WordPress Plugin Vulnerabilities

0-9 - A - B - C - D - E - F - G - H - I - J - K - L - M - N - O - P - Q - R - S - T - U - V - W - X - Y - Z
Name Added Title
navis-documentcloud 2015-08-26 Navis DocumentCloud 0.1 - Unauthenticated Reflected Cross...
nelio-ab-testing 2016-05-11 Nelio AB Testing <= 4.4.4 - Path Traversal
nelio-ab-testing 2016-12-21 Nelio AB Testing <= 4.5.8 - Server Side Request Forgery (...
network-publisher 2014-08-01 Network Publisher <= 5.0.1 - Cross Site Scripting
neuvoo-jobroll 2015-11-09 neuvoo-jobroll <= 2.0 - Unauthenticated Reflected Cross-S...
new-year-firework 2016-04-15 New Year Firework <= 1.1.9 - Unauthenticated Reflected Cr...
newsletter 2014-08-01 Newsletter <= 3.0.8 - SQL Injection
newsletter 2014-08-01 Newsletter <= 3.2.6 - Cross-Site Scripting (XSS)
newsletter 2015-03-30 Newsletter 3.7.0 - Open Redirect
newsletter-by-supsystic 2017-05-24 Newsletter by Supsystic - Authenticated Stored XSS & CSRF
newsletter-manager 2014-08-01 Newsletter Manager <= 1.0.2 - Cross Site Scripting
newsletter-manager 2014-08-01 Newsletter Manager 1.0.2 - Cross Site Scripting & Cross-S...
newsletters-lite 2017-06-01 Tribulant Newsletters <= 4.6.4.2 – Multiple Vulnerabilities
newstatpress 2015-05-26 NewStatPress 0.9.8 - XSS & SQL Injection
newstatpress 2015-06-30 NewStatPress <= 1.0.3 - Unauthenticated Stored Cross-Site...
newstatpress 2015-07-07 NewStatPress <= 1.0.4 - SQL Injection
newstatpress 2015-07-07 NewStatPress <= 1.0.4 - Reflected Cross-Site Scripting (XSS)
newstatpress 2017-03-02 NewStatPress <= 1.2.4 - Stored Cross-Site Scripting (XSS)
nex-forms-express-wp-form-b... 2015-04-21 NEX-Forms - Ultimate Form builder <= 3.0 - SQL Injection
nex-forms-express-wp-form-b... 2015-11-24 NEX-Forms <= 4.0 - Unauthenticated Blind SQL Injection
nextcellent-gallery-nextgen... 2014-08-01 NextCellent Gallery 1.9.13 - admin/manage-images.php Mult...
nextend-facebook-connect 2014-12-03 Nextend Facebook Connect <= 1.4.59 - Cross-Site Scripting...
nextend-facebook-connect 2015-06-24 Nextend Facebook Connect <= 1.5.4 - Reflected Cross-Site ...
nextend-facebook-connect 2016-03-15 Nextend Facebook Connect <= 1.5.7 - Cross-Site Request Fo...
nextend-twitter-connect 2015-06-24 Nextend Twitter Connect <= 1.5.1 - Reflected Cross-Site S...
nextgen_cu3er_gallery 2014-08-01 NextGen Cu3er Gallery - Information Disclosure
nextgen-gallery 2014-08-01 NextGEN Gallery <= 2.0.63 - Arbitrary File Upload
nextgen-gallery 2014-08-01 NextGEN Gallery 2.0.0 - Directory Traversal
nextgen-gallery 2014-08-01 NextGEN Gallery - swfupload.swf Cross-Site Scripting (XSS)
nextgen-gallery 2014-08-01 NextGEN Gallery 1.9.12 - Arbitrary File Upload
nextgen-gallery 2014-08-01 NextGEN Gallery 1.9.11 - Full Path Disclosure
nextgen-gallery 2014-08-01 NextGEN Gallery 1.9.5 - gallerypath Parameter Stored XSS
nextgen-gallery 2014-08-01 NextGEN Gallery <= 1.9.0 - Multiple Cross-Site Scripting ...
nextgen-gallery 2014-08-01 NextGEN Gallery <= 1.8.3 - XXS & CSRF
nextgen-gallery 2014-08-01 NextGEN Gallery <= 1.7.3 - xml/ajax.php Path Disclosure
nextgen-gallery 2014-08-01 NextGEN Gallery <= 1.5.1 - Cross-Site Scripting (XSS)
nextgen-gallery 2015-03-25 NextGEN Gallery <= 2.0.77 - CSRF & Arbitrary File Upload
nextgen-gallery 2015-08-28 NextGEN Gallery <= 2.1.7 - Authenticated Path Traversal
nextgen-gallery 2016-11-16 NextGEN Gallery <= 2.1.56 - Authenticated Local File Incl...
nextgen-gallery 2017-02-27 NextGEN Gallery <= 2.1.77 - Unauthenticated SQL Injection
nextgen-gallery-geo 2017-05-21 NextGEN Gallery geo <= 1.0 - Unauthenticated PHP Object I...
nextgen-smooth-gallery 2014-08-01 NextGEN Smooth Gallery - Blind SQL Injection
nextgen-smooth-gallery 2014-08-01 NextGen Smooth Gallery - XSS
ninja-forms 2014-11-24 Ninja Forms 2.8.6 - Reflected Cross-Site Scripting (XSS)
ninja-forms 2015-02-11 Ninja Forms <= 2.8.8 - Stored & Reflected XSS
ninja-forms 2015-03-09 Ninja Forms <= 2.8.9 - Unspecified Issue Affecting Admin ...
ninja-forms 2015-04-20 Ninja Forms <= 2.9.10 - Cross-Site Scripting (XSS)
ninja-forms 2015-07-05 Ninja Forms <= 2.9.18 - Cross-Site Scripting (XSS)
ninja-forms 2015-08-04 Ninja Forms <= 2.9.21 - Authenticated Reflected Cross-Sit...
ninja-forms 2015-10-05 Ninja Forms <= 2.9.27 - Malicious File Export
ninja-forms 2016-05-04 Ninja Forms 2.9.36 to 2.9.42 - Multiple Vulnerabilities
ninja-forms 2016-07-20 Ninja Forms <= 2.9.51 - Multiple Authenticated Cross-Site...
ninja-forms 2016-08-16 Ninja Forms <= 2.9.55.1 - Authenticated SQL Injection
nlinks 2017-11-23 InLinks 1.0 - Authenticated SQL Injection
nmedia-mailchimp-widget 2014-08-01 Nmedia MailChimp 3.1 - api_mailchimp/postToMailChimp.php ...
nmedia-user-file-uploader 2014-08-01 N-Media File Uploader < 2.0 Arbitrary File Upload
nmedia-user-file-uploader 2014-09-28 N-Media File Uploader < 3.4 Arbitrary File Upload
nmedia-user-file-uploader 2015-06-11 N-Media File Uploader <= 3.7 - Arbitrary File Upload
nmedia-user-file-uploader 2015-06-29 N-Media File Uploader <= 3.7 - Unauthenticated Arbitrary ...
nmedia-user-file-uploader 2016-09-27 Front end file upload and manager Plugin <= 3.9 - Arbitra...
nofollow-links 2016-08-03 Nofollow Links <= 1.0.10 - Cross-Site Scripting (XSS)
nokia-mapsplaces 2014-08-01 Nokia Maps & Places <= 1.6.6 - Reflected Cross-Site Scrip...
nospampti 2014-08-01 NOSpamPTI 2.1 - wp-comments-post.php comment_post_ID Para...
notices 2014-08-01 Notices Ticker 5.0 - Cross-Site Request Forgery
ns-utilities 2014-08-01 NS Utilities 1.0 - Unspecified Remote Issue