WordPress Plugin Vulnerabilities

0-9 - A - B - C - D - E - F - G - H - I - J - K - L - M - N - O - P - Q - R - S - T - U - V - W - X - Y - Z
Name Added Title
landing-pages 2014-08-01 WordPress Landing Pages <= 1.2.1 - module.utils.php post ...
landing-pages 2014-08-01 WordPress Landing Pages <= 1.2.1 - module.redirect-ab-tes...
landing-pages 2015-05-26 WordPress Landing Pages <= 1.8.4 - XSS & SQL Injection
landing-pages 2015-06-25 WordPress Landing Pages <= 1.8.7 - Unspecified Cross-Site...
landing-pages 2015-09-30 WordPress Landing Pages 1.8.8-1.9.0 - Unauthenticated Rem...
landing-pages 2016-08-04 WordPress Landing Pages <= 2.2.4 - Reflected Cross-Site ...
lastfm-rotation 2014-09-19 Last.fm Rotation 1.0 - lastfm-proxy.php snode Parameter R...
LayerSlider 2014-08-01 LayerSlider 4.6.1 - Style Editing CSRF
LayerSlider 2014-08-01 LayerSlider 4.6.1 - Remote Path Traversal File Access
LayerSlider 2017-05-17 LayerSlider <= 6.2.0 - CSRF / Authenticated Stored XSS & ...
lazy-load 2016-07-20 Lazy Load <= 0.6 - Cross-Site Scripting (XSS)
lazy-seo 2014-08-01 Lazy SEO 1.1.9 - lazyseo.php File Upload Arbitrary Code E...
lazyest-gallery 2014-08-01 Lazyest Gallery <= 1.1.20 - EXIF Script Insertion
lazyest-gallery 2014-08-01 Lazyest Gallery 0.10.4.3 - Multiple File/Directory Insecu...
lb-mixed-slideshow 2014-08-01 LB Mixed Slideshow 1.0 - Arbitrary File Upload
lb-tube-video 2015-05-14 Multiple Plugins - jQuery prettyPhoto DOM Cross-Site Scri...
lbg_zoominoutslider 2014-08-01 LBG Zoominoutslider - add_banner.php name Parameter Store...
lbg_zoominoutslider 2014-08-01 LBG Zoominoutslider - settings_form.php Multiple Paramete...
lbg_zoominoutslider 2014-08-01 LBG Zoominoutslider - add_playlist_record.php Multiple Pa...
lbg_zoominoutslider 2014-08-01 LBG Zoominoutslider - add_banner.php Unspecified XSS
lbg_zoominoutslider 2014-08-01 LBG Zoominoutslider - Multiple Script Direct Request Path...
Lead-Octopus-Power 2014-09-27 Lead-Octopus-Power Plugin - SQL Injection
leads 2015-03-31 WordPress Leads 1.6.1-1.6.2 - Stored XSS
leaflet 2014-08-01 Leaflet <= 0.0.1 - Cross Site Scripting
leaflet-maps-marker 2014-08-01 Leaflet Maps Marker 3.5.2 - Two SQL Injection Vulnerabili...
leaflet-maps-marker-pro 2014-08-01 Leaflet Maps Marker Pro - SQLI, XSS, Shell Upload, file d...
leaguemanager 2014-08-01 LeagueManager <= 3.7 - wp-admin/admin.php Multiple Parame...
leaguemanager 2014-08-01 LeagueManager 3.8 - SQL Injection
leaguemanager 2015-06-02 LeagueManager <= 3.9.11 - Unauthenticated SQL Injection
leenkme 2016-04-17 leenk.me <= 2.5.0 - XSS & CSRF
let-them-unsubscribe 2014-08-01 Let Them Unsubscribe 1.0 - let-them-unsubscribe.php Multi...
levelfourstorefront 2014-08-01 Shopping Cart 8.1.14 - Shell Upload, SQL Injection
levelfourstorefront 2014-08-01 Level Four Storefront - levelfourstorefront/getsortmanufa...
lightbox 2016-11-15 Lightbox <= 1.6.7 - Cross-Site Scripting (XSS)
lightbox-photo-gallery 2014-12-14 Lightbox Photo Gallery 1.0 - CSRF/XSS
lim4wp 2014-08-01 Lim4wp 1.1.1 - Arbitrary File Upload
limit-attempts 2017-04-13 Multiple BestWebSoft Plugins - Authenticated Reflected GE...
link-library 2014-08-01 Link Library 5.1.6 - link-library-ajax.php Multiple Param...
link-library 2014-08-01 Link Library 5.0.8 - wp-content/plugins/link-library/trac...
link-library 2014-08-01 Link Library 5.0.8 - wp-content/plugins/link-library/trac...
link-library 2014-08-01 Link Library <= 5.2.1 - SQL Injection
link-library 2016-08-16 Link Library <= 5.9.12.29 - Authenticated Reflected Cross...
lisl-last-image-slider 2014-08-01 LISL Last Image Slider 1.0 - Shell Upload
listmanager 2014-09-27 Lyris List Manager 8.95a - Cross-Site Scripting (XSS)
live-comment-preview 2014-08-01 Live Comment Preview 2.0.2 - Comment Field Preview XSS
liveforms 2014-12-19 Live Forms <= 1.2.0 - Unauthenticated Stored Cross-Site S...
liveforms 2015-03-18 Live Forms - Visual Form Builder 3.0.1 - Blind SQL Injection
liveoptim 2014-08-01 LiveOptim 1.1.3 - Configuration Setting Manipulation CSRF
livesig 2014-08-01 Livesig 0.4 - Remote File Inclusion
livesupporti 2014-11-12 LiveSupporti 1.0 - Stored Cross-Site Scripting (XSS)