There are twenty nine issues this week, with only one unfixed. The most critical this week are Authenticated (low privileged user) Arbitrary Options Update vulnerability in the One Click SSL plugin (fix available) and in the WPTF Hybrid Composer plugin (fix available), and multiple critical issues in the File Manager (by mndpsingh287) plugin (fix available).
View this week’s vulnerable plugins list.
There will probably not be any vulnerability reports for the remainder of July as I’ll be on vacation and then attending (and presenting at) WPCampus 2019. I’ll be back again in August.