WordPress Plugin WP Vault is prone to a local file inclusion vulnerability because it fails to sufficiently verify user-supplied input. Exploiting this issue may allow an attacker to obtain sensitive information that could aid in further attacks. WordPress Plugin WP Vault version 0.8.6.6 is vulnerable; prior versions may also be affected.
Edit the source code to ensure that input is properly verified or disable the plugin until a fix is available
WordPress Plugin Simple JWT Login-Login and Register to WordPress using JWT Insecure Password Creation (3.2.1)
WordPress 4.1.x Cross-Site Scripting Vulnerability (4.1 - 4.1.8)
WordPress Plugin Form Maker by 10Web-Mobile-Friendly Drag & Drop Contact Form Builder SQL Injection (1.13.3)
WordPress Plugin WooCommerce-Store Exporter Privilege Escalation (1.8.3)
WordPress Plugin Essential Real Estate Cross-Site Scripting (1.7.1)