CROWD-SOURCED
VULNERABILITIES DATABASE
Vulnerabilities Crowdsourced from WordPress security researchers and the amazing public databases of –
HyperComments (Arbitrary Options Update)
PROTECTED
WP User Frontend Pro (Arbitrary File Deletion) < 4.1.4
PROTECTED
WP User Frontend Pro (Arbitrary File Upload) < 4.1.4
PROTECTED
wpForo + wpForo Advanced Attachments (Unauthenticated Stored Cross-Site Scripting) < 3.2.0
PROTECTED
Golo (Authentication Bypass to Account Takeover) < 1.7.1
PROTECTED
Shared Files (Unauthenticated Stored Cross-Site Scripting via sanitize_file Function) < 1.7.49
PROTECTED
Offsprout Page Builder (Privilege Escalation via permission_callback Function)
PROTECTED
Profitori (Privilege Escalation)
PROTECTED
WP-GeoMeta (Privilege Escalation) < 0.3.6
PROTECTED
Newsletters (Local File Inclusion) < 4.10
PROTECTED
Solar Energy (PHP Object Injection)
PROTECTED
SUMO Affiliates Pro (Unauthenticated Arbitrary File Upload)
PROTECTED
WPCHURCH (Privilege Escalation)
PROTECTED
WP Pipes (Arbitrary File Deletion) < 1.4.3
PROTECTED
WBW Product Table PRO (Unauthenticated SQL Injection)
PROTECTED
MaxiBlocks (Arbitrary Options Update)
PROTECTED
Spreadsheet Price Changer for WooCommerce and WP E-commerce - Light (Arbitrary File Download)
PROTECTED
Real Time Validation for Gravity Forms (Unauthenticated Local File Inclusion)
PROTECTED
WP-GeoMeta (Privilege Escalation) < 0.3.5
PROTECTED
Featured Image Plus (Missing Authorization to Authenticated Featured Image Update) < 1.6.5
PROTECTED
Crowdsourced Patches for Crowdsourced Vulnerabilities.
© 2025. All rights reserved.