CROWD-SOURCED
VULNERABILITIES DATABASE
Vulnerabilities Crowdsourced from WordPress security researchers and the amazing public databases of –
Droip (Arbitrary File Upload)
PROTECTED
Ebook Store (Arbitrary File Upload) < 5.8013
PROTECTED
WPBookit (Unauthenticated Arbitrary File Upload) < 1.0.7
PROTECTED
Webinar Solution: Create live/evergreen/automated/instant webinars, stream & Zoom Meetings | WebinarIgnition (Authentication Bypass) < 4.03.33
PROTECTED
iThoughts Advanced Code Editor (Cross-Site Request Forgery to Settings Update)
PROTECTED
Omnishop (Unauthenticated Account Creation)
PROTECTED
Omnishop (Cross-Site Request Forgery)
PROTECTED
Realty Portal - Agent (Privilege Escalation)
PROTECTED
Social Streams (Privilege Escalation)
PROTECTED
Social Streams (Privilege Escalation)
PROTECTED
Extensions For CF7 (Contact form 7 Database, Conditional Fields and Redirection) (Unauthenticated Arbitrary File Deletion) < 3.2.9
PROTECTED
WP JobHunt (Arbitrary Account Deletion)
PROTECTED
Nginx Cache Purge Preload (Remote Code Execution) < 2.1.3
PROTECTED
bSecure (Unauthenticated Privilege Escalation) < 1.7.9
PROTECTED
Shortcodes Ultimate (Cross-Site Request Forgery) < 7.4.3
PROTECTED
Vchasno Kasa (Unauthenticated Log File Clearing) < 1.0.4
PROTECTED
LoginPress Pro (Authentication Bypass via WordPress.com OAuth provider) < 5.0.2
PROTECTED
aapanel WP Toolkit (Privilege Escalation) < 1.1
PROTECTED
B1.lt for WooCommerce (Arbitrary SQL Injection) < 2.2.57
PROTECTED
Attachment Manager (Arbitrary File Deletion)
PROTECTED
Crowdsourced Patches for Crowdsourced Vulnerabilities.
© 2025. All rights reserved.