WordPress Plugin Vulnerabilities

0-9 - A - B - C - D - E - F - G - H - I - J - K - L - M - N - O - P - Q - R - S - T - U - V - W - X - Y - Z
Name Added Title
directdownload 2017-01-18 Direct Download for WooCommerce <= 1.15 - Unauthenticated...
responsive-poll 2017-01-11 Responsive Poll 1.6.4,1.7.4 - Cross-Site Scripting (XSS) ...
post-indexer 2016-11-21 Post Indexer <= 3.0.6.1 - PHP Object Injection via MitM
post-indexer 2016-11-21 Post Indexer <= 3.0.6.1 - Authenticated SQL Injection
relevanssi-premium 2016-11-21 Relevanssi Premium <= 1.14.4 - SQL Injection & PHP Object...
404-redirection-manager 2017-01-14 404 Redirection Manager 1.0 - SQL Injection
BraftonWordpressPlugin 2016-09-07 brafton WordPress Plugin <=3.4.7 - Reflected XSS
inazo-advanced-ads-management 2016-09-16 Advanced ads Management <= 1.3 - Authenticated Stored Cro...
dwnldr 2016-07-19 Dwnldr 1.0 - Unauthenticated Stored Cross-Site Scripting ...
real3d-flipbook 2016-07-05 Real3D FlipBook - Multiple Vulnerabilities
woo-email-control 2016-07-19 Woo Email Control <= 1.01 - Reflected Cross-Site Scriptin...
membersonic-lite 2016-06-29 MemberSonic Lite <= 1.2 - Authentication Bypass
order-import-export-for-woo... 2016-09-21 Order Export Import for WooCommerce 1.0.8 - Order Informa...
ultimate-product-catalog 2016-06-20 Product Catalog <= 3.8.1 - Privilege Escalation
simple-personal-message 2016-12-18 Single Personal Message 1.0.3 – Authenticated SQL Injection
fluid-respnsive-slideshow 2016-05-23 Fluid Responsive Slideshow <= 2.2.6 - CSRF & XSS
Tevolution 2016-05-03 Tevolution <= 2.2.7 - Unrestricted File Upload
easy-social-share-buttons-f... 2016-04-25 Easy Social Share Buttons <= 3.2.5 - Cross-Site Scripting...
ocim-mp3 2016-03-29 Ocim MP3 Plugin - Unauthenticated Reflected Cross-Site Sc...
multi-meta-box 2016-04-12 WP Multiple Meta Box 1.0 - Authenticated Blind SQL Injection
bbs-e-franchise 2016-12-06 BBS e-Franchise 1.1.1 - Unauthenticated SQL Injection
woo-custom-checkout-field 2016-07-26 Woo Custom Checkout Field <= 1.3.4 - CSRF & Stored XSS
monarch 2016-02-18 ElegantThemes - Privilege Escalation
bloom 2016-02-18 ElegantThemes - Privilege Escalation
wp-ultimate-exporter 2016-03-03 WP Ultimate Exporter 1.0.0 - Reflected Cross-Site Scripti...
wp-ultimate-exporter 2016-03-13 WP Ultimate Exporter <= 1.1 - Unauthenticated SQL Injection
remote-upload 2016-06-14 Remote Upload <= 1.2.1 - Unrestricted File Upload
social-pug 2016-12-11 Social Share Buttons - Social Pug <= 1.2.5 - Authenticate...
import-woocommerce 2016-02-24 Import Woocommerce <= 1.0.1 - Reflected Cross-Site Script...
csv-import 2016-02-23 CSV Import 1.0 - Reflected Cross-Site Scripting (XSS)
sam-pro-free 2016-11-02 SAM Pro (Free Edition) <= 1.9.6.67 - Local File Inclusion...
analytics-counter 2016-12-11 Google Analytics Counter Tracker <= 3.4.0 - Unauthenticat...