Crowd-sourced Vulnerabilities Database

CROWD-SOURCED
VULNERABILITIES DATABASE

Vulnerabilities Crowdsourced from WordPress security researchers and the amazing public databases of –

iATS Online Forms (SQL Injection via order Parameter) < 1.3

28 Aug

PROTECTED

Slider Revolution (Arbitrary File Read) < 6.7.37

28 Aug

PROTECTED

Video Share VOD - Turnkey Video Site Builder Script (Cross-Site Request Forgery to Command Injection) < 2.7.7

27 Aug

PROTECTED

Xagio SEO (Sensitive Information Exposure via Unprotected Back-Up Files) < 7.1.0.6

27 Aug

PROTECTED

RingCentral Communications (Authentication Bypass) < 1.7.0

27 Aug

PROTECTED

Vibes (SQL Injection via `resource` Parameter) < 2.2.1

25 Aug

PROTECTED

Dokan Pro (Privilege Escalation) < 4.0.6

25 Aug

PROTECTED

Event List (Privilege Escalation) < 2.0.5

25 Aug

PROTECTED

Kipso (Unauthenticated Local File Inclusion) < 1.3.5

23 Aug

PROTECTED

Simpler Checkout (Authentication Bypass) < 1.1.10

22 Aug

PROTECTED

Wptobe-memberships (Arbitrary File Deletion)

22 Aug

PROTECTED

Event Manager, Events Calendar, Booking, Registrations and Tickets - Eventin (Server-Side Request Forgery) < 4.0.38

22 Aug

PROTECTED

Case Theme User (Authentication Bypass via Social Login) < 1.0.4

22 Aug

PROTECTED

Bravis User (Authentication Bypass to Account Takeover) < 1.0.1

22 Aug

PROTECTED

Inspiro (Cross-Site Request Forgery) < 2.1.3

20 Aug

PROTECTED

WP Webhooks (Unauthenticated Arbitrary File Copy) < 3.3.6

20 Aug

PROTECTED

Redirection for Contact Form 7 (Unauthenticated Arbitrary File Deletion) < 3.2.5

19 Aug

PROTECTED

Redirection for Contact Form 7 (Unauthenticated PHP Object Injection) < 3.2.5

19 Aug

PROTECTED

Real Spaces - WordPress Properties Directory Theme (Privilege Escalation) < 3.6

18 Aug

PROTECTED

Cloudflare Image Resizing (Remote Code Execution) < 1.5.7

18 Aug

PROTECTED

Previous 1 ... 3 4 5 6 7 ... 42 Next

CROWD-SOURCEDVULNERABILITIES DATABASE

CROWD-SOURCED
VULNERABILITIES DATABASE