29 vulnerabilities this week, with 5 needing a fix (with some, possibly, on the way).
The first 3 vulnerabilities in the list are confirmations of possible vulnerabilities from last week. Search Exclude returns as last week's fix wasn't sufficient, LMS / VLE plugin LifterLMS has a serious vulnerability, Slimstat analytics returns for the third time this year. A cross-site scripting issue in FileBird – WordPress Media Library Folders has been disclosed publicly and means the plugin is likely to be targeted.