CROWD-SOURCED
VULNERABILITIES DATABASE
Vulnerabilities Crowdsourced from WordPress security researchers and the amazing public databases of –
Jupiter X Core (Unauthenticated PHP Object Injection via PHAR) < 4.8.12
PROTECTED
Service Finder Bookings (Unauthenticated Privilege Escalation) < 6.0
PROTECTED
Flynax Bridge (Unauthenticated Privilege Escalation via Password Update)
PROTECTED
Database Toolset (Unauthenticated Arbitrary File Deletion)
PROTECTED
My Tickets - Accessible Event Ticketing (Privilege Escalation) < 2.0.17
PROTECTED
Verification SMS with TargetSMS (Unauthenticated Limited Remote Code Execution)
PROTECTED
Xelion Webchat (Arbitrary Options Update)
PROTECTED
Greenshift (Arbitrary File Upload) < 11.4.6
PROTECTED
UrbanGo Membership (Unauthenticated Privilege Escalation) < 1.1
PROTECTED
AIHub (Unauthenticated Arbitrary File Upload) < 1.3.8
PROTECTED
WP Headers And Footers (Cross-Site Request Forgery to Arbitrary Options Update) < 3.1.2
PROTECTED
JobWP - Job Board, Job Listing, Career Page and Recruitment Plugin (Unauthenticated SQL Injection) < 2.4.0
PROTECTED
Debug log Manager (Cross-Site Scripting) < 2.3.5
PROTECTED
CLEVER - HTML5 Radio Player With History - Shoutcast and Icecast (Unauthenticated Arbitrary File Read) < 2.5
PROTECTED
I Draw (Arbitrary File Upload)
PROTECTED
WPAMS (Arbitrary File Upload)
PROTECTED
WPAMS (Privilege Escalation)
PROTECTED
Avatar (Arbitrary File Deletion)
PROTECTED
Ultimate Member User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin (Unauthenticated Blind SQL Injection) < 2.10.2
PROTECTED
WPC Admin Columns (Privilege Escalation) < 2.1.1
PROTECTED
Crowdsourced Patches for Crowdsourced Vulnerabilities.
© 2025. All rights reserved.