CROWD-SOURCED
VULNERABILITIES DATABASE
Vulnerabilities Crowdsourced from WordPress security researchers and the amazing public databases of –
MDTF - Meta Data and Taxonomies Filter (Arbitrary Shortcode Execution) < 1.3.3.4
PROTECTED
Test Rule - Postman test (duplicate post plugin)
PROTECTED
Backuply (SQL Injection) < 1.3.5
PROTECTED
Login with phone number (Privilege Escalation) < 1.7.50
PROTECTED
PropertyHive (Cross-Site Request Forgery) < 2.0.20
PROTECTED
Share This Image (Open Redirect via link Parameter) < 2.04
PROTECTED
FOX - Currency Switcher Professional for WooCommerce (Arbitrary Shortcode Execution) < 1.4.2.2
PROTECTED
Post Form (Privilege Escalation) < 2.8.12
PROTECTED
Stream (Arbitrary Options Update) < 4.0.2
PROTECTED
MStore API - Create Native Android & iOS Apps On The Cloud (Unauthorized User Registration) < 4.15.4
PROTECTED
WP Editor (PHAR Deserialization) < 1.2.9.1
PROTECTED
LearnPress (SQL Injection) < 4.2.7.1
PROTECTED
Video carousel slider with lightbox (SQL Injection) < 1.0.7
PROTECTED
Testing - Akismet plugin shortcode block rule
PROTECTED
DefendWP Kuppu Testing plugin
PROTECTED
Metform Elementor Contact Form Builder - Double Extension attack < 3.3.0
PROTECTED
Funnelforms Free (Arbitrary File Upload) < 3.7.4.1
PROTECTED
Newsletters (Authenticated Privilege Escalation) < 4.9.9.3
PROTECTED
WordPress File Manager - Path Traversal < 7.2.2
PROTECTED
Salon booking system - Missing Authorization < 10.0
PROTECTED
Crowdsourced Patches for Crowdsourced Vulnerabilities.
© 2026. All rights reserved.