CROWD-SOURCED
VULNERABILITIES DATABASE
Vulnerabilities Crowdsourced from WordPress security researchers and the amazing public databases of –
AIHub (Unauthenticated Arbitrary File Upload) < 1.3.8
PROTECTED
WP Headers And Footers (Cross-Site Request Forgery to Arbitrary Options Update) < 3.1.2
PROTECTED
JobWP - Job Board, Job Listing, Career Page and Recruitment Plugin (Unauthenticated SQL Injection) < 2.4.0
PROTECTED
Debug log Manager (Cross-Site Scripting) < 2.3.5
PROTECTED
CLEVER - HTML5 Radio Player With History - Shoutcast and Icecast (Unauthenticated Arbitrary File Read) < 2.5
PROTECTED
I Draw (Arbitrary File Upload)
PROTECTED
WPAMS (Arbitrary File Upload)
PROTECTED
WPAMS (Privilege Escalation)
PROTECTED
Avatar (Arbitrary File Deletion)
PROTECTED
Ultimate Member User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin (Unauthenticated Blind SQL Injection) < 2.10.2
PROTECTED
WPC Admin Columns (Privilege Escalation) < 2.1.1
PROTECTED
WPC Admin Columns (Privilege Escalation) < 2.1.1
PROTECTED
WPC Admin Columns (Privilege Escalation) < 2.1.1
PROTECTED
SMTP for Amazon SES (Stored Cross Site Scripting) < 1.9
PROTECTED
InstaWP Connect (Local PHP File Inclusion) < 0.1.0.86
PROTECTED
Embedder(Arbitrary Options Update)
PROTECTED
azurecurve Shortcodes in Comments (Arbitrary Shortcode Execution)
PROTECTED
ORDER POST (Arbitrary Shortcode Execution)
PROTECTED
SureTriggers (Missing Empty Value Check) < 1.0.79
PROTECTED
Streamit (Privilege Escalation) < 4.0.3
PROTECTED
Crowdsourced Patches for Crowdsourced Vulnerabilities.
© 2026. All rights reserved.