CROWD-SOURCED
VULNERABILITIES DATABASE
Vulnerabilities Crowdsourced from WordPress security researchers and the amazing public databases of –
Accounting for WooCommerce (Unauthenticated Local File Inclusion) < 1.6.9
PROTECTED
Essential Real Estate (Unauthenticated Local File Inclusion) < 5.2.1
PROTECTED
WP Travel Engine (Unauthenticated Local File Inclusion) < 6.3.6
PROTECTED
postMash Custom - custom post order (Unauthenticated SQL Injection)
PROTECTED
User Registration & Membership (Privilege Escalation) < 4.1.2
PROTECTED
Docpro (Unauthenticated Local File Inclusion)
PROTECTED
Instant Appointment (Unauthenticated Arbitrary File Upload)
PROTECTED
Age Gate (Unauthenticated Local File Inclusion) < 3.5.4
PROTECTED
CozyStay (Arbitrary Action Execution) < 1.7.1
PROTECTED
Improve My City (Stored Cross-Site Scripting)
PROTECTED
FoodBakery Delivery Restaurant Directory WordPress Theme (Missing Authorization) < 4.8
PROTECTED
BoomBox Theme Extensions (Privilege Escalation) < 1.8.1
PROTECTED
s2Member Pro (Local File Inclusion)
PROTECTED
MinimogWP - Theme (Unauthenticated Local PHP File Inclusion) < 3.8.0
PROTECTED
Altair (Unauthenticated Arbitrary Options Update) < 5.2.5
PROTECTED
Service Finder Bookings (Unauthenticated Privilege Escalation via Account Takeover) < 5.1
PROTECTED
CozyStay (Unauthenticated PHP Object Injection) < 1.7.1
PROTECTED
GetShop ecommerce (Unauthenticated Local File Inclusion)
PROTECTED
LinkedIn Lite (Unauthenticated Local File Inclusion)
PROTECTED
Custom Field List Widget (Unauthenticated Local File Inclusion)
PROTECTED
Crowdsourced Patches for Crowdsourced Vulnerabilities.
© 2026. All rights reserved.