WordPress Plugin InfiniteWP Client is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently disable a users web site by putting it in maintenance mode if admin username is known. WordPress Plugin InfiniteWP Client version 1.3.7 is vulnerable; prior versions may also be affected.
Update to plugin version 1.3.8 or latest
WordPress Plugin Booking Calendar Multiple Vulnerabilities (6.2)
WordPress Plugin Websimon Tables Cross-Site Scripting (1.3.4)
Drupal Core 7.x Cross-Site Scripting (7.0 - 7.69)
WordPress 4.4.x Multiple Vulnerabilities (4.4 - 4.4.21)
WordPress Plugin Contact Bank-Contact Form Builder for WordPress Cross-Site Scripting (3.0.30)