WordPress Plugin Vulnerabilities

0-9 - A - B - C - D - E - F - G - H - I - J - K - L - M - N - O - P - Q - R - S - T - U - V - W - X - Y - Z
Name Published Title
contact-form-7-multi-step-m... 2019-02-26 Freemius Library <= 2.2.3 - Authenticated Option Update
content-aware-sidebars 2019-02-26 Freemius Library <= 2.2.3 - Authenticated Option Update
websimon-tables 2015-11-24 Websimon Tables <= 1.3.4 - Authenticated Reflected Cross-...
website-contact-form-with-f... 2016-09-19 N-Media Website Contact Form with File Upload - Arbitrary...
website-contact-form-with-f... 2016-09-19 N-Media Website Contact Form with File Upload - Arbitrary...
website-contact-form-with-f... 2016-09-19 N-Media Website Contact Form with File Upload - Arbitrary...
website-faq 2014-08-01 Website FAQ 1.0 - wp-admin/admin-ajax.php category Parame...
wechat-broadcast 2018-09-19 Wechat Broadcast <= 1.2.0 - Local/Remote File Inclusion
welcart 2012-12-14 Welcart < 1.2.2 - XSS & CSRF
wf-cookie-consent 2018-05-01 WF Cookie Consent <= 1.1.3 - Authenticated Persistent Cro...
white-label-cms 2015-04-29 White Label CMS <= 1.5.2 - Stored XSS
white-label-cms 2015-04-29 White Label CMS <= 1.5.2 - Stored XSS
whizz 2017-03-22 WHIZZ <= 1.1 - Cross-Site Request Forgery (CSRF)
whizz 2017-03-22 WHIZZ <= 1.1 - Cross-Site Request Forgery (CSRF)
whydowork-adsense 2014-12-29 WhyDoWork AdSense 1.2 - XSS & CSRF
widget-control-powered-by-e... 2014-08-01 Widget Control Powered By Everyblock 1.0.1 - wp-admin/adm...
widget-logic 2019-07-01 Widget Logic <= 5.10.2 - CSRF and Lack of Authorisation
widget-logic 2019-07-01 Widget Logic <= 5.10.2 - CSRF and Lack of Authorisation
widget-settings-importexport 2020-04-15 Widget Settings Importer/Exporter <= 1.5.3 - Authenticate...
wikipop 2014-06-12 Wikipop <= 2.0 - Cross-Site Scripting (XSS)
wise-chat 2019-01-25 Wise Chat <= 2.6.3 - Reverse Tabnabbing
wonderm00ns-simple-facebook... 2018-06-27 Open Graph for Facebook, Google+ and Twitter Card Tags <=...
wonderm00ns-simple-facebook... 2018-06-27 Open Graph for Facebook, Google+ and Twitter Card Tags <=...
wonderplugin-audio 2015-02-19 WonderPlugin Audio Player 2.0 Blind SQL Injection & XSS
woo-address-book 2019-08-23 WooCommerce Address Book < 1.6.0 - CSRF
woo-advance-search 2018-06-04 Advance Search for WooCommerce < 1.1 - Multiple XSS