CROWD-SOURCED
VULNERABILITIES DATABASE
Vulnerabilities Crowdsourced from WordPress security researchers and the amazing public databases of –
InstaWP Connect - 1-click WP Staging & Migration < 0.1.0.39
PROTECTED
WP Reset - Most Advanced WordPress Reset Tool < 2.03
PROTECTED
Dupl Page shortcode testing
PROTECTED
LifterLMS - SQL Injection < 7.6.3
PROTECTED
Blog2Social: Social Media Auto Post & Scheduler - SQL Injection < 7.4.2
PROTECTED
Download Manager - Cross-Site Scripting < 3.2.94
PROTECTED
Elementor Addon Elements < 1.13.4
PROTECTED
Smush Image Optimization < 3.16.5
PROTECTED
License Manager for WooCommerce
PROTECTED
Themify - Unauthenticated SQL Injection via conditions Parameter < 1.5.0
PROTECTED
Icegram Express - Unauthenticated SQL Injection < 5.7.24
PROTECTED
Online Booking & Scheduling Calendar for WordPress by vcita - Cross-Site Scripting < 4.4.3
PROTECTED
ConvertKit < 2.4.9.1
PROTECTED
Sparkle Demo Importer < 1.4.8
PROTECTED
WP Hotel Booking - Unauthenticated SQL Injection
PROTECTED
Quiz Maker - Unauthenticated SQL Injection < 6.5.8.4
PROTECTED
WPCafe - Online Food Ordering, Restaurant Menu, Delivery, and Reservations for WooCommerce < 2.2.26
PROTECTED
Cookie Consent for WP - Cookie Consent, Consent Log, Cookie Scanner, Script Blocker < 3.3.0
PROTECTED
Zita Elementor Site Library - Missing Authorization to Page Creation and Options Modification < 1.6.3
PROTECTED
Appointment Booking and Online Scheduling - Missing Authorization to Unauthenticated Stored Cross-Site Scripting < 4.4.3
PROTECTED
Crowdsourced Patches for Crowdsourced Vulnerabilities.
© 2026. All rights reserved.