CROWD-SOURCED
VULNERABILITIES DATABASE
Vulnerabilities Crowdsourced from WordPress security researchers and the amazing public databases of –
XLSXviewer (Arbitrary File Deletion)
PROTECTED
WP Load Gallery (Arbitrary File Upload)
PROTECTED
DD Roles (Privilege Escalation)
PROTECTED
Image Gallery Box by CRUDLab (Local File Inclusion)
PROTECTED
User Management (Privilege Escalation) < 1.2
PROTECTED
WR Price List Manager For Woocommerce (Arbitrary File Upload)
PROTECTED
Background Control <= 1.0.5 - Cross-Site Request Forgery to Arbitrary File Deletion
PROTECTED
WPBookit <= 1.6.4 - Unauthenticated Arbitrary User Password Change < 1.6.6
PROTECTED
Multiple Shipping And Billing Address For Woocommerce (Unauthenticated SQL Injection) < 1.3
PROTECTED
Private Messages for UserPro (Unauthenticated Local File Inclusion)
PROTECTED
ARPrice (Unauthenticated SQL Injection)
PROTECTED
ARPrice (PHP Object Injection)
PROTECTED
AutomatorWP (Reflected Cross-Site Scripting) < 5.1.0
PROTECTED
Super Backup & Clone (Arbitrary File Upload) < 2.4
PROTECTED
Print Science Designer (PHP Object Injection) < 1.3.153
PROTECTED
Ninja Forms (Cross-Site Scripting) < 3.8.20
PROTECTED
Grid Plus (Arbitrary Shortcode Execution)
PROTECTED
Opt-In Downloads (Arbitrary File Upload)
PROTECTED
de:branding (Arbitrary Options Update)
PROTECTED
HQ Rental Software (Cross-Site Request Forgery to Arbitrary Options Update)
PROTECTED
Crowdsourced Patches for Crowdsourced Vulnerabilities.
© 2025. All rights reserved.