WordPress Plugin Vulnerabilities

0-9 - A - B - C - D - E - F - G - H - I - J - K - L - M - N - O - P - Q - R - S - T - U - V - W - X - Y - Z
Name Published Title
wp-sendsms 2014-08-01 WP-SendSMS - Multiple Cross-Site Scripting (XSS)
wp125 2014-08-01 WP125 <= 1.4.4 - Multiple XSS
wp125 2014-08-01 WP125 <= 1.4.4 - Multiple XSS
adminimize 2014-08-01 adminimize 1.7.21 - 'page' Parameter Cross Site Scripting
advanced-dewplayer 2014-08-01 Advanced Dewplayer - dewplayer-vinyl.swf xml Parameter XM...
ajax-pagination 2014-08-01 Ajax Pagination 1.1 - wp-admin/admin-ajax.php loop Parame...
bulletproof-security 2016-05-11 BulletProof Security <= .53.3 - Multiple XSS Vulnerabilities
cms-tree-page-view 2015-04-21 CMS Tree Page View 1.2.31 - Multiple Parameter XSS
count-per-day 2016-08-05 Count Per Day <= 3.5.4 - Stored Cross-Site Scripting (XSS)
count-per-day 2016-08-05 Count Per Day <= 3.5.4 - Stored Cross-Site Scripting (XSS)
count-per-day 2016-08-05 Count Per Day <= 3.5.4 - Stored Cross-Site Scripting (XSS)
cpl 2014-08-01 Copperleaf Photolog - SQL injection
dm-albums 2014-08-01 SWFUpload - Cross-Site Scripting (XSS)
dmsguestbook 2014-08-01 dmsguestbook 1.7.0 - Multiple Remote Vulnerabilities
downloads-manager 2014-08-01 Download Manager 0.2 - Arbitrary File Upload Exploit
duplicate-post 2019-09-26 Duplicate Post <= 3.2.3 - Authenticated Stored Cross-Site...
easy-career-openings 2014-08-01 Easy Career Openings <= 0.4 - jobid Parameter SQL Injection
email-newsletter 2015-12-01 Email Newsletter <= 20.15 - SQL Injection
event-registration 2016-05-11 Event Registration 6.02.02 - SQL Injection & Stored XSS
events-manager 2020-02-05 Events Manager < 5.9.7.2 - CSV Injection
events-manager 2020-02-05 Events Manager < 5.9.7.2 - CSV Injection
feature-comments 2014-08-01 Featured Comments 1.2.1 - wp-admin/admin-ajax.php Comment...
fgallery 2014-08-01 fGallery 2.4.1 - fimrss.php SQL Injection
fmoblog 2014-08-01 fMoblog 2.1 - (id) SQL Injection
foliopress-wysiwyg 2014-08-01 Foliopress WYSIWYG - Unspecified XSS