WooCommerce <= 1.7 – Authenticated (Administrator+) Stored Cross-Site Scripting

---

Beds24 Online Booking <= 2.0.23 – Authenticated(Administrator+) Stored Cross-Site Scripting

---

Fatal Error Notify <= 1.5.2 – Cross-Site Request Forgery to Test Error Email Sending

---

Active Products Tables for WooCommerce. Professional products tables for WooCommerce store <= 1.0.6.1 – Missing Authorization

---

WOLF – WordPress Posts Bulk Editor and Manager Professional <= 1.0.8.1 – Missing Authorization

---

Element Pack Elementor Addons <= 5.4.11 – Missing Authorization via bdt_duplicate_as_draft

---

Happy Addons for Elementor <= 3.10.1 – Missing Authorization via add_row_actions

---

Post Video Players <= 1.158 – Cross-Site Request Forgery via cincopa_mp_mt_options_page

---

Affiliates Manager <= 2.9.34 – Cross-Site Request Forgery

---

WooCommerce Conversion Tracking <= 2.0.11 – Missing Authorization via wcct_install_happy_addons

---

BizPrint <= 4.5.1 – Cross-Site Request Forgery in Printer Management

---

Fatal Error Notify <= 1.5.2 – Missing Authorization to Test Error Email Sending

---

Active Products Tables for WooCommerce. Professional products tables for WooCommerce store <= 1.0.6.1 – Cross-Site Request Forgery

---

Shareaholic <= 9.7.11 – Missing Authorization via accept_terms_of_service

---

Setka Editor <= 2.1.20 – Cross-Site Request Forgery via handleRequest

---

Location Picker at Checkout for WooCommerce <= 1.8.9 – Missing Authorization via checkout_map_rules_order_ajax_handler

---

FG Drupal to WordPress <= 3.67.0 – Cross-Site Request Forgery via ajax_importer

---

Orbit Fox by ThemeIsle <= 2.10.29 – Cross-Site Request Forgery

---

JTRT Responsive Tables <= 4.1.9 – Cross-Site Request Forgery

---

Page Restrict <= 2.5.5 – Cross-Site Request Forgery via pr_admin_page

---

WP-CFM <= 1.7.8 – Cross-Site Request Forgery via multiple AJAX functions

---

RSS Aggregator by Feedzy – Feed to Post, Autoblogging, News & YouTube Video Feeds Aggregator <= 4.4.1 – Missing Authorization

---

Custom Order Numbers for WooCommerce <= 1.6.0 – Cross-Site Request Forgery to Notice Dismissal

---

PopupAlly <= 2.1.0 – Cross-Site Request Forgery via optin_submit_callback

---

Debug <= 1.10 – Cross-Site Request Forgery

---

Custom Order Status for WooCommerce <= 2.3.0 – Cross-Site Request Forgery

---

WordPress Review & Structure Data Schema Plugin – Review Schema <= 2.1.14 – Missing Authorization to Arbitrary Review Update

---

Starbox – the Author Box for Humans <= 3.4.7 – Insecure Direct Object Reference

---

CP Media Player <= 1.1.3 – Cross-Site Request Forgery to Player Deletion and Duplication

---

Don’t Muck My Markup <= 1.8 – Cross-Site Request Forgery

---

W3SPEEDSTER <= 7.19 – Cross-Site Request Forgery via launch

---

WordPress Toolbar Plugin <= 2.2.6 – Open Redirect via wptbto

---

ACF Photo Gallery Field <= 2.6 – Missing Authorization

---

WooCommerce Box Office <= 1.2.2 – Missing Authorization

---

Feed Them Social <= 4.2.0 – Cross-Site Request Forgery via review_nag_check

---

As a reminder, Wordfence has curated an industry leading vulnerability database with all known WordPress core, theme, and plugin vulnerabilities known as Wordfence Intelligence.

This database is continuously updated, maintained, and populated by Wordfence’s highly credentialed and experienced vulnerability researchers through in-house vulnerability research, vulnerability researchers submitting directly to us using our CVE Request form, and by monitoring varying sources to capture all publicly available WordPress vulnerability information and adding additional context where we can.

Click here to sign-up for our mailing list to receive weekly vulnerability reports like this and important WordPress Security reports in your inbox the moment they are published.