Is your site up to date?
Outdated plugins & themes are the #1 reason sites get hacked. Don’t leave your WooCommerce store vulnerable!
1. DiveBook
DiveBook versions below 1.1.4 have an Improper Authorization Check, Unauthenticated SQL Injection, & Unauthenticated Reflected XSS vulnerabilities.
Â
2. Pagelayer
Pagelayer versions below 1.3.5 have Multiple Reflected Cross-Site Scripting vulnerabilities.
Â
3. Ultimate Category Excluder
Ultimate Category Excluder versions below 1.2 have a Cross-Site Request Forgery vulnerability.
Â
4. Directories Pro
Directories Pro versions below 1.3.46 have Authenticated Reflected Cross-Site Scripting vulnerability.
Â
5. Total Upkeep
Total Upkeep versions below 1.14.10 have a Sensitive Data Disclosure & Unauthenticated Backup Download vulnerabilities.
Â
6. Redux Framework
Redux Framework versions below 4.1.21 have CSRF Nonce Validation Bypass vulnerability.
Â
7. Contact Form 7
Contact Form 7 versions below 5.3.2 have an Unrestricted File Upload vulnerability.
Â
8. Simple Social Media Share Buttons
Simple Social Media Share Buttons versions below 3.2.1 have an Unauthenticated Reflected Cross-Site Scripting vulnerability.
9. Envira Gallery Lite
Envira Gallery Lite versions below 1.8.3.3 have an Authenticated Stored Cross-Site Scripting vulnerability.
Â
10. Limit Login Attempts Reloaded
Limit Login Attempts Reloaded versions below 2.16.0 have an Authenticated Reflected Cross-Site Scripting & Login Rate Limiting Bypass vulnerabilities.
Â
WordPress Theme Vulnerabilities
Â
1. ListingPro
ListingPro versions below 2.6.1 have an Unauthenticated Arbitrary Plugin Installation/Activation/Deactivation & Unauthenticated Sensitive Data
Disclosure vulnerabilities.