CROWD-SOURCED
VULNERABILITIES DATABASE
Vulnerabilities Crowdsourced from WordPress security researchers and the amazing public databases of –
LTL Freight Quotes Worldwide Express Edition (SQL Injection) < 5.0.21
PROTECTED
Adifier System (Unauthenticated Arbitrary Password Reset) < 3.1.8
PROTECTED
GravityForms (Stored Cross-Site Scripting) < 2.9.2
PROTECTED
Multi Uploader for Gravity Forms (Unauthenticated Arbitrary File Upload)
PROTECTED
Quick Count (Unauthenticated PHP Object Injection)
PROTECTED
Background animation blocks (Unauthenticated Local File Inclusion)
PROTECTED
XLSXviewer (Arbitrary File Deletion)
PROTECTED
WP Load Gallery (Arbitrary File Upload)
PROTECTED
DD Roles (Privilege Escalation)
PROTECTED
Image Gallery Box by CRUDLab (Local File Inclusion)
PROTECTED
User Management (Privilege Escalation) < 1.2
PROTECTED
WR Price List Manager For Woocommerce (Arbitrary File Upload)
PROTECTED
Background Control <= 1.0.5 - Cross-Site Request Forgery to Arbitrary File Deletion
PROTECTED
WPBookit <= 1.6.4 - Unauthenticated Arbitrary User Password Change < 1.6.6
PROTECTED
Multiple Shipping And Billing Address For Woocommerce (Unauthenticated SQL Injection) < 1.3
PROTECTED
Private Messages for UserPro (Unauthenticated Local File Inclusion)
PROTECTED
ARPrice (Unauthenticated SQL Injection)
PROTECTED
ARPrice (PHP Object Injection)
PROTECTED
AutomatorWP (Reflected Cross-Site Scripting) < 5.1.0
PROTECTED
Super Backup & Clone (Arbitrary File Upload) < 2.4
PROTECTED
Crowdsourced Patches for Crowdsourced Vulnerabilities.
© 2026. All rights reserved.