WordPress Plugin Gravity Forms is prone to an information disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may help in launching further attacks. WordPress Plugin Gravity Forms version 2.4.8 is vulnerable; prior versions may also be affected.
Update to plugin version 2.4.9 or latest
WordPress Plugin Store Locator Plus for WordPress SQL Injection (3.8.6)
WordPress Plugin NotificationX-Best FOMO, Social Proof, WooCommerce Sales Popup & Notification Bar With Elementor Cross-Site Request Forgery (1.8.2)
WordPress Plugin ChenPress Arbitrary File Upload (3.0)
WordPress Plugin Encrypted Contact Form Multiple Vulnerabilities (1.0.4)
WordPress Plugin Real WYSIWYG 'insert_file.php' Arbitrary File Upload (0.0.2)