WordPress Plugin Vulnerabilities

0-9 - A - B - C - D - E - F - G - H - I - J - K - L - M - N - O - P - Q - R - S - T - U - V - W - X - Y - Z
Name Added Title
fbpromotions 2014-08-01 Facebook Promotions <= 1.3.3 - SQL Injection
evarisk 2014-08-01 Evarisk 5.1.5.4 - include/lib/actionsCorrectives/activite...
evarisk 2014-08-01 Evarisk <= 5.1.3.6 - SQL Injection
collision-testimonials 2014-08-01 Collision Testimonials <= 3.0 - SQL Injection
mygallery 2014-08-01 myGallery <= 1.4b4 - Remote File Inclusion
sendit 2014-08-01 SendIt <= 1.5.9 - Blind SQL Injection
sendit 2014-09-19 Sendit < 2.1.1 SQL Injection
js-appointment 2014-08-01 Js-appointment <= 1.5 - SQL Injection
mm-forms-community 2014-08-01 MM Forms Community <= 1.2.3 - SQL Injection
mm-forms-community 2014-08-01 MM Forms Community 2.2.6 - Arbitrary File Upload
super-captcha 2014-08-01 Super CAPTCHA <= 2.2.4 - SQL Injection
backupwordpress 2014-08-01 BackUp <= 0.4.2b - RFI
myflash 2014-08-01 Myflash <= 1.00 - (wppath) RFI
myflash 2014-08-01 Myflash - myextractXML.php path Parameter Arbitrary File ...
wordtube 2014-08-01 plugin wordTube <= 1.43 - (wpPATH) RFI
wp-table 2014-08-01 plugin wp-Table <= 1.43 - (inc_dir) RFI
wp-cal 2014-08-01 WP-Cal 0.3 - editevent.php SQL Injection
wpforum 2014-08-01 plugin WP-Forum 1.7.4 - Remote SQL Injection
wpforum 2014-08-01 plugin WP-Forum 1.7.8 - Remote SQL Injection
wp-filemanager 2014-08-01 wp-FileManager <= 1.3.0 - File Download
pictpress 2014-08-01 PictPress <= 0.91 - Remote File Disclosure
wp-adserve 2014-08-01 Adserve 0.2 - adclick.php SQL Injection Exploit
fgallery 2014-08-01 fGallery 2.4.1 - fimrss.php SQL Injection
dmsguestbook 2014-08-01 dmsguestbook 1.7.0 - Multiple Remote Vulnerabilities
wassup 2014-08-01 WassUp 1.4.3 - (spy.php to_date) SQL Injection Exploit
wassup 2016-11-08 WassUp Real Time Analytics <= 1.9 - Cross Site Scripting
wp-photo-album 2014-08-01 Photo album - Remote SQL Injection
sf-forum 2014-08-01 Simple Forum 2.0-2.1 - SQL Injection
sf-forum 2014-08-01 Simple Forum 1.10-1.11 - SQL Injection
st_newsletter 2014-08-01 st_newsletter - Remote SQL Injection
st_newsletter 2014-08-01 st_newsletter - (stnl_iframe.php) SQL Injection
wordspew 2014-08-01 Wordspew - Remote SQL Injection
wpSS 2014-08-01 Spreadsheet <= 0.6 - SQL Injection
wp-download 2014-08-01 Download - (dl_id) SQL Injection
sniplets 2014-08-01 Sniplets 1.1.2 - (RFI/XSS/RCE) Multiple Vulnerabilities
fmoblog 2014-08-01 fMoblog 2.1 - (id) SQL Injection
page-flip-image-gallery 2014-08-01 Page Flip Image Gallery <= 0.2.2 - Remote FD Vuln
wp-shopping-cart 2014-08-01 e-Commerce <= 3.4 - Arbitrary File Upload Exploit