CROWD-SOURCED
VULNERABILITIES DATABASE
Vulnerabilities Crowdsourced from WordPress security researchers and the amazing public databases of –
Backup and Staging by WP Time Capsule (Arbitrary File Upload) < 1.22.22
PROTECTED
WP Activity Log (Cross-Site Scripting) < 5.2.2
PROTECTED
Tripetto (Unauthentiated Stored Cross Site Scripting )
PROTECTED
Really Simple Security < 9.1.2
PROTECTED
Chartify - WordPress Chart Plugin (Unauthenticated Local File Inclusion) < 2.9.6
PROTECTED
Migration, Backup, Staging - WPvivid (PHP Object Injection) < 0.9.108
PROTECTED
The FOX - Currency Switcher Professional for WooCommerce (Arbitrary Shortcode Execution) < 1.4.2.3
PROTECTED
MultiManager WP (Authentication Bypass) < 1.1.0
PROTECTED
Advanced Order Export For WooCommerce (PHP Object Injection) < 3.5.6
PROTECTED
GPX Viewer (Authenticated Arbitrary File Creation)
PROTECTED
WP Project Manager (Insecure Direct Object Reference to Unauthenticated Authorization Bypass) < 2.6.14
PROTECTED
WP Photo Album Plus (Arbitrary Shortcode Execution) < 8.9.01.001
PROTECTED
Debug Tool (Arbitrary File Creation)
PROTECTED
CE21 Suite (JWT Token Disclosure)
PROTECTED
Th Shop Mania (Arbitrary Plugin Installation/Activation) < 1.5.0
PROTECTED
Top Store (Arbitrary Plugin Installation/Activation) < 1.5.5
PROTECTED
Cowidgets (Post Disclosure)
PROTECTED
Everest Backup - WordPress Cloud Backup, Migration, Restore & Cloning Plugin (Sensitive Invormation Disclosure) < 2.2.14
PROTECTED
Event Post (Cross-Site Scripting) < 5.9.7
PROTECTED
MapPress Maps for WordPress (Cross-Site Scripting) < 2.94.2
PROTECTED
Crowdsourced Patches for Crowdsourced Vulnerabilities.
© 2025. All rights reserved.