WordPress Plugin Vulnerabilities

0-9 - A - B - C - D - E - F - G - H - I - J - K - L - M - N - O - P - Q - R - S - T - U - V - W - X - Y - Z
Name Published Title
social-networks-auto-poster... 2019-02-05 NextScripts <= 4.2.7 - Cross-Site Scripting (XSS)
wp-google-maps 2019-02-05 WP Google Maps <= 7.10.41 - Cross-Site Scripting (XSS)
wp-live-chat-support 2019-02-05 WP Live Chat Support <= 8.0.17 - Cross-Site Scripting (XSS)
yop-poll 2019-02-05 YOP Poll <= 6.0.2 - Cross-Site Scripting (XSS)
instagram-feed 2018-01-18 Instagram Feed <= 1.5.1 - Cross-Site Scripting (XSS)
wp-support-plus-responsive-... 2019-02-04 WP Support Plus Responsive Ticket System <= 9.1.1 - Store...
meta-box 2019-02-02 Meta Box < 4.16.3 - Unauthorised File Deletion
meta-box 2019-02-01 Meta Box < 4.16.2 - Mishandled Uploaded Files
woocommerce-gateway-paypal-... 2019-01-27 Woocommerce Gateway Paypal Express Checkout <= 1.6.8 - Pa...
yet-another-stars-rating 2019-01-27 Yet Another Stars Rating <= 1.8.6 - PHP Object Injection
ad-manager-wd 2019-01-25 Download Ad Manager by WD - Arbitrary File Download
health-check 2019-01-25 Health Check & Troubleshooting <= 1.2.3 - Authenticated L...
health-check 2019-01-25 Health Check & Troubleshooting <= 1.2.3 - Authenticated L...
total-donations 2019-01-25 Total Donations - Update Arbitrary WordPress Option Values
wise-chat 2019-01-25 Wise Chat <= 2.6.3 - Reverse Tabnabbing
polylang 2019-01-16 Polylang <= 2.5 - CSRF in categories and media duplication
shortcode-factory 2019-01-16 Shortcode Factory < 2.8 - Local File Inclusion
social-network-tabs 2019-01-16 Social Network Tabs - Social Media API Key Leakage
companion-auto-update 2019-01-14 Companion Auto Update <= 3.3.5 - Authenticated SQL Injection
companion-sitemap-generator 2019-01-14 Companion Sitemap Generator <= 3.6.6 - CSRF
easy-redirect-manager 2019-01-14 easy-redirect-manager 2.18.18 - Cross-Site Scripting (XSS)
ninja-forms 2018-08-27 Ninja Forms <= 3.3.13 - Cross-Site Scripting (XSS) in Imp...
spam-byebye 2019-01-10 spam-byebye <= 2.2.1 - Cross-Site Scripting (XSS)
user-registration 2019-01-09 User Registration <= 1.5.5 - Authenticated Cross-Site Scr...
mapsvg-lite-interactive-vec... 2019-01-08 MapSVG Lite - Cross-Site Request Forgery (CSRF)