WordPress Plugin Vulnerabilities

0-9 - A - B - C - D - E - F - G - H - I - J - K - L - M - N - O - P - Q - R - S - T - U - V - W - X - Y - Z
Name Published Title
alpine-photo-tile-for-insta... 2017-03-01 Alpine PhotoTile - Authenticated Reflected Cross-Site Scr...
contact-bank 2016-08-01 Contact Bank <= 2.1.21 - Cross-Site Scripting (XSS)
dp-maintenance-mode-lite 2015-05-14 Multiple Plugins - jQuery prettyPhoto DOM Cross-Site Scri...
ehive-account-details 2015-05-14 Multiple Plugins - jQuery prettyPhoto DOM Cross-Site Scri...
ehive-object-details 2015-05-14 Multiple Plugins - jQuery prettyPhoto DOM Cross-Site Scri...
embedplus-for-wordpress 2015-05-14 Multiple Plugins - jQuery prettyPhoto DOM Cross-Site Scri...
fancyflickr 2015-05-14 Multiple Plugins - jQuery prettyPhoto DOM Cross-Site Scri...
foxyshop 2015-05-14 Multiple Plugins - jQuery prettyPhoto DOM Cross-Site Scri...
gallery-bank 2015-08-21 Gallery Bank <= 3.0.229 - Authenticated Blind SQL Injection
image-slider-widget 2016-12-23 Slider <= 1.1.89 - Authenticated Arbitrary File Deletion
images-lazyload-and-slideshow 2015-05-14 Multiple Plugins - jQuery prettyPhoto DOM Cross-Site Scri...
izeechat 2015-05-14 Multiple Plugins - jQuery prettyPhoto DOM Cross-Site Scri...
jcwp-youtube-channel-embed 2015-05-14 Multiple Plugins - jQuery prettyPhoto DOM Cross-Site Scri...
lb-tube-video 2015-05-14 Multiple Plugins - jQuery prettyPhoto DOM Cross-Site Scri...
matrix-image-gallery 2015-05-14 Multiple Plugins - jQuery prettyPhoto DOM Cross-Site Scri...
mklasens-photobox 2015-05-14 Multiple Plugins - jQuery prettyPhoto DOM Cross-Site Scri...
myblogu 2015-05-14 Multiple Plugins - jQuery prettyPhoto DOM Cross-Site Scri...
mytreasures 2015-05-14 Multiple Plugins - jQuery prettyPhoto DOM Cross-Site Scri...
onclick-show-popup 2015-05-14 Multiple Plugins - jQuery prettyPhoto DOM Cross-Site Scri...
random-image-gallery-with-p... 2015-05-14 Multiple Plugins - jQuery prettyPhoto DOM Cross-Site Scri...
reflex-gallery 2015-05-14 Multiple Plugins - jQuery prettyPhoto DOM Cross-Site Scri...
responsive-category-slider 2015-05-14 Multiple Plugins - jQuery prettyPhoto DOM Cross-Site Scri...
responsive-lightbox 2017-07-04 Responsive Lightbox by dFactory <= 1.7.1 - Authenticated ...
s2member-secure-file-browser 2015-05-14 Multiple Plugins - jQuery prettyPhoto DOM Cross-Site Scri...
tallykit 2015-05-14 Multiple Plugins - jQuery prettyPhoto DOM Cross-Site Scri...
ticket-manager 2015-05-14 Multiple Plugins - jQuery prettyPhoto DOM Cross-Site Scri...
webrotate-360-product-viewer 2015-05-14 Multiple Plugins - jQuery prettyPhoto DOM Cross-Site Scri...
wp-business-directory 2015-05-14 Multiple Plugins - jQuery prettyPhoto DOM Cross-Site Scri...
wp-easy-gallery 2016-01-26 WP Easy Gallery <= 4.1.4 - Reflected Cross-Site Scripting...
wp-instagram-bank 2015-05-14 Multiple Plugins - jQuery prettyPhoto DOM Cross-Site Scri...
wp-portfolio-gallery 2015-05-14 Multiple Plugins - jQuery prettyPhoto DOM Cross-Site Scri...
wp-video-lightbox 2015-05-14 Multiple Plugins - jQuery prettyPhoto DOM Cross-Site Scri...
wppizza 2015-05-14 Multiple Plugins - jQuery prettyPhoto DOM Cross-Site Scri...
apptha-banner 2014-08-01 SWFUpload - Cross-Site Scripting (XSS)
apptha-slider-gallery 2014-08-01 SWFUpload - Cross-Site Scripting (XSS)
blaze-slide-show-for-wordpress 2014-08-01 SWFUpload - Cross-Site Scripting (XSS)
dm-albums 2014-08-01 SWFUpload - Cross-Site Scripting (XSS)
flash-album-gallery 2014-10-30 Gr& Flagallery <= 4.24 - Full Path Disclosure
fluid-accessible-pager 2014-08-01 SWFUpload - Cross-Site Scripting (XSS)
fluid-accessible-rich-inlin... 2014-08-01 SWFUpload - Cross-Site Scripting (XSS)
fluid-accessible-ui-options 2014-08-01 SWFUpload - Cross-Site Scripting (XSS)
fluid-accessible-uploader 2014-08-01 SWFUpload - Cross-Site Scripting (XSS)
fresh-page 2014-08-01 SWFUpload - Cross-Site Scripting (XSS)
mac-dock-gallery 2014-08-01 Mac Photo Gallery - upload-file.php File Upload
pdw-file-browser 2014-08-01 SWFUpload - Cross-Site Scripting (XSS)
pica-photo-gallery 2014-08-01 Pica Photo Gallery - Arbitrary File Upload
power-zoomer 2014-08-01 SWFUpload - Cross-Site Scripting (XSS)
slide-show-pro 2014-08-01 SWFUpload - Cross-Site Scripting (XSS)
smart-slide-show 2014-08-01 SWFUpload - Cross-Site Scripting (XSS)
spotlightyour 2014-08-01 SWFUpload - Cross-Site Scripting (XSS)
sprapid 2014-08-01 SWFUpload - Cross-Site Scripting (XSS)
wp-3dbanner-rotator 2014-08-01 SWFUpload - Cross-Site Scripting (XSS)
wp-3dflick-slideshow 2014-08-01 SWFUpload - Cross-Site Scripting (XSS)
wp-bliss-gallery 2014-08-01 SWFUpload - Cross-Site Scripting (XSS)
wp-carouselslideshow 2014-08-01 SWFUpload - Cross-Site Scripting (XSS)
wp-dreamworkgallery 2014-08-01 SWFUpload - Cross-Site Scripting (XSS)
wp-ecommerce-cvs-importer 2014-08-01 SWFUpload - Cross-Site Scripting (XSS)
wp-extended 2014-08-01 SWFUpload - Cross-Site Scripting (XSS)
wp-flipslideshow 2014-08-01 SWFUpload - Cross-Site Scripting (XSS)
wp-homepage-slideshow 2014-08-01 SWFUpload - Cross-Site Scripting (XSS)
wp-image-news-slider 2014-08-01 Image News Slider - Arbitrary File Upload
wp-levoslideshow 2016-06-07 Wordpress Levo-Slideshow - Arbitrary File Upload
wp-matrix-gallery 2014-08-01 SWFUpload - Cross-Site Scripting (XSS)
wp-powerplaygallery 2015-07-01 Powerplay Gallery - Arbitrary File Upload & SQL Injection
wp-royal-gallery 2014-08-01 wp-royal-gallery - Arbitrary File Upload
wp-superb-slideshow 2014-08-01 SWFUpload - Cross-Site Scripting (XSS)
wp-vertical-gallery 2014-08-01 SWFUpload - Cross-Site Scripting (XSS)
wp-yasslideshow 2014-08-01 SWFUpload - Cross-Site Scripting (XSS)
wp-all-import-pro 2015-03-17 WP All Import Pro <= 4.1.1 - Multiple Vulnerabilities
wp-all-import-pro 2015-03-17 WP All Import Pro <= 4.1.1 - Multiple Vulnerabilities
wp-amasin-the-amazon-affili... 2014-08-01 wp-amasin-the-amazon-affiliate-shop 0.9.6 - reviews.php u...
wp-app-maker 2014-08-01 WP App Maker 1.0.16.4 - icons-launcher.php uid Parameter ...
wp-appointment-schedule-boo... 2016-10-03 WordPress Appointment Schedule Booking System - Authentic...
wp-attachment-export 2015-07-15 WP Attachment Export <= 0.2.3 - Unauthenticated File Down...
wp-audio-gallery-playlist 2014-08-01 wp audio gallery playlist <= 0.12 - SQL Injection
wp-auto-affiliate-links 2015-07-15 Auto Affiliate Links <= 4.9.9.4 - Authenticated Blind SQL...
wp-automatic 2014-08-01 Automatic 2.0.3 - csv.php q Parameter SQL Injection
wp-autosuggest 2018-12-11 WP AutoSuggest 0.24 - Unauthenticated SQL Injection
wp-autoyoutube 2014-08-01 WP-AutoYoutube <= 0.1 - Blind SQL Injection
wp-backitup 2014-07-16 WP Backitup <= 1.9.1 - Backup File Disclosure
wp-backup-plus 2015-05-15 WP Backup Plus - Backup Disclosure
wp-ban 2014-09-17 WP-Ban < 1.64 BlackList Bypass
wp-bannerize 2014-08-01 WP Bannerize <= 2.8.6 - SQL Injection
wp-bannerize 2014-08-01 WP Bannerize <= 2.8.6 - SQL Injection
wp-banners-lite 2014-08-01 WP-Banners-Lite 1.4.0 - Cross-Site Scripting (XSS)
wp-better-permalinks 2019-06-27 WP Better Permalinks <= 3.0.4 - CSRF allowing Option Update
wp-blipbot 2014-06-12 WP Blipbot <= 3.0.9 - XSS
wp-booking-system 2019-05-22 WP Booking System <= 1.5.1.1 - CSRF to Authenticated SQL ...
wp-booking-system 2019-05-22 WP Booking System <= 1.5.1.1 - CSRF to Authenticated SQL ...
wp-business-intelligence 2015-04-01 WP Business Intelligence Lite < 1.6.3 - SQL Injection
wp-business-intelligence-lite 2015-04-01 WP Business Intelligence Lite < 1.6.3 - SQL Injection