CROWD-SOURCED
VULNERABILITIES DATABASE
Vulnerabilities Crowdsourced from WordPress security researchers and the amazing public databases of –
Traveler Code (SQL Injection)
PROTECTED
Jupiter X Core (SVG Upload to Local File Inclusion) < 4.8.8
PROTECTED
WooCommerce Customers Manager (Privilege Escalation) < 31.4
PROTECTED
WP BASE Booking (Stored Cross-Site Scripting) < 5.1.0
PROTECTED
Traveler Layout Essential For Elementor (Server-Side Request Forgery)
PROTECTED
WooCommerce Product Table Lite (Arbitrary Shortcode Execution & Reflected Cross-Site Scripting) < 3.9.5
PROTECTED
Link Fixer (Unauthenticated Stored Cross-Site Scripting)
PROTECTED
Live2DWebCanvas (Arbitrary File Deletion)
PROTECTED
Borderless - Widgets, Elements, Templates and Toolkit for Elementor & Gutenberg (Remote Code Execution)
PROTECTED
Royal Core (Arbitrary Options Update)
PROTECTED
Media Manager for UserPro (Arbitrary Options Update)
PROTECTED
Media Manager for UserPro (Arbitrary Options Update)
PROTECTED
Single-user-chat (Limited Options Update)
PROTECTED
Music Sheet Viewer (Unauthenticated Arbitrary File Read)
PROTECTED
MWB HubSpot for WooCommerce (Arbitrary Options Update) < 1.6.0
PROTECTED
iControlWP - Multiple WordPress Site Manager (PHP Object Injection) < 4.5.0
PROTECTED
Safe Ai Malware Protection for WP ( Missing Authorization to Unauthenticated Database Export)
PROTECTED
MultiVendorX -The Ultimate WooCommerce Multivendor Marketplace Solution (Unauthenticated Limited Local File Inclusion) < 4.2.15
PROTECTED
Contact Form & SMTP Plugin for WordPress by PirateForms (Arbitrary Shortcode Execution) < 2.6.1
PROTECTED
WooCommerce Wishlist (Unauthenticated Wishlist Disclosure via download_pdf_file Function) < 1.8.8
PROTECTED
Crowdsourced Patches for Crowdsourced Vulnerabilities.
© 2025. All rights reserved.