WP Security: plugin vulnerabilities June

July 7, 2017

For your , be informed about the latest vulnerabilities in WP plugins:

  1. All-in-One WP Migration
    • Cross-Site Scripting (XSS) reported by Twitter user @0w4ysImmediately  to version 6.46 to fix the vulnerability.
  2. Ultimate Product Catalogue
    • Authenticated SQL Injection reported by Twitter user @log_osconImmediately to version 4.2.3 to fix the vulnerability.
  3. Photo Gallery by WD – Responsive Photo Gallery for WordPress
    • Authenticated Path Traversal reported by Dewhurst Immediately to version 1.3.43 to fix the vulnerability.
  4. WordPress Download Manager
    • Authenticated Reflected Cross-Site Scripting (XSS) reported by Dewhurst Immediately to version 2.9.52 to fix the vulnerability.
  5. WP Jobs
    • Authenticated SQL Injection reported by Dewhurst Immediately to version 1.5 to fix the vulnerability.


Protect your WordPress!

BEFORE IT'S TOO LATE! You will also your customers, your reputation and your online business.


WP Security: plugin vulnerabilities June

by Csaba Miklós time to read: 2 min
Share this on:
Share this on: