WordPress Plugin EZ SQL Reports Shortcode Widget and DB Backup is prone to an arbitrary SQL query execution vulnerability. Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database. WordPress Plugin EZ SQL Reports Shortcode Widget and DB Backup version 4.16.38 is vulnerable; prior versions may also be affected.
Update to plugin version 4.17.38 or latest
WordPress Plugin Appointment Booking Calendar-BirchPress Scheduler Unspecified Vulnerability (1.13.0)
WordPress Plugin User Avatar Unspecified Vulnerability (1.4.6)
WordPress Plugin All-In-One Security (AIOS)-Security and Firewall Multiple Vulnerabilities (4.1.2)
WordPress Plugin Advanced AJAX Product Filters Security Bypass (220.127.116.11)