The Auto Post Scheduler WordPress plugin up to version 1.84 is vulnerable to Cross-Site Request Forgery (CSRF) due to missing nonce validation in the 'aps_options_page' function. This vulnerability could allow attackers to change the plugin settings and inject malicious scripts if they can convince an administrator to click a manipulated link.

The Ibtana – WordPress Website Builder plugin is affected by a Stored Cross-Site Scripting (XSS) vulnerability, allowing contributors and above to inject malicious scripts through the 'ive' shortcode. This vulnerability affects versions up to 1.2.5.7 and results from inadequate sanitization of input and insufficient output escaping.

The WooPayments: Integrated WooCommerce Payments plugin for WordPress is susceptible to unauthorized data modification. This vulnerability exists due to a missing capability check in the 'save_upe_appearance_ajax' function, allowing unauthenticated attackers to alter plugin settings in versions up to 10.5.1.

The Truebooker plugin for WordPress is affected by a vulnerability that allows unauthorized users to access sensitive information through views PHP files in versions up to 1.1.4. This vulnerability could expose critical data to attackers via direct file access.

The Ninja Forms plugin for WordPress, versions up to 3.14.1, has a vulnerability that allows authenticated users with at least Contributor-level access to expose sensitive information. The issue resides in the processing of authorization tokens via a callback function in the admin_enqueue_scripts action.

The Restaurant Cafeteria WordPress theme, up to version 0.4.6, has a security vulnerability where admin-ajax actions lack nonce and capability checks. This allows any logged-in user, including those with minimal permissions, to execute privileged operations, potentially leading to arbitrary PHP code execution via a user-supplied URL.

The Oxygen Theme for WordPress contains a Server-Side Request Forgery (SSRF) vulnerability in versions up to and including 6.0.8. Exploitation of this flaw is possible via the 'laborator_calc_route' AJAX action, allowing unauthenticated attackers to initiate web requests to arbitrary locations from the WordPress server.

The Conditional Menus plugin for WordPress is affected by a Cross-Site Request Forgery (CSRF) vulnerability. This flaw allows attackers to alter conditional menu configurations when an administrator is tricked into executing a forged request.

The LeadConnector plugin for WordPress before version 3.0.22 lacks proper authorization on a REST API route. This allows unauthenticated users to manipulate and potentially overwrite existing data through unauthorized API calls.

The WP Lightbox 2 plugin for WordPress, prior to version 3.0.7, contains a vulnerability that allows high privilege users, such as administrators, to inject malicious scripts by not properly sanitizing and escaping certain settings. This can lead to a Stored Cross-Site Scripting (XSS) attack, even when the unfiltered_html capability is restricted, such as in a multisite configuration.

The Responsive Plus WordPress plugin prior to version 3.4.3 allows unauthenticated users to execute arbitrary shortcodes due to improper validation of input in the update_responsive_woo_free_shipping_left_shortcode AJAX action. This vulnerability could be exploited to execute unintended code on affected sites.

The Shared Files WordPress plugin before version 1.7.58 contains a path traversal vulnerability. This flaw allows users with the Contributor role to access arbitrary files on the server, potentially compromising sensitive data such as the site's configuration file.

A vulnerability in the Elementor Website Builder plugin for WordPress allows authenticated users with contributor-level access and above to access private or draft templates. The incorrect authorization check is present in versions up to 3.35.7.

The FloristPress for Woo plugin up to version 7.8.2 is vulnerable to reflected XSS via the 'noresults' parameter. This allows unauthenticated users to execute arbitrary web scripts by tricking users into clicking a malicious link.

The Arraytics WPCafe plugin for WordPress has a missing authorization vulnerability in its access control, allowing for potential unauthorized actions on affected sites. This issue exists in versions up to and including 3.0.7 and poses a risk due to incorrectly configured security levels.

The WordPress plugin 'WP REST Cache' contains a stored XSS vulnerability, identified as CVE-2026-25347, which affects versions up to and including 2026.1.0. This vulnerability allows an attacker to inject malicious scripts that could be executed in user sessions.

An incorrect privilege assignment vulnerability exists in the Salon Booking System Pro plugin for WordPress, potentially allowing unauthorized privilege escalation. This vulnerability impacts versions prior to 10.30.12 of the plugin.

A reflected Cross-Site Scripting (XSS) vulnerability exists in the VikRestaurants plugin for WordPress, affecting versions up to and including 1.5.2. This vulnerability allows attackers to inject malicious scripts into web pages viewed by other users.

A missing authorization vulnerability has been identified in the WP System Log plugin for WordPress, which erroneously permits unauthorized access due to misconfigured access control security levels. This vulnerability affects versions up through 1.2.7.

CVE-2026-24372 is an authentication bypass vulnerability in the Subscriptions for WooCommerce plugin, allowing attackers to manipulate input data to spoof their identity. This affects plugin versions up to and including 1.8.10.

A missing authorization flaw has been discovered in the WP User Frontend plugin, affecting versions up to 4.2.5. This vulnerability allows unauthorized users to exploit incorrectly configured access control settings, potentially leading to unauthorized actions being executed within the WordPress site.