WordPress Plugin Vulnerabilities

0-9 - A - B - C - D - E - F - G - H - I - J - K - L - M - N - O - P - Q - R - S - T - U - V - W - X - Y - Z
Name Published Title
yahoo-updates-for-wordpress 2014-08-01 Yahoo Updates < 1.0 - XSS vulnerabilities in yupdates_app...
yawpp 2015-12-09 YAWPP <= 1.2.2 - Unauthenticated Stored Cross-Site Script...
yawpp 2014-09-19 YAWPP <= 1.2 - SQL Injection
yawpp 2014-09-19 YAWPP <= 1.2 - SQL Injection
yellow-pencil-visual-theme-... 2019-04-11 YellowPencil Visual CSS Style Editor <= 7.2.0 - Unauthent...
yet-another-related-posts-p... 2015-05-08 Yet Another Related Posts Plugin (YARPP) 4.2.4 - CSRF / X...
yet-another-stars-rating 2019-01-27 Yet Another Stars Rating <= 1.8.6 - PHP Object Injection
yet-another-stars-rating 2015-07-06 Yet Another Stars Rating <= 0.9.0 - Authenticated Blind S...
yikes-inc-easy-mailchimp-ex... 2016-07-13 Easy Forms for MailChimp <= 6.0.5.5 - Local File Inclusio...
yikes-inc-easy-mailchimp-ex... 2016-07-13 Easy Forms for MailChimp <= 6.0.5.5 - Local File Inclusio...
yikes-inc-easy-mailchimp-ex... 2019-07-01 Easy Forms for Mailchimp < 6.5.3 - Code Injection
yikes-inc-easy-mailchimp-ex... 2016-07-13 Easy Forms for MailChimp <= 6.0.5.5 - Local File Inclusio...
yith-maintenance-mode 2015-08-21 YITH Maintenance Mode <= 1.1.4 - Authenticated Reflected ...
yith-woocommerce-compare 2016-11-08 YITH WooCommerce Compare <= 2.0.9 - Unauthenticated PHP O...
yith-woocommerce-wishlist 2018-01-16 YITH WooCommerce Wishlist <= 2.1.2 - Authenticated SQL In...
yolink-search 2014-08-01 yolink Search <= 1.1.4 - includes/bulkcrawl.php Multiple ...
yolink-search 2014-08-01 yolink Search 2.5 - "s" Cross-Site Scripting
yop-poll 2019-02-05 YOP Poll <= 6.0.2 - Cross-Site Scripting (XSS)
yop-poll 2017-03-23 YOP Poll <= 5.8.0 - Stored Cross-Site Scripting (XSS)
yop-poll 2015-07-08 YOP Poll <= 5.7.3 - Reflected Cross-Site Scripting (XSS)
your-text-manager 2014-08-01 Your Text Manager < 0.3.0 - Cross-Site Scripting (XSS)
yousaytoo-auto-publishing-p... 2012-01-09 Yousaytoo Auto Publishing <= 1.0 - Cross Site Scripting
youtube-embed 2015-08-26 YouTube Embed <= 3.3.2 - Authenticated Stored Cross-Site ...
youtube-embed-plus 2017-07-25 YouTube Embed <= 11.8.1 - Cross-Site Request Forgery (CSRF)
yurl-retwitt 2014-12-14 Yurl Retwitt <= 1.4 - Multiple CSRF