WordPress Plugin Vulnerabilities

0-9 - A - B - C - D - E - F - G - H - I - J - K - L - M - N - O - P - Q - R - S - T - U - V - W - X - Y - Z
Name Added Title
social-networks-auto-poster... 2015-05-26 NextScripts: Social Networks Auto-Poster <= 3.4.17 - Stor...
social-networks-auto-poster... 2019-03-22 NextScripts <= 4.2.7 - Cross-Site Scripting (XSS)
social-pug 2016-12-11 Social Share Buttons - Social Pug <= 1.2.5 - Authenticate...
social-share-button 2015-11-24 Social Share Button <= 2.1 - Authenticated Stored Cross-S...
social-sharing-toolkit 2014-08-01 Social Sharing Toolkit 2.1.1 - Setting Manipulation CSRF
social-sharing-toolkit 2014-08-01 Social Sharing Toolkit 2.1.1 - Unspecified XSS
social-slider-2 2014-08-01 Social Slider <= 5.6.5 - social-slider-2/ajax.php rA Para...
social-warfare 2019-03-21 Social Warfare <= 3.5.2 - Unauthenticated Arbitrary Setti...
social-warfare 2019-04-24 Social Warfare <= 3.5.2 - Unauthenticated Remote Code Exe...
socialgrid 2014-08-01 SocialGrid 2.3 - inline-admin.js.php default_services Par...
sola-support-tickets 2016-02-14 Sola Support Ticket <= 3.12 - XSS & Configuration Change
solvemedia 2014-08-01 SolveMedia 1.1.0 - plugins.php API Key Manipulation CSRF
solvemedia 2014-08-01 SolveMedia 1.1.0 - solvemedia.admin.inc Admin Options Pa...
soundcloud-is-gold 2014-08-01 Soundcloud Is Gold <= 2.1 - Cross-Site Scripting (XSS)
soundcloud-is-gold 2015-11-24 SoundCloud Is Gold <= 2.3.1 - Unauthenticated Reflected C...
soundy-background-music 2016-03-13 Soundy Background Music <= 3.1 - Reflected Cross-Site Scr...
sourceafrica 2015-09-02 sourceAFRICA <= 0.1.3 - Unauthenticated Cross-Site Script...
sp-client-document-manager 2014-12-02 SP Client Document Manager <= 2.4.1 - Multiple SQL Injection
sp-client-document-manager 2015-04-09 SP Project & Document Manager <= 2.5.3 - Blind SQL Injection
sp-client-document-manager 2015-04-21 SP Project Document Manager <= 2.5.3 - Blind SQL Injection
sp-client-document-manager 2016-03-07 SP Projects & Document Manager <= 2.5.9.5 - Multiple Vuln...
spam-byebye 2019-01-13 spam-byebye <= 2.2.1 - Cross-Site Scripting (XSS)
spam-free-wordpress 2014-08-01 Spam Free Plugin 1.9.2 - Multiple Script Direct Request P...
spam-free-wordpress 2014-08-01 Spam Free Plugin 1.9.2 - IP Blocklist Restriction Bypass
spamtask 2014-08-01 spamtask - ofc_upload_image.php Arbitrary File Upload
spicy-blogroll 2014-08-01 Spicy Blogroll - spicy-blogroll-ajax.php Remote File Incl...
spider-calendar 2014-08-01 Spider Calendar 1.3.0 - Multiple Vulnerabilities
spider-calendar 2014-08-01 Spider Calendar 1.1.0 - "many_sp_calendar" Cross-Site Scr...
spider-calendar 2014-08-01 Spider Calendar 1.0.1 - front_end/spidercalendarbig.php d...
spider-calendar 2014-08-01 Spider Calendar 1.0.1 - spidercalendarbig_seemore.php cal...
spider-catalog 2014-08-01 Spider Catalog - Cross-Site Scripting & SQL Injection Vul...
spider-event-calendar 2015-02-24 Calendar by WD <= 1.4.9 - SQL Injection
spider-event-calendar 2017-04-10 Calendar by WD <= 1.5.51 - Authenticated Blind SQL Injec...
spider-event-calendar 2017-05-05 Calendar by WD <= 1.5.51 - Authenticated SQL injection
spider-facebook 2014-10-08 Spider Facebook <= 1.0.8 - Authenticated SQL Injection
spider-facebook 2015-02-11 Facebook (spider-facebook) <= 1.0.10 - Cross-Site Scripti...
spider-facebook 2017-05-05 WordPress Facebook <= 1.0.13 - Authenticated SQL Injection
spiffy 2014-08-01 Spiffy XSPF Player 0.1 - playlist.php playlist_id Paramet...
spiffy-calendar 2017-06-12 Spiffy Calendar <= 3.2.0 - Reflected Cross-Site Scripting...
flash-album-gallery 2014-08-01 SWFUpload - Cross-Site Scripting (XSS)
flash-album-gallery 2014-08-01 SWFUpload - Cross-Site Scripting (XSS)
springboard-video-quick-pub... 2014-08-01 Springboard Video Quick Publish 0.2.6 - videolist.php pag...
springboard-video-quick-pub... 2014-08-01 Springboard Video Quick Publish 0.2.6 - springboardvideo....
springboard-video-quick-pub... 2014-08-01 Springboard Video Quick Publish 0.2.6 - sb_search.php pag...
sql-shortcode 2017-09-20 SQL Shortcode <= 1.1 - Authenticated SQL Execution
srbtranslatin 2018-01-12 SrbTransLatin <= 1.46 - Stored XSS & CSRF
ss-downloads 2014-08-01 SS Downloads 1.4.4.1 - services/getfile.php file Paramet...
ss-downloads 2014-08-01 SS Downloads 1.4.4.1 - ss-downloads.php Multiple Variabl...
ss-downloads 2014-08-01 SS Downloads 1.4.4.1 - templates/download.php Multiple P...
ss-downloads 2014-08-01 SS Downloads 1.4.4.1 - templates/register.php Multiple P...
ss-downloads 2014-08-01 SS Downloads 1.4.4.1 - templates/emailsent.php Multiple ...
ss-downloads 2014-08-01 SS Downloads 1.4.4.1 - templates/emailform.php Multiple ...
ss-downloads 2014-08-01 SS Downloads 1.4.4.1 - templates/email&nameform.php Mult...
ssquiz 2014-08-01 SS Quiz - Multiple Unspecified Vulnerabilities