| #5401 | Bazz CallBack widget | 42 | 55 | 28 | 3k+ | | | Unsafe printing function |
| #5402 | CCAvenue Payment Gateway for WooCommerce | 42 | 53 | 40 | 3k+ | | | Text Domain Mismatch |
| #5403 | Display Categories Widget | 42 | 90 | 4 | 3k+ | | | Output is not escaped |
| #5404 | WPTerm | 42 | 61 | 89 | 3k+ | | | Output is not escaped |
| #5405 | CookieHub – Cookie Consent Banner (DSGVO, CCPA, RGPD and GDPR compliance) | 42 | 33 | 49 | 3k+ | | | Output is not escaped |
| #5406 | Nav Menu Collapse | 42 | 17 | 39 | 3k+ | | | Missing nonce verification |
| #5407 | NS Remove Related Products for WooCommerce | 42 | 95 | 43 | 3k+ | | | Output is not escaped |
| #5408 | Goolytics – Simple Google Analytics | 42 | 37 | 5 | 3k+ | | | Unsafe printing function |
| #5409 | Hide Cart Functions | 42 | 12 | 50 | 3k+ | | | Nonce verification recommended |
| #5410 | Confetti | 42 | 136 | 17 | 3k+ | | | Unsafe printing function |
| #5411 | WP Post Redirect | 42 | 29 | 17 | 3k+ | | | Unsafe printing function |
| #5412 | Image Uploader for Welcart | 42 | 27 | 24 | 3k+ | | | Output is not escaped |
| #5413 | Lock Down Admin | 42 | 30 | 20 | 3k+ | | | Unsafe printing function |
| #5414 | Automatic NBSP | 42 | 24 | 16 | 3k+ | | | Output is not escaped |
| #5415 | 多合一搜索自动推送管理插件-支持Baidu/Google/Bing/IndexNow/Yandex/头条 | 42 | 17 | 38 | 2k+ | | | Input is not sanitized |
| #5416 | Embedly | 42 | 17 | 38 | 2k+ | | | Output is not escaped |
| #5417 | Zotpress | 42 | 10 | 403 | 2k+ | | | Non-prefixed global variable |
| #5418 | Prismatic | 42 | 61 | 29 | 2k+ | | | Output is not escaped |
| #5419 | Booking.com Official Search Box | 42 | 36 | 32 | 2k+ | | | Output is not escaped |
| #5420 | Dynamic Remarketing for Google Ads and WooCommerce | 42 | 32 | 15 | 2k+ | | | Output is not escaped |
| #5421 | FormCraft – Form Builder | 42 | 186 | 156 | 2k+ | | | Text Domain Mismatch |
| #5422 | Enable Classic Editor & Widgets | 42 | 106 | 6 | 2k+ | | | Non Singular String Literal Domain |
| #5423 | Republish Old Posts | 42 | 83 | 24 | 2k+ | | | Output is not escaped |
| #5424 | OG Tags | 42 | 131 | 34 | 2k+ | | | Non Singular String Literal Domain |
| #5425 | Clover Payments for WooCommerce | 42 | 25 | 15 | 2k+ | | | Exception output is not escaped |
| #5426 | Simple Download Counter | 42 | 58 | 46 | 2k+ | | | Output is not escaped |
| #5427 | Dashboard Sticky Notes | 42 | 20 | 17 | 2k+ | | | Missing nonce verification |
| #5428 | PDF Thumbnail Generator | 42 | 26 | 16 | 2k+ | | | Output is not escaped |
| #5429 | Disable Recaptcha – CF7 | 42 | 73 | 5 | 2k+ | | | Output is not escaped |
| #5430 | File Media Renamer | 42 | 16 | 42 | 2k+ | | | Input is not sanitized |
| #5431 | Bulk Change Media Author | 42 | 25 | 20 | 2k+ | | | Unsafe printing function |
| #5432 | Chartbeat | 42 | 33 | 18 | 1k+ | | | Output is not escaped |
| #5433 | Image and Video Lightbox, Image PopUp | 42 | 53 | 15 | 1k+ | | | Output is not escaped |
| #5434 | Exit Popup | 42 | 51 | 5 | 1k+ | | | Output is not escaped |
| #5435 | Squelch Tabs and Accordions Shortcodes | 42 | 57 | 51 | 1k+ | | | Unsafe printing function |
| #5436 | Add to Home Screen & Progressive Web App | 42 | 23 | 68 | 1k+ | | | Request data is not unslashed |
| #5437 | All-in-one Like Widget | 42 | 165 | 2 | 1k+ | | | Text Domain Mismatch |
| #5438 | Custom Fields for Gutenberg | 42 | 24 | 24 | 1k+ | | | Output is not escaped |
| #5439 | Open Currency Converter | 42 | 59 | 19 | 1k+ | | | Unsafe printing function |
| #5440 | Widget Visibility Time Scheduler | 42 | 70 | 34 | 1k+ | | | Output is not escaped |
| #5441 | WC Speed Repair | 42 | 34 | 74 | 1k+ | | | Non-prefixed global variable |
| #5442 | Starter Sites | 42 | 62 | 25 | 1k+ | | | Output is not escaped |
| #5443 | SuperSaaS – online appointment scheduling | 42 | 79 | 10 | 1k+ | | | Text Domain Mismatch |
| #5444 | FooTable | 42 | 86 | 7 | 1k+ | | | Output is not escaped |
| #5445 | Lazy Social Comments | 42 | 73 | 10 | 1k+ | | | Unsafe printing function |
| #5446 | OnPay.io for WooCommerce | 42 | 238 | 37 | 1k+ | | | Text Domain Mismatch |
| #5447 | Cronjob Scheduler | 42 | 20 | 36 | 1k+ | | | Input is not sanitized |
| #5448 | Post Grid Master — Post Grids & AJAX Filters | 42 | 44 | 115 | 1k+ | | | Non-prefixed global variable |
| #5449 | TT Extra Fee Option for WooCommerce | 42 | 37 | 19 | 1k+ | | | Output is not escaped |
| #5450 | UniConsent Cookie Consent CMP – Consent Manager | 42 | 148 | 18 | 1k+ | | | Unsafe printing function |