CROWD-SOURCED
VULNERABILITIES DATABASE
Vulnerabilities Crowdsourced from WordPress security researchers and the amazing public databases of –
Shopper Approved Reviews (Missing Authorization to Authenticated)
PROTECTED
User Registration & Membership (Authentication Bypass) < 4.1.3
PROTECTED
Salon booking system (Authenticated Privilege Escalation)
PROTECTED
HTML Forms (Unauthenticated Stored Cross-Site Scripting) < 1.5.2
PROTECTED
WP Pro Real Estate 7 (Arbitrary File Upload) < 3.5.5
PROTECTED
Import Export Suite for CSV and XML Datafeed (Authenticated Arbitrary File Upload) < 7.19.1
PROTECTED
WP RealEstate (Authentication Bypass) < 1.6.27
PROTECTED
Booster for WooCommerce (Stored Cross-Site Scripting) < 7.2.6
PROTECTED
SMS Alert Order Notifications WooCommerce (Privilege Escalation) < 3.8.0
PROTECTED
Checkout Mestres do WP for WooCommerce (Unauthenticated Arbitrary Options Update) < 8.7.5.1
PROTECTED
Sunshine Photo Cart (Unauthenticated PHP Object Injection) < 3.4.11
PROTECTED
So-Called Air Quotes (Unauthenticated Arbitrary Shortcode Execution)
PROTECTED
Inline Image Upload for BBPress (Authenticated Arbitrary File Upload) < 1.1.20
PROTECTED
SoJ Soundslides (Authenticated Arbitrary File Upload)
PROTECTED
MDJM Event Management (Authenticated PHP Object Injection) < 1.7.5.3
PROTECTED
Pop-Up Chop Chop (Authenticated Local File Inclusion) kuppu
PROTECTED
CM Download Manager (Unauthenticated Arbitrary File Deletion) < 3.0.0
PROTECTED
JS Help Desk (Unauthenticated Arbitrary File Deletion) < 2.9.3
PROTECTED
Rapyd Payment Extension for WooCommerce (Unauthenticated PHP Object Injection)
PROTECTED
Accounting for WooCommerce (Unauthenticated Local File Inclusion) < 1.6.9
PROTECTED
Crowdsourced Patches for Crowdsourced Vulnerabilities.
© 2025. All rights reserved.