The major WordPress plugins appear to have some serious security flaws, so make sure you’re protected


  • Two WordPress plugins contain 18 security flaws
  • Most of them are considered crucial because, among other things, they allow RCE
  • They are all patched now, so make sure to upgrade your plugins

Two premium WordPress plugins were found to contain more than a dozen vulnerabilities, some of which were considered critical.

This is according to the WordPress cybersecurity platform Patchstack, which discovered the problems in the website builder at the end of March 2024 and reported them to the developers. Since then all bugs have been fixed.