WordPress Plugin Vulnerabilities

0-9 - A - B - C - D - E - F - G - H - I - J - K - L - M - N - O - P - Q - R - S - T - U - V - W - X - Y - Z
Name Added Title
z-vote 2014-08-01 Z-Vote 1.1 - SQL Injection
zarzadzanie_kontem 2014-08-01 Zarzadzanie Kontem - ajaxfilemanager.php File Upload Arbi...
zdstats 2014-08-01 ZdStatistics < 2.0.1 - Cross-Site Scripting (XSS)
zedity 2014-08-01 Zedity <= 2.5.0 - Cross-Site Scripting (XSS)
zedity 2014-08-01 Zedity <= 2.4.0 - Cross-Site Scripting (XSS)
zeenshare 2014-08-01 ZeenShare plugin < 1.0.1 - Cross-Site Scripting (XSS)
zen-mobile-app-native 2017-03-01 Mobile App Native <= 3.0 - Remote File Upload
zendesk-help-center 2017-04-13 Multiple BestWebSoft Plugins - Authenticated Reflected GE...
zenphoto 2014-08-01 Zenphoto 1.4.5.2 - wordpress_import.php wp_prefix Functio...
zero-spam 2016-08-24 WordPress Zero Spam <= 2.1.1 - Unauthenticated Blind SQL ...
zingiri-forum 2014-08-01 Zingiri Forum 1.4.2 - forum.php zing_forum_output Functio...
zingiri-tickets 2014-08-01 Zingiri Tickets - File Disclosure
zingiri-web-shop 2014-08-01 Zingiri Web Shop 2.6.4 - mform.php Unspecified Issue
zingiri-web-shop 2014-08-01 Zingiri Web Shop 2.5.0 - ajaxfilemanager.php path Paramet...
zingiri-web-shop 2014-08-01 Zingiri Web Shop 2.4.3 - Shell Upload
zingiri-web-shop 2014-08-01 Zingiri Web Shop - Cookie SQL Injection
zingiri-web-shop 2014-08-01 Zingiri Web Shop <= 2.4.0 - zing.inc.php page Parameter XSS
zingiri-web-shop 2014-08-01 Zingiri Web Shop <= 2.4.0 - onecheckout.php notes Paramet...
zingiri-web-shop 2014-08-01 Zingiri Web Shop <= 2.3.5 - Cross Site Scripting
zingiri-web-shop 2014-09-28 Zingiri Web Shop 2.2.0 - init.inc wpabspath Parameter Rem...
zip-attachments 2015-06-15 Zip Attachments <= 1.1.4 - Arbitrary File Download
zm-ajax-login-register 2015-06-04 zM Ajax Login & Register 1.0.9 - Local File Inclusion & XSS
zm-gallery 2016-12-20 ZM Gallery 1.0 – Authenticated Blind SQL Injection
zopim-live-chat 2014-08-01 Zopim Live Chat <= 1.2.5 - XSS in ZeroClipboard
zotpress 2014-08-01 Zotpress <= 4.4 - SQL Injection
zx-csv-upload 2016-12-20 ZX_CSV Upload 1 – Authenticated SQL Injection