WordPress Vulnerability Report — June 19, 2024

In this report, 87 new vulnerabilities have been publicly disclosed affecting 85 plugins and 2 themes.  Security patches for 73 of these plugins are available as of the publishing of this report.

Along with poor user account security, vulnerable plugins & themes are one of the main reasons WordPress websites get hacked, so run those updates

Unfortunately, cyberattacks are increasing in volume and sophistication. They’re also increasingly aimed at small to mid-sized businesses.

WordPress Core

No vulnerabilities identified – yea!

WordPress Themes

Themes With No Fix/Patch Available

All themes patched – yea!

Themes With A Fix/Patch Available

Disclosed vulnerability(ies) have been patched. You should update to the latest version.
  • Excellent
  • Interface

WordPress Plugins

Plugins With No Fix/Patch Available

Disclosed vulnerability(ies) have not yet been patched. You should deactivate the plugin(s).

  • Element Pack Elementor Addons
  • Advanced Contact form 7 DB
  • Custom Field Suite
  • Elespare
  • Shariff for WordPress
  • Scheduling Plugin
  • Canto
  • Collapse-O-Matic
  • Master Slider
  • PDF Viewer for Elementor
  • Schema App Structured Data
  • Where I Was, Where I Will Be
  • Video Gallery

Plugins With A Fix/Patch Available

The vulnerability(ies) have been patched. You should update to the latest version.
  • WooCommerce
  • Essential Addons for Elementor
  • Elementor Header & Footer Builder
  • WPS Hide Login
  • Premium Addons for Elementor
  • Ocean Extra
  • SiteOrigin Widgets Bundle
  • Gutenberg Blocks with AI by Kadence WP
  • MetForm
  • WP Go Maps (formerly WP Google Maps)
  • Floating Chat Widget
  • Jeg Elementor Kit
  • Popup Builder
  • Download Manager
  • FooGallery
  • PowerPack Addons for Elementor
  • Social Sharing Plugin
  • Search & Replace
  • ShopLentor
  • Email Subscribers by Icegram Express
  • Events Manager
  • Simple Sitemap
  • Folders
  • Bookly
  • Woody code snippets
  • Blog2Social: Social Media Auto Post & Scheduler
  • Divi Torque Lite
  • Custom Field Template
  • Greenshift
  • Stratum
  • Serious Slider
  • Futurio Extra
  • Business Directory Plugin
  • Restaurant Menu
  • CoDesigner
  • Pearl
  • Events Addon for Elementor
  • Themify Builder
  • Dashboard Widgets Suite
  • WP Job Portal
  • InstaWP Connect
  • Tickera
  • Online Booking & Scheduling Calendar for WordPress by vcita
  • Church Admin
  • Easy Age Verify
  • AI Infographic Maker
  • WP Timetics
  • Activity Reactions For Buddypress
  • Left right image slideshow gallery
  • Dokan Pro
  • ElementsKit Pro
  • Folders Pro
  • FooEvents for WooCommerce
  • FooGallery Premium
  • Ibtana
  • LatePoint
  • Newsletter
  • WooCommerce Social Login
  • Wp Staging Pro

Looking for peace of mind and less tech stress?​

Security, performance, backups, privacy, and much more – the list of tasks needed to keep your website performing at its peak can seem overwhelming and time-consuming.

Signup for website management and get a tech-savvy team who are committed to your business.

Never worry about your website again.

Let Us Help You

How Do I Update WordPress?

Run a full backups of your website using the backup plugin you have installed -or- using the backup feature your web host provides.

Ideally you test major functions – like ecommerce, elearning, membership functionality on a staging server first. If you site is “heavily” customized, you should also test in a staging environgment first.

Perform your updates in the order of WordPress – Theme(s) – Plugin(s). Ideally you are making note of the before and after versions.

After completed, perform a visual inspection of your site and test critical functionality that may have been affected – contact forms, subscription buttons, purchasing etc.