WordPress Plugin Vulnerabilities

0-9 - A - B - C - D - E - F - G - H - I - J - K - L - M - N - O - P - Q - R - S - T - U - V - W - X - Y - Z
Name Published Title
wpforms-lite 2020-03-05 WPForms < 1.5.9 - Authenticated Cross Site Scripting (XSS)
appointment-booking-calendar 2020-03-04 Appointment Booking Calendar < 1.3.35 - Authenticated Sto...
appointment-booking-calendar 2020-03-04 Appointment Booking Calendar < 1.3.35 - Authenticated Sto...
woocommerce-smart-coupons 2020-03-04 WooCommerce Smart Coupons < 4.6.5 - Unauthenticated Coupo...
testimonial-free 2020-03-02 Testimonial < 2.1.7 - Authenticated Stored Cross-Site Scr...
booked 2020-02-29 Booked < 2.2.6 - Broken Authentication to Export Users Da...
async-javascript 2020-02-27 Async Javascript < 2.20.02.27 - Subscriber+ Stored XSS vi...
modern-events-calendar-lite 2020-02-27 Modern Events Calendar Lite < 5.1.7 - Multiple Subscriber...
wd-google-maps 2020-02-27 10Web Map Builder for Google Maps < 1.0.64 - Unauthentica...
wpdefault 2020-02-27 wpdefault - Backdoor Plugin
export-users 2020-02-26 Export Users to CSV <= 1.4.2 - CSV Injection
wpjobboard 2020-02-26 WPJobBoard <= 5.5.3 - Unauthenticated Stored Cross-Site S...
yikes-inc-easy-mailchimp-ex... 2020-02-26 Easy Forms for Mailchimp < 6.6.3 - Authenticated Cross-Si...
envira-gallery-lite 2020-02-25 Envira Photo Gallery < 1.7.7 - Authenticated Stored Cross...
flexible-checkout-fields 2020-02-25 Flexible Checkout Fields for WooCommerce < 2.3.2 - Unauth...
hmapsprem 2020-02-25 Hero Maps Premium < 2.2.3 - Unauthenticated Reflected Cro...
photo-gallery 2019-09-08 Photo Gallery by 10Web < 1.5.35 - SQL Injection & XSS
pricing-table-by-supsystic 2020-02-25 Pricing Table by Supsystic < 1.8.1 - Cross-Site Request F...
pricing-table-by-supsystic 2020-02-25 Pricing Table by Supsystic < 1.8.1 - Cross-Site Request F...
pricing-table-by-supsystic 2020-02-25 Pricing Table by Supsystic < 1.8.1 - Cross-Site Request F...
indeed-membership-pro 2020-02-24 Ultimate Membership Pro < 8.6.2 - Multiple CSRF Issues vi...
indeed-membership-pro 2020-02-24 Ultimate Membership Pro < 8.6.2 - Multiple CSRF Issues vi...
cardgate 2020-02-22 CardGate < 3.1.16 - Unauthorised Payments Hijacking and O...
chained-quiz 2020-02-21 Chained Quiz < 1.1.9.1 - Authenticated Stored XSS
duplicator 2015-04-10 Duplicator <= 0.5.14 - SQL Injection & CSRF
duplicator-pro 2020-02-19 Duplicator 1.3.24 & 1.3.26 - Unauthenticated Arbitrary Fi...