CROWD-SOURCED
VULNERABILITIES DATABASE
Vulnerabilities Crowdsourced from WordPress security researchers and the amazing public databases of –
LTL Freight Quotes Day & Ross Edition (Unauthenticated Stored Cross-Site Scripting) < 2.1.11
PROTECTED
LTL Freight Quotes Daylight Edition (Unauthenticated Stored Cross-Site Scripting) < 2.2.7
PROTECTED
LTL Freight Quotes - Freightview Edition (Unauthenticated Stored Cross-Site Scripting) < 1.0.12
PROTECTED
Profiler - What Slowing Down Your WP (Unauthenticated Arbitrary Plugin Reactivation)
PROTECTED
Hive Support (Missing Authorization)
PROTECTED
WP Email Debug (Missing Authorization to Unauthenticated Privilege Escalation) < 1.1.1
PROTECTED
WP Online Users Stats (SQL Injection)
PROTECTED
WP-Addpub (SQL Injection)
PROTECTED
Simple History (Sensitive Information Exposure) < 5.8.2
PROTECTED
HyperComments (Arbitrary Options Update)
PROTECTED
WP User Frontend Pro (Arbitrary File Deletion) < 4.1.4
PROTECTED
WP User Frontend Pro (Arbitrary File Upload) < 4.1.4
PROTECTED
wpForo + wpForo Advanced Attachments (Unauthenticated Stored Cross-Site Scripting) < 3.2.0
PROTECTED
Golo (Authentication Bypass to Account Takeover) < 1.7.1
PROTECTED
Shared Files (Unauthenticated Stored Cross-Site Scripting via sanitize_file Function) < 1.7.49
PROTECTED
Broken Link Checker (Missing Authorization to Plugin Status Dashboard View) < 2.4.5
PROTECTED
Offsprout Page Builder (Privilege Escalation via permission_callback Function)
PROTECTED
Profitori (Privilege Escalation)
PROTECTED
WP-GeoMeta (Privilege Escalation) < 0.3.6
PROTECTED
Newsletters (Local File Inclusion) < 4.10
PROTECTED
Crowdsourced Patches for Crowdsourced Vulnerabilities.
© 2025. All rights reserved.