WordPress Plugin Vulnerabilities

0-9 - A - B - C - D - E - F - G - H - I - J - K - L - M - N - O - P - Q - R - S - T - U - V - W - X - Y - Z
Name Added Title
advanced-woo-search 2019-06-24 Advanced Woo Search <= 1.68 - CSRF & XSS
wp-ultimate-exporter 2016-03-03 WP Ultimate Exporter 1.0.0 - Reflected Cross-Site Scripti...
wp-ultimate-exporter 2016-03-13 WP Ultimate Exporter <= 1.1 - Unauthenticated SQL Injection
remote-upload 2016-06-14 Remote Upload <= 1.2.1 - Unrestricted File Upload
add-pinterest-conversion-tags 2019-03-01 Freemius Library <= 2.2.3 - Authenticated Option Update
social-pug 2016-12-11 Social Share Buttons - Social Pug <= 1.2.5 - Authenticate...
responsive-cookie-consent 2018-04-26 Responsive Cookie Consent <= 1.7 - Authenticated Stored C...
import-woocommerce 2016-02-24 Import Woocommerce <= 1.0.1 - Reflected Cross-Site Script...
gd-rating-system 2018-01-09 GD Rating System 2.3 - Multiple Vulnerabilities
csv-import 2016-02-23 CSV Import 1.0 - Reflected Cross-Site Scripting (XSS)
booking-calendar 2018-01-22 Booking calendar <= 2.1.7 - Authenticated Stored XSS & CSRF
wp-hide-security-enhancer 2017-07-21 WP Hide & Security Enhancer <= 1.3.9.2 - Arbitrary File D...
sam-pro-free 2016-11-02 SAM Pro (Free Edition) <= 1.9.6.67 - Local File Inclusion...
custom-css-js 2017-08-03 Simple Custom CSS and JS <= 3.3 - Authenticated Cross-Sit...
analytics-counter 2016-12-11 Google Analytics Counter Tracker <= 3.4.0 - Unauthenticat...
wp2android-turn-wp-site-int... 2017-03-08 Wp2android 1.1.4 - Unauthenticated File Upload
wd-instagram-feed 2019-06-26 WD Instagram Feed <= 1.3.0 - XSS
simple-file-list 2019-05-27 Simple File List Plugin <= 3.2.4 - Unauthenticated Arbitr...
simple-file-list 2019-05-27 Simple File List Plugin <= 3.2.4 - Authenticated Arbitrar...
add-any-extension-to-pages 2019-06-20 Add Any Extension to Pages <= 1.3 - XSS
enhanced-plugin-admin 2019-06-20 Enhanced Plugin Admin <= 1.15 - XSS
unlimited-popups 2016-04-25 Unlimited Pop-Ups <= 1.4.3 - Cross-Site Scripting (XSS)
add-pinterest-conversion-tags 2019-03-01 Freemius Library <= 2.2.3 - Authenticated Option Update
wp-markdown-editor 2017-03-15 WP Markdown Editor 2.3.0 - Authenticated "Self" Cross-Sit...
instalinker 2016-02-07 InstaLinker <= 1.1.1 - Reflected Cross-Site Scripting (XSS)
duplicate-page-and-post 2017-12-28 Duplicate Page and Post 2.1.0-2.1.1 (current) - Backdoored
zm-gallery 2016-12-20 ZM Gallery 1.0 – Authenticated Blind SQL Injection
woo-confirmation-email 2019-06-24 User Email Verification for WooCommerce <= 3.3.0 - CSRF l...
js_composer 2015-10-11 Visual Composer <= 4.7.3 - Multiple Unspecified Cross-Sit...
royal-slider 2015-09-13 Royal Slider <= 3.2.6 - Authenticated Cross-Site Scriptin...
ultimate-form-builder-lite 2017-04-20 Contact Form for WordPress – Ultimate Form Builder Lite <...
ultimate-form-builder-lite 2017-10-23 Contact Form for WordPress – Ultimate Form Builder Lite <...
ultimate-form-builder-lite 2018-06-18 Ultimate Form Builder Lite <= 1.3.7 - Multiple Vulnerabil...
adsense-plugin 2017-04-13 Multiple BestWebSoft Plugins - Authenticated Reflected GE...