November 2016 Plugins & Themes Vulnerabilities Roundup
This is a monthly roundup of all the vulnerabilities in WordPress plugins and themes reported during the month of November 2016. During November no WordPress core vulnerabilities were reported. This roundup is made possible through WP Security Bloggers, an aggregate of popular WordPress security blogs and websites that publish WordPress security news and updates. Overview of WordPress Vulnerabilities in November 2016
In November 39 WordPress plugin vulnerabilities were reported. That is the highest number of vulnerabilities ever recorded since July this year, when we started recording these statistics. It is also quite surprising that we are still seeing fixes for vulnerabilities reported during the Summer of Pwnage, which took place during July 2016.
We are also noticing that the number of plugins being taken offline from the WordPress repository is increasing. Plugins are taken offline when developers do not fix the vulnerabilities, or the developers cannot be reached hence the vulnerabilities are not fixed. This is a good initiative since it ensures that the majority of WordPress plugins on the repository are being maintained and above all, are secure.
Below is the complete list
Source: https://managewp.org/articles/13931/november-2016-plugins-themes-vulnerabilities-roundup
source https://williechiu40.wordpress.com/2016/12/01/november-2016-plugins-themes-vulnerabilities-roundup/