Download Free

CROWD-SOURCED
VULNERABILITIES DATABASE

Vulnerabilities Crowdsourced from WordPress security researchers and the amazing public databases of –

ZoxPress The All-In-One WordPress News Theme (Arbitrary Options Deletion) < 2.12.1
11 Feb
PROTECTED
LTL Freight Quotes XPO Edition (Unauthenticated SQL Injection) < 4.3.8
11 Feb
PROTECTED
LTL Freight Quotes For Customers of FedEx Freight (Unauthenticated SQL Injection) < 3.4.2
11 Feb
PROTECTED
WP Foodbakery (Unauthenticated Arbitrary File Upload)
10 Feb
PROTECTED
Super Store Finder (SQL Injection to Stored Cross-Site Scripting) < 7.1
8 Feb
PROTECTED
WP Directorybox Manager (Authentication Bypass)
8 Feb
PROTECTED
WP All Export Pro (Remote Code Execution) < 1.9.2
7 Feb
PROTECTED
WP All Import Pro (PHP Object Injection via Import File) < 4.9.8
7 Feb
PROTECTED
Nextend Social Login Pro (Authentication Bypass) < 3.1.17
6 Feb
PROTECTED
CURCY - Multi Currency for WooCommerce (Arbitrary Shortcode Execution) < 2.2.6
5 Feb
PROTECTED
Contact Manager <= 8.6.4 - Unauthenticated Arbitrary Double File Extension Upload < 8.6.5
4 Feb
PROTECTED
BoomBox Theme Extensions (Local File Inclusion via Shortcode) < 1.8.1
3 Feb
PROTECTED
ELEX WordPress HelpDesk & Customer Ticketing System (Privilege Escalation) < 3.2.7
31 Jan
PROTECTED
Traveler Code (SQL Injection)
31 Jan
PROTECTED
Jupiter X Core (SVG Upload to Local File Inclusion) < 4.8.8
31 Jan
PROTECTED
WooCommerce Customers Manager (Privilege Escalation) < 31.4
31 Jan
PROTECTED
WP BASE Booking (Stored Cross-Site Scripting) < 5.1.0
31 Jan
PROTECTED
Traveler Layout Essential For Elementor (Server-Side Request Forgery)
31 Jan
PROTECTED
WooCommerce Product Table Lite (Arbitrary Shortcode Execution & Reflected Cross-Site Scripting) < 3.9.5
30 Jan
PROTECTED
Link Fixer (Unauthenticated Stored Cross-Site Scripting)
30 Jan
PROTECTED

Crowdsourced Patches for Crowdsourced Vulnerabilities.

© 2025. All rights reserved.