WordPress Plugin WPGraphQL is prone to a Denial of Service vulnerability. Exploiting this issue may allow an attacker to cause the affected website to consume memory and CPU resources, thus denying service to legitimate users. WordPress Plugin WPGraphQL version 1.3.5 is vulnerable; prior versions may also be affected.
Update to plugin version 1.3.6 or latest
WordPress Plugin Flexible Captcha Multiple Vulnerabilities (3.3)
WordPress Plugin Backup & Restore Dropbox Multiple Vulnerabilities (188.8.131.52)
WordPress Plugin YITH Maintenance Mode Cross-Site Scripting (1.3.7)
WordPress Plugin Forms:3rd-Party Inject Results Cross-Site Scripting (0.2)