CROWD-SOURCED
VULNERABILITIES DATABASE

Vulnerabilities Crowdsourced from WordPress security researchers and the amazing public databases of –

CE21 Suite (JWT Token Disclosure)
8 Nov 2024
PROTECTED
Th Shop Mania (Arbitrary Plugin Installation/Activation) < 1.5.0
8 Nov 2024
PROTECTED
Top Store (Arbitrary Plugin Installation/Activation) < 1.5.5
8 Nov 2024
PROTECTED
Cowidgets (Post Disclosure)
8 Nov 2024
PROTECTED
Everest Backup - WordPress Cloud Backup, Migration, Restore & Cloning Plugin (Sensitive Invormation Disclosure) < 2.2.14
5 Nov 2024
PROTECTED
Event Post (Cross-Site Scripting) < 5.9.7
5 Nov 2024
PROTECTED
MapPress Maps for WordPress (Cross-Site Scripting) < 2.94.2
5 Nov 2024
PROTECTED
Tumult Hype Animations (Missing Authorization) < 1.9.15
5 Nov 2024
PROTECTED
Photos, Files, YouTube, Twitter, Instagram, TikTok, Ecommerce Contest Gallery - Upload, Vote, Sell via PayPal, Social Share Buttons (Unauthenticated SQL Injection) < 24.0.4
4 Nov 2024
PROTECTED
WooCommerce Report (Cross-Site Request Forgery) < 1.5.2
4 Nov 2024
PROTECTED
Loginizer Security and Loginizer (Authentication Bypass) < 1.9.3
4 Nov 2024
PROTECTED
Media Library Assistant (Remote Code Execution) < 3.20
1 Nov 2024
PROTECTED
Lodgix.com Vacation Rental Website Builder (SQL Injection)
31 Oct 2024
PROTECTED
Porsline (SQL Injection)
31 Oct 2024
PROTECTED
WP Hotel Booking (Local File Inclusion)
31 Oct 2024
PROTECTED
AI Power: Complete AI Pack (Unauthenticated Arbitrary File Upload) < 1.8.90
30 Oct 2024
PROTECTED
FileOrganizer (Arbitrary File Upload) < 1.1.0
29 Oct 2024
PROTECTED
WPAdverts - Classifieds Plugin (Cross-Site Scripting) < 2.1.7
29 Oct 2024
PROTECTED
WPC Smart Messages for WooCommerce (Local File Inclusion) < 4.2.2
28 Oct 2024
PROTECTED
Masteriyo LMS - eLearning and Online Course Builder for WordPress (Privilege Escalation) < 1.13.4
28 Oct 2024
PROTECTED