CROWD-SOURCED
VULNERABILITIES DATABASE
Vulnerabilities Crowdsourced from WordPress security researchers and the amazing public databases of –
Sunshine Photo Cart (Unauthenticated PHP Object Injection) < 3.4.11
PROTECTED
So-Called Air Quotes (Unauthenticated Arbitrary Shortcode Execution)
PROTECTED
Inline Image Upload for BBPress (Authenticated Arbitrary File Upload) < 1.1.20
PROTECTED
SoJ Soundslides (Authenticated Arbitrary File Upload)
PROTECTED
MDJM Event Management (Authenticated PHP Object Injection) < 1.7.5.3
PROTECTED
Pop-Up Chop Chop (Authenticated Local File Inclusion) kuppu
PROTECTED
CM Download Manager (Unauthenticated Arbitrary File Deletion) < 3.0.0
PROTECTED
JS Help Desk (Unauthenticated Arbitrary File Deletion) < 2.9.3
PROTECTED
Rapyd Payment Extension for WooCommerce (Unauthenticated PHP Object Injection)
PROTECTED
Accounting for WooCommerce (Unauthenticated Local File Inclusion) < 1.6.9
PROTECTED
Essential Real Estate (Unauthenticated Local File Inclusion) < 5.2.1
PROTECTED
WP Travel Engine (Unauthenticated Local File Inclusion) < 6.3.6
PROTECTED
postMash Custom - custom post order (Unauthenticated SQL Injection)
PROTECTED
User Registration & Membership (Privilege Escalation) < 4.1.2
PROTECTED
Docpro (Unauthenticated Local File Inclusion)
PROTECTED
Instant Appointment (Unauthenticated Arbitrary File Upload)
PROTECTED
Age Gate (Unauthenticated Local File Inclusion) < 3.5.4
PROTECTED
CozyStay (Arbitrary Action Execution) < 1.7.1
PROTECTED
Improve My City (Stored Cross-Site Scripting)
PROTECTED
FoodBakery Delivery Restaurant Directory WordPress Theme (Missing Authorization) < 4.8
PROTECTED
Crowdsourced Patches for Crowdsourced Vulnerabilities.
© 2025. All rights reserved.