Vulnerable WordPress Plugins Report for the Week of August 24, 2018

August 24, 2018
By
- Paul Gilzow
- Plugins
- Security

Vulnerable Plugins

Five disclosures since last week, with four issues unfixed, the most serious being an unfixed CSV Injection vulnerability in Ninja Forms.

View this week's vulnerable plugins list.

Other Security News

phpMyAdmin released a patch earlier this week that addresses an authenticated, stored cross-site scripting issue. Similarly, the Apache Foundation released a critical patch earlier this week for the Struts framework (yes, the same one that was used last year to breach Equifax) that addresses a remote code execution vulnerability.

From our Community Blog

Board of Directors monthly meeting: 19 April 2024

April 19, 2024
By Reed Piernock

The next monthly meeting of the WPCampus Board of Directors is 19 April 2024 at 3:30pm (Eastern). These meetings are held on the 3rd Friday of each month, and are...

WPCampus 2024 at Georgetown University in Washington DC from July 31 to August 2

April 14, 2024
By Nathan Wallace

About the event WPCampus 2024 will take place at Georgetown University from July 31 - Aug 2 for the WPCampus community, a gathering of web professionals, educators, and people dedicated...

Subscribe to Community Blog updates