CROWD-SOURCED
VULNERABILITIES DATABASE
Vulnerabilities Crowdsourced from WordPress security researchers and the amazing public databases of –
GamiPress (Unauthenticated Arbitrary Shortcode Execution) < 7.2.2
PROTECTED
GamiPress (Unauthenticated Arbitrary Shortcode Execution) < 7.2.2
PROTECTED
AdForest (Authentication Bypass) < 5.1.9
PROTECTED
Easy Real Estate (Privilege Escalation)
PROTECTED
RealHomes (Privilege Escalation)
PROTECTED
Small Package Quotes - Unishippers Edition (Unauthenticated SQL Injection) < 2.4.9
PROTECTED
LTL Freight Quotes Worldwide Express Edition (SQL Injection) < 5.0.21
PROTECTED
Adifier System (Unauthenticated Arbitrary Password Reset) < 3.1.8
PROTECTED
GravityForms (Stored Cross-Site Scripting) < 2.9.2
PROTECTED
Multi Uploader for Gravity Forms (Unauthenticated Arbitrary File Upload)
PROTECTED
Quick Count (Unauthenticated PHP Object Injection)
PROTECTED
Background animation blocks (Unauthenticated Local File Inclusion)
PROTECTED
XLSXviewer (Arbitrary File Deletion)
PROTECTED
WP Load Gallery (Arbitrary File Upload)
PROTECTED
DD Roles (Privilege Escalation)
PROTECTED
Image Gallery Box by CRUDLab (Local File Inclusion)
PROTECTED
User Management (Privilege Escalation) < 1.2
PROTECTED
WR Price List Manager For Woocommerce (Arbitrary File Upload)
PROTECTED
Background Control <= 1.0.5 - Cross-Site Request Forgery to Arbitrary File Deletion
PROTECTED
WPBookit <= 1.6.4 - Unauthenticated Arbitrary User Password Change < 1.6.6
PROTECTED
Crowdsourced Patches for Crowdsourced Vulnerabilities.
© 2026. All rights reserved.