The WP-Invoice plugin from Usability Dynamics, Inc. contains several security vulnerabilities. The wordpress.org stats claim there are 5,000+ active installs, so this is not a highly used plugin but anything that is related to billing/invoices always puts me on edge. If you use this plugin I encourage you to update immediately. I only evaluated the free version of this … Continue reading WP-Invoice < 4.1.1 Multiple Security Vulnerabilities