CROWD-SOURCED
VULNERABILITIES DATABASE
Vulnerabilities Crowdsourced from WordPress security researchers and the amazing public databases of –
WPFront User Role Editor (Cross-Site Request Forgery to Privilege Escalation) < 4.2.2
PROTECTED
Simple WP Events (Unauthenticated Arbitrary File Deletion)
PROTECTED
ZoomSounds - WordPress Wave Audio Player with Playlist (Arbitrary File Download)
PROTECTED
Streamit (Privilege Escalation) < 4.0.3
PROTECTED
Drag and Drop Multiple File Upload for WooCommerce(Arbitrary File Move) < 1.1.5
PROTECTED
ZoomSounds WordPress Wave Audio Player with Playlist (Limited Options Update )
PROTECTED
Email Notifications for Updates (Arbitrary Options Update) < 1.2.0
PROTECTED
Streamit (Arbitrary File Upload) < 4.0.2
PROTECTED
Countdown, Coming Soon, Maintenance Countdown & Clock (Local File Inclusion) < 2.9.0
PROTECTED
Product Filter by WBW (SQL Injection) < 2.8.0
PROTECTED
TagDiv Composer (PHP Object Instantiation) < 5.4
PROTECTED
Uncanny Automator (Privilege Escalation) < 6.4.0
PROTECTED
Booster for WooCommerce (Arbitrary File Upload) < 7.2.5
PROTECTED
Vehica Core (Privilege Escalation) < 1.0.98
PROTECTED
Woffice (Authentication Bypass) < 5.4.22
PROTECTED
Woffice Core (Arbitrary File Upload) < 5.4.22
PROTECTED
Vehica Core (Privilege Escalation) < 1.0.98
PROTECTED
Testimonial Slider (PHP Object Injection) < 2.0.14
PROTECTED
Booking Calendar and Notification (Unauthenticated SQL Injection)
PROTECTED
Front-End-Only-Users (Unauthenticated Arbitrary File Upload)
PROTECTED
Crowdsourced Patches for Crowdsourced Vulnerabilities.
© 2025. All rights reserved.