WordPress Plugin Vulnerabilities

0-9 - A - B - C - D - E - F - G - H - I - J - K - L - M - N - O - P - Q - R - S - T - U - V - W - X - Y - Z
Name Added Title
i-dump-iphone-to-wordpress-... 2015-04-09 Windows Desktop And iPhone Photo Uploader <= 1.8 - File U...
i-recommend-this 2017-08-16 I Recommend This <= v3.7.7 - Authenticated SQL Injection
ibs-mappro 2015-07-11 IBS Mappro <= 0.6 - Directory Traversal
icegram 2016-07-20 Icegram <= 1.9.18 - Cross-Site Request Forgery (CSRF)
iframe 2015-08-11 iframe <= 3.0 - Unauthenticated Reflected Cross-Site Scri...
iframe 2015-08-11 iframe <= 3.0 - Authenticated Stored Cross-Site Scripting...
iframe-admin-pages 2014-08-01 IFrame Admin Pages <= 0.1 - Cross Site Scripting
ignitiondeck 2014-08-01 IgnitionDeck 1.1 - Purchase Form Unspecified XSS
image-export 2015-07-14 Image Export <= 1.1.0 - Directory Traversal
image-gallery-with-slideshow 2014-08-01 image-gallery-with-slideshow <= 1.5 - Arbitrary File Uplo...
image-metadata-cruncher 2015-02-17 Image Metadata Cruncher - Multiple Cross-Site Scripting (...
image-slider-widget 2015-05-14 Multiple Plugins - jQuery prettyPhoto DOM Cross-Site Scri...
image-slider-widget 2017-01-03 Slider <= 1.1.89 - Authenticated Arbitrary File Deletion
image-slider-with-description 2014-08-01 Image slider with description - Unspecified
ImageManager 2014-08-01 Image Manager - Shell Upload
images-lazyload-and-slideshow 2015-05-14 Multiple Plugins - jQuery prettyPhoto DOM Cross-Site Scri...
imdb-widget 2016-03-30 IMDb Profile Widget <= 1.0.8 - Local File Inclusion (LFI)
import-woocommerce 2016-02-24 Import Woocommerce <= 1.0.1 - Reflected Cross-Site Script...
improved-user-search-in-bac... 2014-09-19 Improved User Search in Backend < 1.2.6 CSRF & XSS
inazo-advanced-ads-management 2016-09-16 Advanced ads Management <= 1.3 - Authenticated Stored Cro...
inboundio-marketing 2015-03-24 InBoundio Marketing Plugin <= 2.0.3 - Shell Upload
incoming-links 2015-05-31 Incoming Links <= 0.9.9b - referrers.php XSS
indeed-affiliate-pro 2017-08-02 Ultimate Affiliate Pro WordPress Plugin <= v3.6 - Authent...
indexisto 2016-04-15 Indexisto WordPress Site Search <= 1.0.5 - Unauthenticate...
indianic-testimonial 2014-08-01 IndiaNIC Testimonial 2.2 - Setting Manipulation CSRF
indianic-testimonial 2014-08-01 IndiaNIC Testimonial 2.2 - testimonial.php custom_query P...
indianic-testimonial 2014-08-01 IndiaNIC Testimonial 2.2 - iNIC_testimonial_save Action M...
indieweb-post-kinds 2015-05-13 Indieweb Post Kinds <= 1.3.1 - DOM Cross-Site Scripting (...
infusion4wp 2014-08-01 iMember360is 3.9.001 - XSS / Disclosure / Code Execution
infusionsoft 2014-08-01 Infusionsoft Gravity Forms Add-on 1.5.6 - Unspecified XSS
infusionsoft 2014-10-06 Infusionsoft Gravity Forms 1.5.3 - 1.5.10 Arbitrary File ...
infusionsoft 2016-04-13 Infusionsoft Gravity Forms Add-on <= 1.5.11 - Unauthentic...
insert-html-snippet 2016-11-29 Insert Html Snippet <= 1.2 - Cross-Site Request Forgery (...
instagram-feed 2016-11-21 Instagram Feed <= 1.4.6.2 - Authenticated Cross-Site Scri...
instalinker 2016-02-07 InstaLinker <= 1.1.1 - Reflected Cross-Site Scripting (XSS)
instasqueeze 2014-11-27 Sexy Squeeze Pages - Cross Site Scripting (XSS)