WordPress Plugin Vulnerabilities | WPScan

0-9
a
b
c
d
e
f
g
h
i
j
k
l
m
n
o
p
q
r
s
t
u
v
w
x
y
z

Slug

Published

2023-02-02

Title

0mk Shortener <= 0.2 - Admin+ Stored XSS

Slug

Published

2023-02-06

Title

0mk Shortener <= 0.2 - Stored XSS via CSRF

Slug

1-click-close-store

Published

2023-07-18

Title

Freemius SDK < 2.5.10 - Reflected Cross-Site Scripting

Slug

1-flash-gallery

Published

2014-08-01

Title

1 Flash Gallery - Arbitrary File Upload Exploit (MSF)

Slug

1-flash-gallery

Published

2014-08-01

Title

1-flash-gallery <= 1.9.0 - XSS in ZeroClipboard.swf

Slug

1-jquery-photo-gallery-slideshow-flash

Published

2014-08-01

Title

ZooEffect 1.08 - HTTP Referer Reflected XSS

Slug

1003-mortgage-application

Published

2023-11-07

Title

1003 Mortgage Application < 1.80 - Improper Neutralization of Formula Elements in a CSV File

Slug

10to8-online-booking

Published

2023-11-29

Title

10to8 Online Appointment Booking System < 1.1.0 - Contributor+ Stored XSS

Slug

12-step-meeting-list

Published

2023-11-27

Title

12 Step Meeting List < 3.14.25 - Authenticated (Contributor+) Server-Side Request Forgery

Slug

12-step-meeting-list

Published

2024-01-17

Title

12 Step Meeting List < 3.14.29 - Subscriber+ CSV Download

Slug

123-chat-videochat

Published

2023-08-14

Title

123.chat < 1.3.1 - Admin+ Stored XSS

Slug

123contactform-for-wordpress

Published

2021-01-20

Title

123ContactForm for WordPress <= 1.5.6 - Validation Bypass via Plugin Verification

Slug

123contactform-for-wordpress

Published

2021-01-20

Title

123ContactForm for WordPress <= 1.5.6 - Unauthenticated Arbitrary Post Creation

Slug

123contactform-for-wordpress

Published

2021-01-20

Title

123ContactForm for WordPress <= 1.5.6 - Unauthenticated Arbitrary File Upload

Slug

1app-business-forms

Published

2022-11-30

Title

1app Business Forms <= 1.0.0 - Author+ Stored XSS

Slug

Published

2014-08-01

Title

VideoJS - Cross-Site Scripting (XSS)

Slug

2-click-socialmedia-button

Published

2014-08-01

Title

2-Click-Socialmedia-Buttons <= 0.34 - Cross Site Scripting

Slug

2-click-socialmedia-button

Published

2014-08-01

Title

2-Click-Socialmedia-Buttons < 0.35 - Cross Site Scripting

Slug

2-click-socialmedia-buttons

Published

2012-05-11

Title

2 Click Socialmedia Buttons < 0.34 - Multiple XSS

Slug

Published

2020-01-20

Title

2J SlideShow < 1.3.40 - Authenticated Arbitrary Plugin Deactivation

Slug

Published

2022-05-04

Title

Slideshow, Image Slider by 2J <= 1.3.54 - Reflected Cross-Site Scripting

Slug

Published

2023-10-02

Title

Images Slideshow by 2J <= 1.3.54 - Contributor+ Stored XSS

Slug

2kb-amazon-affiliates-store

Published

2017-09-20

Title

2kb Amazon Affiliates Store <= 2.1.0 - Authenticated Cross-Site Scripting (XSS)

Slug

2kb-amazon-affiliates-store

Published

2022-10-24

Title

2kb Amazon Affiliates Store <= 2.1.5 - Reflected XSS

Slug

Published

2023-07-18

Title

Freemius SDK < 2.5.10 - Reflected Cross-Site Scripting