| CVE-2026-32545 | WordPress Taboola Pixel plugin <= 1.1.4 - Reflected Cross Site Scripting (XSS) vulnerability | Taboola | Taboola Pixel | 中危 | - | 2026-03-25 16:15:12 | Deep Dive |
| CVE-2019-25621 | Pixel Studio 2.17 Denial of Service via Malformed Input | Pixarra | Pixel Studio | Medium | 6.2 | 2026-03-23 13:48:37 | Deep Dive |
| CVE-2026-27072 | WordPress PixelYourSite – Your smart PIXEL (TAG) Manager plugin <= 11.2.0.1 - Cross Site Scripting (XSS) vulnerability | PixelYourSite | PixelYourSite – Your smart PIXEL (TAG) Manager | - | - | 2026-02-20 15:47:09 | Deep Dive |
| CVE-2026-1844 | PixelYourSite PRO <= 12.4.0.2 - Unauthenticated Stored Cross-Site Scripting | pixelyoursite | PixelYourSite Pro – Your smart PIXEL (TAG) Manager | High | 7.2 | 2026-02-13 21:23:05 | Deep Dive |
| CVE-2026-1841 | PixelYourSite <= 11.2.0 - Unauthenticated Stored Cross-Site Scripting | pixelyoursite | PixelYourSite – Your smart PIXEL (TAG) & API Manager | High | 7.2 | 2026-02-13 21:23:05 | Deep Dive |
| CVE-2025-14557 | XSS in Drupal 7 Facebook Pixel Module | Drupal | Facebook Pixel | - | - | 2026-01-14 18:40:35 | Deep Dive |
| CVE-2025-14280 | PixelYourSite <= 11.1.5 - Sensitive Information Exposure via Log File | pixelyoursite | PixelYourSite – Your smart PIXEL (TAG) & API Manager | Medium | 5.3 | 2025-12-29 18:20:50 | Deep Dive |
| CVE-2025-14062 | Animated Pixel Marquee Creator <= 1.0.0 - Cross-Site Request Forgery via 'marquee' Parameter | tekafran | Animated Pixel Marquee Creator | Medium | 4.3 | 2025-12-12 03:20:56 | Deep Dive |
| CVE-2025-67564 | WordPress Pixel Manager for WooCommerce plugin <= 1.51.1 - Sensitive Data Exposure vulnerability | alekv | Pixel Manager for WooCommerce | - | - | 2025-12-09 14:14:11 | Deep Dive |
| CVE-2025-12545 | Pixel Manager for WooCommerce – Track Conversions and Analytics, Google Ads, TikTok and more <= 1.49.2 - Unauthenticated Information Exposure | alekv | Pixel Manager for WooCommerce – Conversion Tracking, Google Ads, GA4, TikTok, Dynamic Remarketing | Medium | 5.3 | 2025-11-18 13:54:51 | Deep Dive |
| CVE-2025-10588 | PixelYourSite <= 11.1.2 – Cross-Site Request Forgery to GDPR Options Modification | pixelyoursite | PixelYourSite – Your smart PIXEL (TAG) & API Manager | Medium | 4.3 | 2025-10-22 06:40:58 | Deep Dive |
| CVE-2025-7644 | Pixel Gallery Addons for Elementor – Easy Grid, Creative Gallery, Drag and Drop Grid, Custom Grid Layout, Portfolio Gallery <= 1.6.7 - Authenticated (Contributor+) Stored Cross-Site Scripting | bdthemes | Pixel Gallery Addons for Elementor – Easy Grid, Creative Gallery, Drag and Drop Grid, Custom Grid Layout, Portfolio Gallery | Medium | 6.4 | 2025-07-22 04:25:08 | Deep Dive |
| CVE-2025-6201 | Pixel Manager for WooCommerce (PRO) <= 1.49.0 - Authenticated (Contributor+) Cross-Site Scripting via Shortcode | alekv | Pixel Manager for WooCommerce – Conversion Tracking, Google Ads, GA4, TikTok, Dynamic Remarketing | Medium | 6.4 | 2025-06-19 02:10:37 | Deep Dive |
| CVE-2025-31914 | WordPress Pixel Form BuilderPlugin & Autoresponder plugin <= 1.0.2 - SQL Injection Vulnerability | kamleshyadav | Pixel WordPress Form BuilderPlugin & Autoresponder | Critical | 9.3 | 2025-05-23 12:44:03 | Deep Dive |
| CVE-2025-31915 | WordPress Pixel Form BuilderPlugin & Autoresponder plugin <= 1.0.3 - Cross Site Request Forgery (CSRF) vulnerability | kamleshyadav | Pixel WordPress Form BuilderPlugin & Autoresponder | Medium | 5.4 | 2025-05-16 15:45:37 | Deep Dive |
| CVE-2025-23679 | WordPress FP RSS Category Excluder plugin <= 1.0.0 - Reflected Cross Site Scripting (XSS) vulnerability | Flourish Pixel | FP RSS Category Excluder | High | 7.1 | 2025-01-22 14:29:18 | Deep Dive |
| CVE-2025-23946 | WordPress Enhanced YouTube Shortcode plugin <= 2.0.1 - Cross Site Scripting (XSS) vulnerability | Le-Pixel-Solitaire | Enhanced YouTube Shortcode | Medium | 6.5 | 2025-01-16 20:08:06 | Deep Dive |
| CVE-2025-22300 | WordPress PixelYourSite plugin <= 10.0.1.2 - Cross Site Request Forgery (CSRF) vulnerability | PixelYourSite | PixelYourSite – Your smart PIXEL (TAG) Manager | Medium | 5.4 | 2025-01-07 10:49:02 | Deep Dive |
| CVE-2022-4974 | Freemius SDK <= 2.4.2 - Missing Authorization Checks | dashlabsltd | YASR – Yet Another Star Rating Plugin for WordPress | Medium | 6.3 | 2024-10-16 06:43:30 | Deep Dive |
| CVE-2024-8544 | Pixel Cat – Conversion Pixel Manager <= 3.0.5 - Reflected Cross-Site Scripting | fatcatapps | Pixel Cat – Conversion Pixel Manager | Medium | 6.1 | 2024-09-24 01:56:49 | Deep Dive |