Crowd-sourced Vulnerabilities Database

CROWD-SOURCED
VULNERABILITIES DATABASE

Vulnerabilities Crowdsourced from WordPress security researchers and the amazing public databases of –

Tiny Bootstrap Elements Light (Unauthenticated Local File Inclusion)

29 Sep

PROTECTED

Copypress Rest API (Unauthenticated Remote Code Execution) < 1.2.1

29 Sep

PROTECTED

HidePost (Cross-Site Request Forgery)

26 Sep

PROTECTED

Professional Contact Form (Cross-Site Request Forgery to Test Email Sending)

26 Sep

PROTECTED

Sync Feedly (Cross-Site Request Forgery to Sync Trigger)

26 Sep

PROTECTED

WP Statistics (Unauthenticated Stored Cross-Site Scripting) < 14.15.5

26 Sep

PROTECTED

cForms - Light speed fast Form Builder (Cross-Site Request Forgery)

26 Sep

PROTECTED

WP-DownloadManager (Arbitrary File Upload) < 1.69

25 Sep

PROTECTED

Featured Image from URL (FIFU) (Unauthenticated Information Exposure via Log File) < 5.2.8

25 Sep

PROTECTED

Featured Image from URL (FIFU) (SQL Injection) < 5.2.8

25 Sep

PROTECTED

System Dashboard (Cross-Site Request Forgery) < 2.8.21

25 Sep

PROTECTED

MultiLoca - WooCommerce Multi Locations Inventory Management (Arbitrary Options Update) < 4.2.9

23 Sep

PROTECTED

WPCasa (Unauthenticated Code Injection) < 1.4.2

22 Sep

PROTECTED

Product Options and Price Calculation Formulas for WooCommerce - Uni CPO (Premium) (Arbitrary File Upload) < 4.9.55

22 Sep

PROTECTED

Miniorange OTP Verification with Firebase (Unauthenticated Privilege Escalation)

19 Sep

PROTECTED

ClickWhale (SQL injection) < 2.5.1

19 Sep

PROTECTED

Custom Login And Signup Widget (Cross-Site Request Forgery)

19 Sep

PROTECTED

Secure Passkeys (Missing Authorization to Passkey Exposure and Deletion) < 1.2.2

19 Sep

PROTECTED

Robcore Netatmo (SQL Injection via Shortcode) < 1.8

19 Sep

PROTECTED

Internal Links Manager (Cross-Site Request Forgery) < 3.0.2

19 Sep

PROTECTED

Previous 1 2 3 4 ... 42 Next

CROWD-SOURCEDVULNERABILITIES DATABASE

CROWD-SOURCED
VULNERABILITIES DATABASE