WordPress Plugin Mini Mail Dashboard Widget is prone to a remote file include vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue could allow an attacker to compromise the application and the underlying system; other attacks are also possible. WordPress Plugin Mini Mail Dashboard Widget version 1.36 is vulnerable; prior versions may also be affected.
Update to plugin version 1.37 or latest
WordPress Plugin Amministrazione Trasparente Cross-Site Request Forgery (7.1)
WordPress Plugin RSVPMaker Cross-Site Scripting (2.5.4)
WordPress Plugin Easy Pixels eCommerce extension Unspecified Vulnerability (1.4)
WordPress Plugin ReviewX-Multi-criteria Rating & Reviews for WooCommerce Cross-Site Request Forgery (1.2.8)
WordPress Plugin Phoenix Media Rename Security Bypass (3.4.2)