CROWD-SOURCED
VULNERABILITIES DATABASE
Vulnerabilities Crowdsourced from WordPress security researchers and the amazing public databases of –
Solid Mail - SMTP email and logging made by SolidWP (Unauthenticated Stored Cross-Site Scripting via Email) < 2.1.6
PROTECTED
Glossary by WPPedia (PHP Object Injection)
PROTECTED
Madara - Responsive and modern WordPress theme for manga sites (Local File Inclusion) < 2.2.2.1
PROTECTED
Splitit (Missing Authorization)
PROTECTED
Motors (Privilege Escalation) < 5.6.68
PROTECTED
TheGem (Arbitrary File Upload) < 5.10.3.1
PROTECTED
Crawlomatic Multipage Scraper Post Generator (Unauthenticated Arbitrary File Upload) < 2.6.8.2
PROTECTED
Echo RSS Feed Post Generator (Unauthenticated Arbitrary File Upload) < 5.4.8.2
PROTECTED
WPBot Pro WordPress Chatbot (Arbitrary File Deletion) < 13.7.0
PROTECTED
TI WooCommerce Wishlist (Arbitrary File Upload)
PROTECTED
Printcart Web to Print Product Designer for WooCommerce (Arbitrary File Upload)
PROTECTED
STAGGS (Arbitrary File Upload)
PROTECTED
WP Content Security Plugin (Unauthenticated Stored Cross-Site Scripting)
PROTECTED
TicketBAI Facturas para WooCommerce (Unauthenticated Arbitrary File Deletion) < 3.19
PROTECTED
File Manager Advanced Shortcode (Local JavaScript File Inclusion via Shortcode) < 2.6.0
PROTECTED
UiPress lite | Effortless custom dashboards, admin themes and pages (Remote Code Execution) < 3.5.08
PROTECTED
Baiduseo (Unauthenticated Arbitrary File Upload)
PROTECTED
Uncanny Automator (PHP Object Injection) < 6.4.0.2
PROTECTED
Frontend Dashboard (Privilege Escalation) < 2.2.8
PROTECTED
Frontend Dashboard (Privilege Escalation) < 2.2.8
PROTECTED
Crowdsourced Patches for Crowdsourced Vulnerabilities.
© 2026. All rights reserved.