WordPress Plugin Vulnerabilities

0-9 - A - B - C - D - E - F - G - H - I - J - K - L - M - N - O - P - Q - R - S - T - U - V - W - X - Y - Z
Name Added Title
o2s-gallery 2014-08-01 o2s-gallery - Cross Site Scripting
oauth2-provider 2015-08-14 WP OAuth Server <= 3.1.4 - Insecure Pseudor&om Number Gen...
occasions 2014-08-01 Occasions 1.0.4 - Manipulation CSRF
occasions 2014-08-01 Occasions 1.0.4 - occasions/occasions.php occ_content1 Pa...
ocean-extra 2019-07-04 Ocean Extra <= 1.5.8 - Unauthenticated Settings change a...
ocim-mp3 2016-03-29 Ocim MP3 Plugin - Unauthenticated Reflected Cross-Site Sc...
odihost-newsletter-plugin 2014-08-01 OdiHost Newsletter <= 1.0 - SQL Injection
old-post-spinner 2014-08-01 OPS Old Post Spinner 2.2.1 - LFI
olevmedia-shortcodes 2015-11-24 Olevmedia Shortcodes <= 1.1.8 - Authenticated Reflected C...
olimometer 2016-11-22 Olimometer <= 2.56 - Unauthenticated SQL Injection
omni-secure-files 2014-08-01 Omni Secure Files 0.1.13 - Arbitrary File Upload
alpine-photo-tile-for-insta... 2015-05-14 Multiple Plugins - jQuery prettyPhoto DOM Cross-Site Scri...
one-click-ssl 2019-07-11 One Click SSL <= 1.4.6 - Multiple Issues
onelogin-saml-sso 2016-06-06 OneLogin SAML SSO <= 2.1.5 - Authentication Bypass
onelogin-saml-sso 2016-06-06 OneLogin SAML SSO <= 2.1.8 - Provisioned User Hardcoded P...
onelogin-saml-sso 2016-10-17 OneLogin SAML SSO <= 2.4.2 - Signature Wrapping
online-accessibility 2019-06-28 Online Accessibility <= 2.0.10 - CSRF and lack of Authori...
online-lesson-booking-system 2019-07-09 Online Lesson Booking <= 0.8.6 - CSRF & XSS
open-flash-chart-core-wordp... 2014-08-01 open-flash-chart-core - ofc_upload_image.php Arbitrary Fi...
openinviter-for-wordpress 2014-08-01 OpenInviter - Error Log Information Disclosure
optinfirex 2014-08-01 Optinfirex - lp/index.php id Parameter Reflected XSS
optinmonster 2016-03-22 OptinMonster <= 1.1.4.5 - Execution of Arbitrary Shortcodes
option-tree 2019-04-30 OptionTree <= 2.5.5 - Authenticated Cross-Site Scripting ...
oqey-gallery 2014-08-01 oQey Gallery <= 0.4.8 - SQL Injection
oqey-headers 2014-08-01 Oqey Headers <= 0.3 - SQL Injection
orbisius-child-theme-creator 2015-11-24 Child Theme Creator by Orbisius <= 1.2.6 - Arbitrary File...
order-import-export-for-woo... 2016-09-21 Order Export Import for WooCommerce 1.0.8 - Order Informa...
organizer 2014-08-01 Organizer 1.2.1 - Cross Site Scripting / Path Disclosure
ose-firewall 2014-08-01 Centrora Security 3.2.1 - Multiple Admin Actions CSRF
our-team-enhanced 2015-01-11 Our Team Showcase 1.2 - CSRF & XSS