Web: https://securityboulevard.com/2022/04/vulnerability-roundup-april-2022/

April 26, 2022, 8:13 p.m. | Antony Garand

Security Boulevard securityboulevard.com


Vulnerability reports and responsible disclosures are essential for website security awareness and education. Automated attacks targeting known software vulnerabilities are one of the leading causes of website compromises.


To help educate website owners on emerging threats to their environments, we’ve compiled a list of important security updates and vulnerability patches for the WordPress ecosystem this past month.


Remote Code Execution (RCE)

Elementor WordPress Plugin



  • Installations: 5,000,000+

  • Patched Version: 3.6.3

  • Vulnerability: Remote code execution (RCE)

  • Severity: Critical

  • CVE: CVE-2022-1329


This critical …

april security education sql injection vulnerabilities vulnerability vulnerability disclosure website security wordpress plugins and themes wordpress security xss

Information Systems Security Officer (ISSO)

@ Spry Methods | Denver, CO

Client Manager - Cybersecurity - Nashville Enterprise

@ Optiv | Nashville, TN

Threat Analyst | Remote, USA

@ Optiv | Minneapolis, MN

Senior Cyber Security SME

@ Node.Digital | Dulles, Virginia, United States

Junior Security Engineer, Applications

@ BetterHelp | Mountain View, California, United States

Information Security Analyst II

@ SOPHiA GENETICS | Lausanne, Vaud, Switzerland

Product Security Engineer

@ Elastic | United States

Senior Network Exploitation Analyst

@ Barbaricum | Washington, DC

Junior Security Engineer, Blue Team

@ BetterHelp | Mountain View, California, United States

Security Analyst, Security Operations (Threat Hunting, Operations, and Response)

@ GitHub | Remote - US

Security Engineer III - Information Security, Active Directory

@ Riot Games, Inc. | Los Angeles, USA

Staff Security Engineer, Application Security

@ Lyft | Mexico City, Mexico