CROWD-SOURCED
VULNERABILITIES DATABASE
Vulnerabilities Crowdsourced from WordPress security researchers and the amazing public databases of –
Popup Plugin For WordPress ConvertPlus (Limited Options Update) < 3.5.31
PROTECTED
Export All Posts, Products, Orders, Refunds & Users (Information Disclosure Through Unprotected Directory) < 2.10
PROTECTED
Customer Email Verification for WooCommerce (Authentication Bypass via Shortcode) < 2.9.6
PROTECTED
Small Package Quotes UPS Edition (Unauthenticated SQL Injection) < 4.5.17
PROTECTED
Apus Framework(Arbitrary Options Update)
PROTECTED
Click Mag Viral WordPress News Magazine/Blog Theme (Arbitrary Options Deletion) < 3.7.0
PROTECTED
ZoxPress The All-In-One WordPress News Theme (Arbitrary Options Update) < 2.12.1
PROTECTED
ZoxPress The All-In-One WordPress News Theme (Arbitrary Options Deletion) < 2.12.1
PROTECTED
LTL Freight Quotes XPO Edition (Unauthenticated SQL Injection) < 4.3.8
PROTECTED
LTL Freight Quotes For Customers of FedEx Freight (Unauthenticated SQL Injection) < 3.4.2
PROTECTED
WP Foodbakery (Unauthenticated Arbitrary File Upload)
PROTECTED
Super Store Finder (SQL Injection to Stored Cross-Site Scripting) < 7.1
PROTECTED
WP Directorybox Manager (Authentication Bypass)
PROTECTED
WP All Export Pro (Remote Code Execution) < 1.9.2
PROTECTED
WP All Import Pro (PHP Object Injection via Import File) < 4.9.8
PROTECTED
Nextend Social Login Pro (Authentication Bypass) < 3.1.17
PROTECTED
CURCY - Multi Currency for WooCommerce (Arbitrary Shortcode Execution) < 2.2.6
PROTECTED
Contact Manager <= 8.6.4 - Unauthenticated Arbitrary Double File Extension Upload < 8.6.5
PROTECTED
BoomBox Theme Extensions (Local File Inclusion via Shortcode) < 1.8.1
PROTECTED
ELEX WordPress HelpDesk & Customer Ticketing System (Privilege Escalation) < 3.2.7
PROTECTED
Crowdsourced Patches for Crowdsourced Vulnerabilities.
© 2025. All rights reserved.