WordPress Plugin Vulnerabilities

0-9 - A - B - C - D - E - F - G - H - I - J - K - L - M - N - O - P - Q - R - S - T - U - V - W - X - Y - Z
Name Published Title
all-in-one-wp-security-and-... 2016-07-31 All In One WP Security & Firewall <= 4.1.2 - Multiple vul...
contact-bank 2016-08-01 Contact Bank <= 2.1.21 - Cross-Site Scripting (XSS)
google-language-translator 2016-04-19 Google Language Translator <= 5.0.05 - XSS
hide_my_wp 2015-08-13 Hide My WP <= 4.53 - Stored-Cross Site Scripting (XSS)
kiwi-logo-carousel 2015-08-13 Kiwi Logo Carousel <= 1.7.1 - Authenticated Cross-Site Sc...
my-category-order 2015-08-13 My Category Order <= 4.3 - Authenticated Cross-Site Scrip...
my-page-order 2015-08-13 My Page Order <= 4.3 - Authenticated Cross-Site Scripting...
wp-job-manager 2018-12-22 WP Job Manager <= 1.31.2 - Phar Deserialization
oauth2-provider 2015-08-12 WP OAuth Server <= 3.1.4 - Insecure Pseudor&om Number Gen...
addthis 2015-08-11 AddThis Sharing Buttons <= 5.0.12 - Authenticated Cross-S...
display-widgets 2017-09-10 Display Widgets 2.6.0-2.6.3.1 - Backdoored
dynamic-widgets 2014-08-01 Dynamic Widgets <= 1.5.1 - Cross-Site Scripting (XSS)
iframe 2015-08-11 iframe <= 3.0 - Authenticated Stored Cross-Site Scripting...
iframe 2015-08-11 iframe <= 3.0 - Authenticated Stored Cross-Site Scripting...
easy-pie-coming-soon 2015-08-10 EZP Coming Soon Page <= 1.0.0 - Authenticated Cross-Site ...
easy-table 2017-02-14 Easy Table <= 1.6 - Authenticated Stored Cross-Site Scrip...
email-encoder-bundle 2015-08-10 Email Encoder Bundle <= 1.4.1 - Unauthenticated Cross-Sit...
email-subscribers 2019-07-12 Email Subscribers & Newsletters <= 4.1.6 - Cross-Site Scr...
email-users 2016-08-15 Email Users <= 4.8.3 - Cross-Site Request Forgery (CSRF)
events-manager 2019-10-16 Events Manager < 5.9.6 - Stored XSS
google-analytics-for-wordpress 2018-12-02 Google Analytics by Monster Insights <= 7.1.0 - Authentic...
the-holiday-calendar 2015-08-10 The Holiday Calendar <= 1.11.2 - Cross-Site Scripting (XSS)
wp-statistics 2019-07-03 WP Statistics <= 12.6.6.1 - Unauthenticated Stored XSS Un...
wp-symposium 2015-09-06 WP Symposium <= 15.8.1 - Unauthenticated Reflected Cross-...
avenirsoft-directdownload 2015-08-09 Avenir-soft Direct Download <= 1.0 - Cross-Site Scripting...