CROWD-SOURCED
VULNERABILITIES DATABASE

Vulnerabilities Crowdsourced from WordPress security researchers and the amazing public databases of –

Apptha Slider Gallery (Unauthenticated Arbitrary File Read)
29 May
PROTECTED
Course Builder (Unauthenticated PHP Object Injection) < 3.6.6
29 May
PROTECTED
The Fashion - Model Agency One Page Beauty Theme (Unauthenticated PHP Object Injection)
29 May
PROTECTED
MasterStudy LMS Pro (Arbitrary File Upload) < 4.7.1
27 May
PROTECTED
Likes and Dislikes Plugin (Unauthenticated SQL Injection)
27 May
PROTECTED
Property (Privilege Escalation) < 1.0.7
26 May
PROTECTED
eMagicOne Store Manager for WooCommerce (Unauthenticated Arbitrary File Upload)
23 May
PROTECTED
eMagicOne Store Manager for WooCommerce (Unauthenticated Arbitrary File Deletion)
23 May
PROTECTED
eMagicOne Store Manager for WooCommerce (Unauthenticated Arbitrary File Upload)
23 May
PROTECTED
Solid Mail - SMTP email and logging made by SolidWP (Unauthenticated Stored Cross-Site Scripting via Email) < 2.1.6
22 May
PROTECTED
Glossary by WPPedia (PHP Object Injection)
20 May
PROTECTED
Madara - Responsive and modern WordPress theme for manga sites (Local File Inclusion) < 2.2.2.1
20 May
PROTECTED
Splitit (Missing Authorization)
20 May
PROTECTED
Motors (Privilege Escalation) < 5.6.68
19 May
PROTECTED
TheGem (Arbitrary File Upload) < 5.10.3.1
16 May
PROTECTED
Crawlomatic Multipage Scraper Post Generator (Unauthenticated Arbitrary File Upload) < 2.6.8.2
16 May
PROTECTED
Echo RSS Feed Post Generator (Unauthenticated Arbitrary File Upload) < 5.4.8.2
16 May
PROTECTED
WPBot Pro WordPress Chatbot (Arbitrary File Deletion) < 13.7.0
16 May
PROTECTED
TI WooCommerce Wishlist (Arbitrary File Upload)
16 May
PROTECTED
Printcart Web to Print Product Designer for WooCommerce (Arbitrary File Upload)
16 May
PROTECTED