WordPress Plugin Phoenix Media Rename is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently rename any uploaded media files. WordPress Plugin Phoenix Media Rename version 3.4.2 is vulnerable; prior versions may also be affected.
Update to plugin version 3.4.4 or latest
WordPress Plugin Station Pro Cross-Site Scripting (2.2.1)
WordPress Plugin N-Media Website Contact Form with File Upload Arbitrary File Upload (1.3.4)
WordPress Plugin WordPoints Multiple Vulnerabilities (1.7.0)
WordPress Plugin Content Cards Cross-Site Scripting (0.9.6)