WordPress Plugin Vulnerabilities

0-9 - A - B - C - D - E - F - G - H - I - J - K - L - M - N - O - P - Q - R - S - T - U - V - W - X - Y - Z
Name Added Title
database-sync 2015-08-04 Database Sync <= 0.4 - Reflected Cross-Site Scripting (XSS)
db-backup 2014-12-16 DB Backup <= 4.5 - Path Traversal File Access
deans-fckeditor-with-pwwang... 2014-08-01 FCKeditor Deans With Pwwangs Code <= 1.0.0 - Remote Shell...
defa-online-image-protector 2016-04-15 defa-online-image-protector <= 3.3 - Unauthenticated Refl...
delete-all-comments 2016-12-11 Delete All Comments 2.0 - Unauthenticated Arbitrary File ...
delightful-downloads 2014-08-01 Delightful Downloads 1.3.1.1 - meta-boxes.php dedo_meta_b...
delightful-downloads 2014-08-01 Delightful Downloads 1.3.1.1 - includes/functions.php Use...
design-approval-system 2014-08-01 Design Approval System 3.6 - XSS
devformatter 2014-08-01 Developer Formatter 2013.0.1.40 - devformatter.php Multip...
devformatter 2014-08-01 Developer Formatter 2013.0.1.40 - devformatter.php Multip...
dewplayer-flash-mp3-player 2014-08-01 Dewplayer - dewplayer-vinyl.swf xml Parameter XML File H&...
dewplayer-flash-mp3-player 2014-08-01 Dewplayer - dewplayer-vinyl-en.swf xml Parameter XML File...
dewplayer-flash-mp3-player 2014-08-01 Dewplayer <= 1.2 - dewplayer.php Direct Request Path Disc...
dexs-pm-system 2014-08-01 Dexs PM System 1.0.1 - Private Message subject Parameter ...
dhtmlxspreadsheet 2014-08-01 Spreadsheet - /dhtmlxspreadsheet/codebase/spreadsheet.php...
digg-digg 2014-08-01 Digg Digg 5.3.4 - Setting Manipulation CSRF
directdownload 2017-01-18 Direct Download for WooCommerce <= 1.15 - Unauthenticated...
disable-comments 2014-08-01 Disable Comments 1.0.3 - disable_comments_settings.php Co...
disclosure-policy-plugin 2014-08-01 Disclosure Policy 1.0 - Remote File Inclusion
display-widgets 2015-11-22 Display Widgets <= 2.03 - Authenticated Cross-Site Script...
disqus-comment-system 2014-08-01 Disqus <= 2.75 - Remote Code Execution (RCE)
disqus-comment-system 2014-08-01 Disqus Comment System <= 2.68 - Reflected Cross-Site Scri...
disqus-comment-system 2014-08-01 Disqus Blog Comments <= 2.77 - Blind SQL Injection
disqus-comment-system 2014-09-17 Disqus <= 2.77 - Cross-Site Request Forgery (CSRF)
disqus-comment-system 2014-09-17 Disqus <= 2.75 - Cross-Site Scripting (XSS) & CSRF
divi-builder 2016-02-18 ElegantThemes - Privilege Escalation
dm-albums 2014-08-01 SWFUpload - Cross-Site Scripting (XSS)
dm-albums 2014-08-01 DM Albums - Multiple Remote File Disclosure
dmsguestbook 2014-08-01 dmsguestbook 1.7.0 - Multiple Remote Vulnerabilities
donate-button 2017-04-13 Multiple BestWebSoft Plugins - Authenticated Reflected GE...
double-opt-in-for-download 2015-11-28 Double Opt-In for Download <= 2.0.8 - SQL Injection
double-opt-in-for-download 2016-06-07 Double Opt-In for Download <= 2.0.9 - Authenticated SQL I...
download-manager 2014-08-01 Download Manager 2.5.8 - Download Package file Parameter ...
download-manager 2014-08-01 Download Manager <= 2.2.2 - admin.php cid Parameter XSS
download-manager 2014-12-03 Download Manager <= 2.7.4 - Code Execution / Remote File ...
download-manager 2015-03-08 Download Manager 2.7.2 - Privilege Escalation
download-manager 2015-07-16 WordPress Download Manager <= 2.7.94 - Authenticated Stor...
download-manager 2016-01-19 WordPress Download Manager <= 2.8.7 - Multiple Vulnerabil...
download-manager 2017-03-03 Download Manager <= 2.9.45 - Cross-Site Request Forgery (...
download-monitor 2015-03-09 Download Monitor <= 1.6.3 - Authenticated Directory Listing
download-monitor 2015-04-20 Download Monitor <= 1.7.0 - Cross-Site Scripting (XSS)
download-monitor 2017-05-11 Download Monitor <= 1.9.6 - Unauthenticated Downloading o...
download-shortcode 2014-08-01 Download Shortcode - "file" Arbitrary File Disclosure
download-zip-attachments 2015-06-28 Download Zip Attachments <= 1.0 - Arbitrary File Download
downloads-manager 2014-08-01 Download Manager 0.2 - Arbitrary File Upload Exploit
dp-maintenance-mode-lite 2015-05-14 Multiple Plugins - jQuery prettyPhoto DOM Cross-Site Scri...
dp-thumbnail 2014-08-01 DP Thumbnail 1.0 - Shell Upload
drag-drop-file-uploader 2014-08-01 drag & drop file upload 0.1 - Arbitrary File Upload