WordPress Plugin CBX Petition for WordPress is prone to an SQL injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database. WordPress Plugin CBX Petition for WordPress version 1.0.3 is vulnerable; prior versions may also be affected.
Disable and remove the plugin until a fix is available
WordPress Plugin Custom Login Cross-Site Scripting (3.2)
WordPress Plugin GD bbPress Attachments Cross-Site Scripting (2.5)
WordPress Plugin Stop Spammers Security-Block Spam Users, Comments, Forms Cross-Site Scripting (2021.17)
WordPress Plugin Wordpress Membership SwiftCloud.io SQL Injection (1.0)
WordPress Plugin Gallery-Video Gallery and Youtube Gallery Cross-Site Scripting (1.2.4)