WordPress Vulnerability Report — June 26, 2024

In this report, 194 new vulnerabilities have been publicly disclosed affecting 176 plugins and 18 themes.  Security patches for 82 of these plugins and 18 themes are available as of the publishing of this report.

Along with poor user account security, vulnerable plugins & themes are one of the main reasons WordPress websites get hacked, so run those updates

Unfortunately, cyberattacks are increasing in volume and sophistication. They’re also increasingly aimed at small to mid-sized businesses.

WordPress Core

No vulnerabilities identified – yea!

WordPress Themes

Themes With No Fix/Patch Available

  • Sinatra
  • Grey Opaque
  • Mosaic

Themes With A Fix/Patch Available

Disclosed vulnerability(ies) have been patched. You should update to the latest version.
  • Excellent
  • Interface

WordPress Plugins

Plugins With No Fix/Patch Available

Disclosed vulnerability(ies) have not yet been patched. You should deactivate the plugin(s).

  • Book Landing Page
  • Chic Lite
  • Customizr
  • Digital Newspaper
  • Education Zone
  • Excellent
  • Hueman
  • Interface
  • Materialis
  • Vandana Lite
  • Vilva
  • Divi
  • Enfold

Plugins With A Fix/Patch Available

The vulnerability(ies) have been patched. You should update to the latest version.

  • Loco Translate
  • Smush Image Optimization
  • Solid Security
  • SiteGuard WP Plugin
  • SEOPress
  • WooCommerce Checkout & Funnel
  • Orbit Fox by ThemeIsle
  • Gallery Plugin for WordPress
  • Defender Security
  • Slider & Popup Builder by Depicter
  • Email Subscribers by Icegram Express
  • Paid Memberships Pro
  • Media Library Assistant
  • Booking for Appointments and Events Calendar – Amelia
  • User Profile Picture
  • WP 2FA
  • ConvertKit
  • Photo Gallery, Images, Slider in Rbs Image Gallery
  • Sina Extension for Elementor
  • Ultimate Blocks
  • WP Maintenance
  • Popup Box
  • BlossomThemes Email Newsletter
  • Greenshift – animation and page builder blocks
  • Themify – WooCommerce Product Filter
  • Hide Dashboard Notifications
  • WP SVG Images
  • Branda – White Label WordPress, Custom Login Page Customizer
  • Serious Slider
  • Table Addons for Elementor
  • WPZOOM Addons for Elementor (Templates, Widgets)
  • Business Directory Plugin
  • JetWidgets For Elementor
  • MasterStudy LMS WordPress Plugin
  • Sparkle Demo Importer
  • WP Child Theme Generator
  • Enhance Your Posts with the WP Post Author Box
  • Vimeography
  • WP Magazine Modules Lite
  • WPAdverts – Classifieds Plugin
  • Salon Booking System
  • WP Job Portal
  • InstaWP Connect
  • Tickera – WordPress Event Ticketing
  • MaxGalleria
  • Newsletters
  • PropertyHive
  • WP-Lister Lite for eBay
  • affiliate-toolkit
  • WordPress CRM, Email & Marketing Automation
  • Online Booking & Scheduling Calendar for WordPress by vcita
  • WP Secure Maintenance
  • Church Admin
  • Easy Age Verify
  • Falang multilanguage for WordPress
  • Login with phone number
  • Newspack Newsletters
  • Shariff for WordPress
  • Image Optimizer, Resizer and CDN – Sirv
  • Typing Text
  • WPPizza – A Restaurant Plugin
  • Responsive video embed
  • Squeeze
  • Bricks Builder (Premium)
  • Consulting Elementor Widgets
  • Cost Calculator Builder Pro
  • Hercules Core
  • Ibtana
  • Newspack Blocks
  • The Plus Addons for Elementor Pro
  • Uber Menu
  • Shortcodes by United Themes
  • WP Job Manager – Resume Manager

Looking for peace of mind and less tech stress?​

Security, performance, backups, privacy, and much more – the list of tasks needed to keep your website performing at its peak can seem overwhelming and time-consuming.

Signup for website management and get a tech-savvy team who are committed to your business.

Never worry about your website again.

Let Us Help You

How Do I Update WordPress?

Run a full backups of your website using the backup plugin you have installed -or- using the backup feature your web host provides.

Ideally you test major functions – like ecommerce, elearning, membership functionality on a staging server first. If you site is “heavily” customized, you should also test in a staging environgment first.

Perform your updates in the order of WordPress – Theme(s) – Plugin(s). Ideally you are making note of the before and after versions.

After completed, perform a visual inspection of your site and test critical functionality that may have been affected – contact forms, subscription buttons, purchasing etc.