WordPress Plugin Vulnerabilities

0-9 - A - B - C - D - E - F - G - H - I - J - K - L - M - N - O - P - Q - R - S - T - U - V - W - X - Y - Z
Name Added Title
a-forms 2014-08-01 A Forms 1.4.0 - a-forms.php a_form_tracking_page Function...
a-forms 2014-08-01 A Forms 1.4.0 - Form Submission CSRF
a-forms 2014-08-01 A Forms 1.4.0 - a-forms.php a_form_shortcode Function Mul...
a-forms 2014-08-01 A Forms 1.4.0 - a-forms.php aform_css_file_selector() Fun...
a-forms 2014-08-01 A Forms 1.4.0 - a-forms.php add_field_to_section Function...
a-forms 2014-08-01 A Forms 1.4.0 - a-forms.php a_form_initial_page Function ...
a-forms 2014-08-01 A Forms 1.4.0 - a-forms.php a_form_page Function Multiple...
a-forms 2014-08-01 A Forms 1.4.0 - a-forms.php a_form_section_page Function...
a-forms 2014-08-01 A Forms 1.4.0 - a-forms.php a_form_tracking_page Function...
a-gallery 2014-08-01 A Gallery 0.9 - Shell Upload
a-to-z-category-listing 2014-08-01 A to Z Category Listing <= 1.3 - SQL Injection
ab-categories-search-widget 2014-08-01 AB Categories Search Widget 0.1 - s Parameter Reflected XSS
ab-google-map-travel 2015-03-23 AB Google Map Travel (AB-MAP) <= 3.4 - CSRF/Stored XSS
abc-test 2014-08-01 ABC Test - "id" Cross-Site Scripting
abtest 2014-08-01 ABtest - Directory Traversal
abtest 2016-03-23 ABtest - File Inclusion
accept-signups 2014-08-01 Accept Signups 0.1 - XSS
accesspress-social-icons 2017-04-20 AccessPress Social Icons <= 1.6.6 - Authenticated SQL Inj...
accordion 2014-08-01 accordion - Arbitrary File Upload
accurate-form-data-real-tim... 2015-08-05 WP Accurate Form Data <= 1.2 - Cross-Site Scripting (XSS)...
acobot 2015-02-10 Acobot Live Chat & Contact Form <= 2.0 CSRF/XSS
activehelper-livehelp 2014-08-01 ActiveHelper LiveHelp Server 3.2.2 - server/import/status...
activehelper-livehelp 2014-08-01 ActiveHelper LiveHelp Server 3.2.2 - server/import/tracke...
activehelper-livehelp 2014-08-01 ActiveHelper LiveHelp Server 3.2.2 - server/import/javasc...
activehelper-livehelp 2014-08-01 ActiveHelper LiveHelp Server 3.2.2 - server/frames.php DE...
activehelper-livehelp 2014-09-20 ActiveHelper LiveHelp Server 3.1.0 - server/offline.php M...
acumbamail-signup-forms 2014-08-01 Acumbamail 1.0.4 - acumbamail.class.php callAPI() Functi...
acurax-social-media-widget 2015-11-24 Social Media Widget by Acurax <= 2.2 - Authenticated Stor...
ad-buttons 2015-05-08 Ad Buttons <= 2.3.1 - CSRF & XSS
ad-inserter 2015-05-08 Ad Inserter 1.5.2 - CSRF & XSS
ad-inserter 2015-11-24 Ad Inserter <= 1.5.5 - Authenticated Cross-Site Scripting...
ad-minister 2014-08-01 Ad-minister 0.6 - Unspecified Cross-Site Scripting (XSS)
ad-widget 2017-04-07 WordPress Ad Widget <= 2.11.0 - Authenticated Local File ...
add-from-server 2016-08-12 Add From Server <= 3.3.1 - Cross-Site Request Forgery (CSRF)
add-link-to-facebook 2015-04-22 Add Link To Facebook <= 1.215 - Cross Site Scripting
add-link-to-facebook 2015-11-22 Add Link to Facebook <= 2.2.7 - Authenticated Cross-Site ...
addblockblocker 2016-08-12 Adblock Blocker 0.0.1 - Arbitrary File Upload
addthis 2015-06-10 Smart Website Tools by AddThis 4.0.6-5.0.2 - Stored XSS
addthis 2015-11-22 AddThis Sharing Buttons <= 5.0.12 - Authenticated Cross-S...
adif-log-search-widget 2014-08-01 ADIF Log Search Widget - Cross-Site Scripting (XSS)
admin-custom-login 2017-03-03 Admin Custom Login - Authenticated Stored Cross-Site Scri...
admin-font-editor 2016-04-13 Admin Font Editor <= 1.8 - Unauthenticated Reflected Cros...
admin-management-xtended 2015-12-16 Admin Management Xtended <= 2.4.0 - Privilege Escalation
admin-pack-by-site-caseiro 2015-08-05 Admin Pack by SITE CASEIRO <= 1.1 - Authenticated Stored ...
adminimize 2014-08-01 adminimize 1.7.21 - 'page' Parameter Cross Site Scripting
adminonline 2014-08-01 AdminOnline - download.php file Parameter Remote Path Tra...