CROWD-SOURCED
VULNERABILITIES DATABASE
Vulnerabilities Crowdsourced from WordPress security researchers and the amazing public databases of –
IP2Location Country Blocker (Missing Authorization) < 2.38.9
PROTECTED
Saoshyant Slider (Unauthenticated PHP Object Injection)
PROTECTED
Residential Address Detection (Unauthenticated Arbitrary Options Update) < 2.5.5
PROTECTED
SS Quiz <= 2.0.5 - Unauthenticated PHP Object Injection
PROTECTED
WooCommerce Food - Restaurant Menu & Food ordering (Unauthenticated Arbitrary Shortcode Execution) < 3.3.3
PROTECTED
Subscribe2 - Form, Email Subscribers & Newsletters (Unauthenticated Stored Cross-Site Scripting) < 10.44
PROTECTED
Trash Duplicate and 301 Redirect (Arbitrary Post Deletion)
PROTECTED
Team Builder For WPBakery Page Builder(Formerly Visual Composer) (Local File Inclusion)
PROTECTED
Post SMTP( Stored Cross-Site Scripting ) < 3.1.0
PROTECTED
CarSpot Dealership WordPress Classified Theme (Arbitrary Password Reset/Account Takeover) < 2.4.4
PROTECTED
Reset (Cross-Site Request Forgery to Database Reset)
PROTECTED
Option Editor (Cross-Site Request Forgery to Arbitrary Options Update)
PROTECTED
File Uploads Addon for WooCommerce (Unprotected Directory)
PROTECTED
GetBookingsWp Appointments & Bookings Plugin Basic Version (Privilege Escalation)
PROTECTED
Keap Official Opt-in Forms (Unauthenticated Limited Local File Inclusion)
PROTECTED
s2Member Pro (Unauthenticated PHP Object Injection) < 250214
PROTECTED
Oliver POS - A WooCommerce Point of Sale (Sensitive Information Exposure to Privilege Escalation) < 2.4.2.4
PROTECTED
LTL Freight Quotes - Estes Edition (Unauthenticated SQL Injection) < 3.3.8
PROTECTED
Campress (Unauthenticated Local File Inclusion)
PROTECTED
Puzzles | WP Magazine / Review with Store WordPress Theme + RTL (Unauthenticated PHP Object Injection)
PROTECTED
Crowdsourced Patches for Crowdsourced Vulnerabilities.
© 2025. All rights reserved.