The MediaPress plugin for WordPress up to version 1.6.1 is susceptible to a stored cross-site scripting (XSS) vulnerability. An attacker with contributor-level access or higher can exploit this vulnerability to execute arbitrary scripts on affected pages by injecting code through the mpp-uploader shortcode.

The LearnPress – WordPress LMS Plugin is exposed to unauthorized data modification due to missing capability checks in its AJAX handling function. This vulnerability allows attackers to alter course content without authentication in all versions up to and including 4.3.2.

The MasterStudy LMS WordPress Plugin for Online Courses and Education is vulnerable to unauthorized modifications and deletions due to missing capability checks in its REST API endpoints up to version 3.7.6. This flaw allows subscribers and other low-privilege users to manipulate media files, posts, and course templates.

GamiPress – Gamification plugin for WordPress versions up to 7.6.1 is vulnerable to unauthorized data access due to missing capability checks. This vulnerability allows authenticated users with Subscriber-level access to enumerate users' email addresses and retrieve titles of private posts.

The Table Field Add-on for ACF and SCF plugin for WordPress contains a Stored Cross-Site Scripting vulnerability due to insufficient input sanitization and output escaping. This vulnerability allows potential attackers with at least Author-level privileges to inject arbitrary scripts into pages through table cell content.

The AI Autotagger plugin for WordPress is susceptible to unauthorized data modification. Users with Contributor-level access or higher can exploit this flaw to alter taxonomy terms on any post.

The Phlox theme plugin for WordPress contains a vulnerability that allows unauthenticated attackers to extract titles from draft posts. This is due to insufficient restrictions on the auxels_ajax_search function, affecting all versions up to 2.17.13.

The BuddyPress Xprofile Custom Field Types plugin for WordPress suffers from a critical vulnerability that allows arbitrary file deletion. This flaw can potentially lead to remote code execution through the deletion of key files, such as wp-config.php.

The URL Image Importer plugin for WordPress contains a Stored Cross-Site Scripting (XSS) vulnerability due to inadequate sanitization of SVG files. This vulnerability affects all plugin versions up to 1.0.7, allowing authenticated users with at least Author-level privileges to execute arbitrary scripts when an SVG is accessed.

The Xagio SEO – AI Powered SEO plugin for WordPress contains a Server-Side Request Forgery (SSRF) vulnerability in its pixabayDownloadImage function. This affects versions up to and including 7.1.0.30, allowing authenticated users with at least Subscriber-level permissions to perform unauthorized web requests.

The Popupkit plugin for WordPress is vulnerable to unauthorized deletion of subscriber data through its REST API. This vulnerability affects all versions up to 2.2.0, allowing users with Subscriber-level access to delete subscriber records.

The FS Registration Password plugin for WordPress allows privilege escalation due to inadequate identity validation, enabling attackers to change user passwords, including those of administrators. This vulnerability affects all plugin versions up to and including 1.0.1.

The AS Password Field In Default Registration Form plugin for WordPress is susceptible to privilege escalation via account takeover, affecting versions up to 2.0.0. This vulnerability arises from insufficient identity validation when updating passwords, potentially allowing attackers to change user passwords without authentication.

The ForumWP plugin up to version 2.1.6 has a stored cross-site scripting vulnerability affecting user display names. This flaw allows authenticated users with minimal access (Subscriber level or higher) to inject malicious scripts.

The ilGhera Support System for WooCommerce plugin allows users with Subscriber-level access and above to delete or modify support tickets due to insufficient capability checks. This vulnerability affects versions up to and including 1.2.6.

The Popup and Slider Builder by Depicter plugin for WordPress is vulnerable to unauthorized data modification. This occurs due to a missing capability check allowing unauthenticated attackers to alter the pop-up display settings in versions up to and including 4.0.7.

The Page Expire Popup/Redirection plugin for WordPress has a time-based SQL injection vulnerability in versions up to and including 1.0. This vulnerability allows authenticated users with at least Author-level permissions to execute arbitrary SQL commands, potentially leading to the exposure of sensitive data.

The FastDup – Fastest WordPress Migration & Duplicator plugin for WordPress suffers from a path traversal vulnerability. This security flaw allows authenticated users with at least Contributor-level access to read the contents of arbitrary directories on the server through the 'dir_path' parameter in the 'njt-fastdup/v1/template/directory-tree' REST API endpoint.

The CBX Bookmark & Favorite plugin for WordPress up to version 2.0.4 is susceptible to a SQL Injection vulnerability. This issue stems from inadequate escaping of the 'orderby' parameter, allowing authenticated users with at least Subscriber access to manipulate SQL queries and potentially access sensitive database information.

The Simply Schedule Appointments Booking Plugin for WordPress is vulnerable to sensitive information exposure due to a hardcoded fall-back salt used in token generation. This flaw exists in versions up to 1.6.9.5, allowing attackers to potentially access and modify booking information without authentication.

The Form Vibes – Database Manager for Forms plugin for WordPress is affected by an SQL Injection vulnerability in versions up to 1.4.13. This issue allows authenticated users with Administrator access to manipulate SQL queries by exploiting insufficient escaping and input validation on the 'params' parameter.