WordPress Vulnerability Report – April 26, 2023


Warning: getimagesize(https://ps.w.org/cmp-coming-soon-maintenance/assets/banner-1544x500.png?rev=2452591): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/blocksy-companion/assets/banner-1544x500.jpg?rev=2418486): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/essential-blocks/assets/banner-1544x500.gif?rev=2897547): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/ninja-tables/assets/banner-1544x500.png?rev=2798378): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/stream/assets/banner-1544x500.png?rev=2109965): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/powerpress/assets/banner-1544x500.jpg?rev=2849855): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/zero-bs-crm/assets/banner-1544x500.png?rev=2653601): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/helpie-faq/assets/banner-772x250.jpg?rev=2605951): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/image-optimizer-wd/assets/banner-772x250.png?rev=1736250): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/ultimate-addons-for-contact-form-7/assets/banner-772x250.jpg?rev=2468616): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/wp-original-media-path/assets/banner-1544x500.png?rev=1662270): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/learnpress-import-export/assets/banner-1544x500.jpg?rev=2400762): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/cf7-hubspot/assets/banner-1544x500.png?rev=2585265): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/captcha-them-all/assets/banner-772x250.png?rev=1628226): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/formilla-live-chat/assets/banner-1544x500.png?rev=2791474): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/new-album-gallery/assets/banner-772x250.png?rev=1981827): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/xml-for-google-merchant-center/assets/banner-772x250.jpg?rev=2467804): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/codeflavors-vimeo-video-post-lite/assets/banner-772x250.jpg?rev=1046235): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/wp-responsive-thumbnail-slider/assets/banner-772x250.png?rev=1207672): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/formassembly-web-forms/assets/banner-1544x500.jpg?rev=2897848): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/robokassa/assets/banner-1544x500.jpg?rev=1993379): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/zip-recipes/assets/banner-1544x500.png?rev=2334883): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/locatoraid/assets/banner-772x250.png?rev=1779313): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/wp-custom-author-url/assets/banner-1544x500.png?rev=2746710): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/church-admin/assets/banner-1544x500.png?rev=2788136): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/contact-form-to-db/assets/banner-1544x500.jpg?rev=2312367): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/query-wrangler/assets/banner-1544x500.jpg?rev=2245280): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/stock-exporter-for-woocommerce/assets/banner-1544x500.jpg?rev=1289801): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/wp-docs/assets/banner-1544x500.png?rev=2539073): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/formilla-chat-and-marketing/assets/banner-772x250.png?rev=2791481): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/formilla-edge/assets/banner-772x250.png?rev=1930390): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/xatkit-chatbot-connector/assets/banner-772x250.jpg?rev=2228215): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/ruby-help-desk/assets/banner-1544x500.png?rev=1665620): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/simple-share-buttons-adder/assets/banner-772x250.png?rev=2661516): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/gdpr-compliance-cookie-consent/assets/banner-1544x500.png?rev=2111971): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/shopengine/assets/banner-1544x500.png?rev=2544154): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/pearl-header-builder/assets/banner-1544x500.jpg?rev=1790528): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/simple-tooltips/assets/banner-772x250.png?rev=808472): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/smart-woocommerce-search/assets/banner-772x250.jpg?rev=1890066): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/i-recommend-this/assets/banner-772x250.jpg?rev=1307381): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/redirect-after-login/assets/banner-772x250.png?rev=2230515): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/sparkpost/assets/banner-772x250.png?rev=1367898): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/white-label-branding-elementor/assets/banner-1544x500.jpg?rev=2003519): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/arconix-shortcodes/assets/banner-1544x500.png?rev=1063600): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/formcraft-form-builder/assets/banner-1544x500.png?rev=1739951): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/wp-dtree-30/assets/banner-772x250.png?rev=1052905): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/wp-links-page/assets/banner-1544x500.jpg?rev=2075309): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/email-posts-to-subscribers/assets/banner-1544x500.png?rev=1643256): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/slider-slideshow/assets/banner-772x250.png?rev=1371329): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/zendesk/assets/banner-1544x500.png?rev=1543773): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/buttons-x/assets/banner-772x250.jpg?rev=1324743): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/uji-popup/assets/banner-772x250.png?rev=701401): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/update-alt-attribute/assets/banner-772x250.png?rev=1270004): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/wcp-contact-form/assets/banner-1544x500.png?rev=1134408): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/wp-browser-update/assets/banner-1544x500.png?rev=2383682): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/progress-bar/assets/banner-772x250.png?rev=503379): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/advanced-category-template/assets/banner-772x250.png?rev=1157692): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/continuous-announcement-scroller/assets/banner-772x250.png?rev=2568398): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/easy-slider-revolution/assets/banner-772x250.png?rev=2843219): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/gallery-metabox/assets/banner-772x250.jpg?rev=479876): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/giveasap/assets/banner-772x250.png?rev=1967614): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/kodex-posts-likes/assets/banner-1544x500.png?rev=1251846): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/premmerce/assets/banner-1544x500.png?rev=1793724): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/shortcode-imdb/assets/banner-1544x500.png?rev=2566794): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/video-xml-sitemap-generator/assets/banner-1544x500.jpg?rev=738122): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/semalt/assets/banner-772x250.jpg?rev=1029340): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/woocommerce-products-designer/assets/banner-1544x500.jpg?rev=2154111): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/flyzoo/assets/banner-772x250.jpg?rev=1371802): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/cab-grid/assets/banner-1544x500.jpg?rev=1415727): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/clock-in-portal/assets/banner-772x250.jpg?rev=2402487): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/gps-plotter/assets/banner-1544x500.jpg?rev=1857577): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/woo-tipdonation/assets/banner-772x250.png?rev=2011223): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/dynamically-register-sidebars/assets/banner-1544x500.jpg?rev=1926526): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/easy-bet/assets/banner-772x250.png?rev=2819610): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/logo-scheduler-great-for-holidays-events-and-more/assets/banner-1544x500.jpg?rev=2188689): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/wooemailreport/assets/banner-772x250.png?rev=780987): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/advanced-youtube-channel-pagination/assets/banner-1544x500.png?rev=1560670): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/hiweb-migration-simple/assets/banner-1544x500.jpg?rev=1399003): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/crm-memberships/assets/banner-1544x500.png?rev=2474580): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/decon-wp-sms/assets/banner-1544x500.jpg?rev=2443181): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/easy-ad-manager/assets/banner-772x250.png?rev=1860118): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/forms-ada-form-builder/assets/banner-772x250.jpg?rev=2504748): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/ns-coupon-to-become-customer/assets/banner-772x250.png?rev=2044403): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

Warning: getimagesize(https://ps.w.org/reservation-studio-widget/assets/banner-1544x500.png?rev=2741742): failed to open stream: HTTP request failed! HTTP/1.1 403 Forbidden in /home/customer/www/kerbco.com/public_html/wp-content/plugins/code-snippets/php/snippet-ops.php(582) : eval()'d code on line 22

This week, 160 vulnerabilities may affect over 8 million WordPress sites. There are 68 plugin vulnerabilities with security patches available, so run those updates if you use these plugins! Additionally, there are 92 plugin vulnerabilities with no patch available yet. At least eight of these have been closed and dropped from the wordpress.org plugin directory so far. If you are using any unpatched plugins or themes, check their vendors’ intentions and progress on a security release. If no patch is forthcoming or the vulnerable plugin or theme has been closed, you should consider deactivation and removal in favor of alternative solutions.

For reference, these reports are published every Wednesday and include all active vulnerabilities tracked by Patchstack as of Monday since the previous report. This leaves a 48-hour window for the newest emerging vulnerabilities to be patched before full public disclosure. iThemes Security Pro users have access to vulnerability alerts emerging within this window.

  • No new WordPress core vulnerabilities were disclosed this week.

WordPress core is very secure when it’s properly configured and maintained. Vulnerable plugins that have not been updated by site owners are the most common vector for attacks on WordPress websites. Our weekly WordPress Vulnerability Report, powered by Patchstack, covers new WordPress plugin, theme, and core vulnerabilities that have emerged since last week’s report. Our goal is to spread awareness of emerging security threats and help you decide what to do if you are using vulnerable software on your website. For a deeper analysis of recent trends in WordPress vulnerabilities and threat vectors, see our 2022 Annual Vulnerability Report.

WordPress Core News

WordPress 6.2 is the first major release of 2023, with over 900 enhancements and fixes. You’ll notice a reimagined Site Editor, blocks get even better, and new tools and improvements in WordPress 6.2. As always, with a major release like this, ensure your site is backed up with BackupBuddy before updating.

If your WordPress sites have enabled automatic background updates, they should have upgraded to 6.2 automatically. You can download WordPress 6.2 from WordPress.org, or visit your WordPress Dashboard, click “Updates,” and then click the “Update Now” button, which will appear when any core updates are available. For more information, check out the version 6.2 HelpHub documentation page.

WordPress Plugin Vulnerabilities with Patches

In this section, you’ll find the most recently disclosed WordPress plugin vulnerabilities that have been fixed with a new release from their authors and maintainers. Please apply the updates if you are affected!

These vulnerabilities have been disclosed and scored for their severity, thanks to our friends at Patchstack. Each plugin listing includes the type of vulnerability with its CVE number and CVSS severity rating with links to more technical details. You’ll also see the number of active sites using the plugin and the plugin version release that patches the vulnerability. We start with the most popular plugins, which represent the largest target for attackers.

Autoptimize

Product image for Autoptimize.

Plugin
Autoptimize
Vulnerability
Cross Site Scripting (XSS)
The vulnerability has been patched, so you should update to version 3.1.7.

Limit Login Attempts

Vulnerability
Cross Site Scripting (XSS)
CVE
2023-1861
The vulnerability has been patched, so you should update to version 1.7.2.

Blocksy Companion

Product image for Blocksy Companion.

CVE
2023-1911
The vulnerability has been patched, so you should update to version 1.8.82.

Stream

Product image for Stream.

Plugin
Stream
Vulnerability
Cross Site Request Forgery (CSRF)
The vulnerability has been patched, so you should update to version 3.9.3.

CMS Tree Page View

Product image for CMS Tree Page View.

Vulnerability
Cross Site Scripting (XSS)
The vulnerability has been patched, so you should update to version 1.6.8.

Visual CSS Style Editor

Product image for Visual CSS Style Editor.

Vulnerability
Cross Site Scripting (XSS)
The vulnerability has been patched, so you should update to version 7.5.9.

Kaya QR Code Generator

Product image for Kaya QR Code Generator.

Vulnerability
Cross Site Scripting (XSS)
The vulnerability has been patched, so you should update to version 1.5.3.

YML for Yandex Market

Product image for YML for Yandex Market.

Vulnerability
Cross Site Scripting (XSS)
The vulnerability has been patched, so you should update to version 3.10.8.

WP Original Media Path

Product image for WP Original Media Path.

Vulnerability
Cross Site Scripting (XSS)
The vulnerability has been patched, so you should update to version 2.4.1.

Captcha Them All

Product image for Captcha Them All.

Vulnerability
Cross Site Scripting (XSS)
The vulnerability has been patched, so you should update to version 1.4.

XML for Google Merchant Center

Product image for XML for Google Merchant Center.

Vulnerability
Cross Site Scripting (XSS)
The vulnerability has been patched, so you should update to version 3.0.2.

ChatBot

Product image for AI ChatBot.

Plugin
AI ChatBot
Vulnerability
Cross Site Scripting (XSS)
CVE
2023-1651
The vulnerability has been patched, so you should update to version 4.4.9.

ChatBot

Product image for AI ChatBot.

Plugin
AI ChatBot
Vulnerability
Cross Site Scripting (XSS)
CVE
2023-1660
The vulnerability has been patched, so you should update to version 4.4.9.

ChatBot

Product image for AI ChatBot.

Plugin
AI ChatBot
CVE
2023-1650
The vulnerability has been patched, so you should update to version 4.4.7.

ChatBot

Product image for AI ChatBot.

Plugin
AI ChatBot
Vulnerability
Cross Site Scripting (XSS)
CVE
2023-1011
The vulnerability has been patched, so you should update to version 4.4.5.

Vimeotheque

Product image for Vimeotheque / Vimeo.

Vulnerability
Cross Site Scripting (XSS)
The vulnerability has been patched, so you should update to version 2.2.2.

Thumbnail carousel slider

Product image for Thumbnail carousel slider.

Vulnerability
Cross Site Scripting (XSS)
CVE
2023-2120
The vulnerability has been patched, so you should update to version 1.1.10.

WPJAM Basic

Plugin
WPJAM Basic
Vulnerability
Cross Site Scripting (XSS)
The vulnerability has been patched, so you should update to version 6.2.1.1.

File Gallery

Product image for File Gallery.

Plugin
File Gallery
Vulnerability
Cross Site Scripting (XSS)
The vulnerability has been patched, so you should update to version 1.8.5.4.

WP-FormAssembly

Product image for WP-FormAssembly.

Vulnerability
Cross Site Scripting (XSS)
The vulnerability has been patched, so you should update to version 2.0.8.

Robokassa payment gateway for Woocommerce

Product image for Robokassa payment gateway for Woocommerce.

Vulnerability
Cross Site Scripting (XSS)
The vulnerability has been patched, so you should update to version 1.4.6.

Locatoraid Store Locator

Product image for Locatoraid Store Locator.

Vulnerability
Cross Site Scripting (XSS)
CVE
2023-2031
The vulnerability has been patched, so you should update to version 3.9.15.

WP Custom Author URL

Product image for WP Custom Author URL.

Vulnerability
Cross Site Scripting (XSS)
CVE
2023-1614
The vulnerability has been patched, so you should update to version 1.0.5.

WP Inventory Manager

Product image for WP Inventory Manager.

Vulnerability
Cross Site Scripting (XSS)
CVE
2023-1806
The vulnerability has been patched, so you should update to version 2.1.0.12.

Church Admin

Product image for Church Admin.

Plugin
Church Admin
Vulnerability
Cross Site Scripting (XSS)
The vulnerability has been patched, so you should update to version 3.7.6.

Extensions for Leaflet Map

Vulnerability
Cross Site Scripting (XSS)
The vulnerability has been patched, so you should update to version 3.4.2.

Modal Dialog

Product image for Modal Dialog.

Plugin
Modal Dialog
Vulnerability
Cross Site Scripting (XSS)
The vulnerability has been patched, so you should update to version 3.5.15.

Query Wrangler

Product image for Query Wrangler.

Vulnerability
Cross Site Scripting (XSS)
The vulnerability has been patched, so you should update to version 1.5.52.

Stock Exporter for WooCommerce

Product image for Stock Exporter for WooCommerce.

Vulnerability
Cross Site Scripting (XSS)
The vulnerability has been patched, so you should update to version 1.2.0.

Stock Sync for WooCommerce

Product image for Stock Sync for WooCommerce.

Vulnerability
Cross Site Scripting (XSS)
The vulnerability has been patched, so you should update to version 2.4.1.

Video Grid

Product image for Video Grid.

Plugin
Video Grid
Vulnerability
Cross Site Scripting (XSS)
The vulnerability has been patched, so you should update to version 1.22.

WP Docs

Product image for WP Docs.

Plugin
WP Docs
The vulnerability has been patched, so you should update to version 1.9.9.

Form Block

Plugin
Form Block
Vulnerability
Cross Site Request Forgery (CSRF)
The vulnerability has been patched, so you should update to version 1.0.2.

Google Analytics Top Content Widget

Plugin
Google Analytics Top Content Widget
Vulnerability
Cross Site Scripting (XSS)
The vulnerability has been patched, so you should update to version 1.5.6.

Ruby Help Desk

Product image for Ruby Help Desk.

Vulnerability
Insecure Direct Object References (IDOR)
CVE
2023-1125
The vulnerability has been patched, so you should update to version 1.3.4.

WP Cerber Security

Vulnerability
Cross Site Scripting (XSS)
CVE
2022-4712
The vulnerability has been patched, so you should update to version 9.2.

WordPress Plugin Vulnerabilities – No Known Fix

This section contains plugin vulnerabilities with no known fix. Until a patch is available, you are advised to deactivate the plugin, at minimum, immediately. If there is a high risk of active exploits or the plugin remains unpatched for weeks, you are advised to delete the plugin. You should also delete persistently unpatched plugins the WordPress.org repository has locked and marked “Closed” so they can no longer be downloaded and installed.

Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

Simple Share Buttons Adder

Product image for Simple Share Buttons Adder.

Vulnerability
Cross Site Request Forgery (CSRF)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

Themify Portfolio Post

Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

GDPR Compliance & Cookie Consent

Product image for GDPR Compliance & Cookie Consent.

Vulnerability
Cross Site Request Forgery (CSRF)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

Simple Tooltips

Product image for Simple Tooltips.

Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

Smart WooCommerce Search

Product image for Smart WooCommerce Search.

Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

WP Page Numbers

Vulnerability
Cross Site Request Forgery (CSRF)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

I Recommend This

Product image for I Recommend This.

Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

Redirect After Login

Product image for Redirect After Login.

Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

SparkPost

Product image for SparkPost.

Plugin
SparkPost
Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

Arconix Shortcodes

Product image for Arconix Shortcodes.

Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

Rating-Widget: Star Review System

Product image for Rating-Widget: Star Review System.

Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

BBSpoiler

Product image for BBSpoiler.

Plugin
BBSpoiler
Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.
Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

Social Share Boost

Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

WP-dTree

Product image for WP-dTree.

Plugin
WP-dTree
Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

WP Links Page

Product image for WP Links Page.

Plugin
WP Links Page
Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

BadgeOS

Product image for BadgeOS.

Plugin
BadgeOS
Vulnerability
Cross Site Request Forgery (CSRF)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

Layer Slider

Product image for Layer Slider.

Plugin
Layer Slider
Vulnerability
Cross Site Request Forgery (CSRF)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

Button Builder – Buttons X

Product image for Button Builder – Buttons X.

Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.
Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

Uji Popup

Product image for Uji Popup.

Plugin
Uji Popup
Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

Update Image Tag Alt Attribute

Product image for Update Image Tag Alt Attribute.

Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

WCP Contact Form

Product image for WCP Contact Form.

Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

WP BrowserUpdate

Product image for WP BrowserUpdate.

Vulnerability
Cross Site Request Forgery (CSRF)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

WP BrowserUpdate

Product image for WP BrowserUpdate.

Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

Progress Bar

Product image for Progress Bar.

Plugin
Progress Bar
Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

PropertyHive

Product image for PropertyHive.

Plugin
PropertyHive
Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

Updraft

Plugin
Updraft
Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

Advanced Category Template

Product image for Advanced Category Template.

Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

Continuous announcement scroller

Product image for Continuous announcement scroller.

Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

Easy Slider Revolution

Product image for Easy Slider Revolution.

Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

Ebook Store

Product image for Ebook Store.

Plugin
Ebook Store
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

Ebook Store

Product image for Ebook Store.

Plugin
Ebook Store
Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

Gallery Metabox

Product image for Gallery Metabox.

Vulnerability
Cross Site Request Forgery (CSRF)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

Inactive User Deleter

Vulnerability
Cross Site Request Forgery (CSRF)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

Kodex Posts likes

Product image for Kodex Posts likes.

Vulnerability
Cross Site Request Forgery (CSRF)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

Verified Reviews (Avis Vérifiés)

Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

Premmerce

Product image for Premmerce.

Plugin
Premmerce
Vulnerability
Cross Site Request Forgery (CSRF)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

Shortcode IMDB

Product image for Shortcode IMDB.

Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

Tippy

Plugin
Tippy
Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

Video XML Sitemap Generator

Product image for Video XML Sitemap Generator.

Vulnerability
Cross Site Request Forgery (CSRF)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

Semalt Blocker

Product image for Semalt Blocker.

Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

ApexChat

Plugin
ApexChat
Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

eRocket

Plugin
eRocket
Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

Flyzoo Chat

Product image for Flyzoo Chat.

Plugin
Flyzoo Chat
Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

Cab Grid

Product image for Cab Grid.

Plugin
Cab Grid
Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

GPS Plotter

Product image for Gps Plotter.

Plugin
Gps Plotter
Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

Woocommerce Tip/Donation

Product image for Woocommerce Tip/Donation.

Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

Dynamically Register Sidebars

Product image for Dynamically Register Sidebars.

Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

Easy Bet

Product image for Easy Bet.

Plugin
Easy Bet
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

Woocommerce Email Report

Product image for Woocommerce Email Report.

Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

Pickup | Delivery | Dine-in date time

Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
CVE
2023-0894
The vulnerability has not been patched. You should deactivate the plugin.

Advanced Youtube Channel Pagination

Product image for Advanced Youtube Channel Pagination.

Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

hiWeb Migration Simple

Product image for hiWeb Migration Simple.

Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
CVE
2023-0769
The vulnerability has not been patched. You should deactivate the plugin.

Chronosly Events Calendar

Vulnerability
Cross Site Request Forgery (CSRF)
Patched in Version
No Fix
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.

Cloud Manager

Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
CVE
2023-0421
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.

CRM Memberships

Product image for CRM Memberships.

Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

Dave’s WordPress Live Search

Plugin
Dave’s WordPress Live Search
Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.

Decon WP SMS

Product image for Decon WP SMS.

Plugin
Decon WP SMS
Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

Easy Ad Manager

Product image for Easy Ad Manager.

Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

EZP Maintenance Mode

Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.

Forms Ada

Product image for Forms Ada – Form Builder.

Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

Login Page Styler

Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.

NS Coupon to Become Customer

Product image for NS Coupon To Become Customer.

Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

Reservation.Studio widget

Product image for Reservation.Studio widget.

Vulnerability
Cross Site Request Forgery (CSRF)
Patched in Version
No Fix
The vulnerability has not been patched. You should deactivate the plugin.

Sloth Logo Customizer

Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
CVE
2023-0603
The vulnerability has not been patched. You should deactivate the plugin.

vSlider Multi Image Slider for WordPress

Plugin
vSlider Multi Image Slider for WordPress
Vulnerability
Cross Site Request Forgery (CSRF)
Patched in Version
No Fix
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.

WP Login Box

Vulnerability
Cross Site Scripting (XSS)
Patched in Version
No Fix
CVE
2023-0544
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.

ZM Ajax Login & Register

Plugin
ZM Ajax Login & Register
Patched in Version
No Fix
CVE
2023-2027
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.

ZM Ajax Login & Register

Plugin
ZM Ajax Login & Register
Patched in Version
No Fix
CVE
2023-2027
The vulnerability has not been patched and the plugin is closed. You should uninstall and delete the plugin.

WordPress Theme Vulnerabilities

In this section, you’ll find the latest WordPress theme vulnerabilities to be disclosed. You’ll see the same information provided above for vulnerable plugins, and the same advice applies. If a security update exists, install it immediately. If a vulnerability remains unpatched in a theme you are actively using, you will need to find an alternative theme. Deactivate and delete persistently unpatched themes and those that have been “Closed” in the WordPress.org theme repository. If you have a vulnerable theme installed that you are not actively using, simply delete it.

  • No new WordPress theme vulnerabilities were disclosed this week.

Never worry about running a vulnerable plugin or theme again.

As you can see from this report, new WordPress plugin and theme vulnerabilities are disclosed every week. We know it can be difficult to stay on top of every reported vulnerability disclosure that matters to you, so the Themes Security Pro plugin makes it easy to ensure your site isn’t running a vulnerable theme, plugin, or version of WordPress core.

The post WordPress Vulnerability Report – April 26, 2023 appeared first on iThemes.

This content was originally published here.