WordPress Plugin Vulnerabilities

0-9 - A - B - C - D - E - F - G - H - I - J - K - L - M - N - O - P - Q - R - S - T - U - V - W - X - Y - Z
Name Added Title
jcwp-youtube-channel-embed 2015-05-14 Multiple Plugins - jQuery prettyPhoto DOM Cross-Site Scri...
izeechat 2015-05-14 Multiple Plugins - jQuery prettyPhoto DOM Cross-Site Scri...
ip-blacklist-cloud 2015-03-01 IP Blacklist Cloud <= 3.4 - SQL Injection
ip-blacklist-cloud 2015-03-13 IP Blacklist Cloud <= 3.42 - Arbitrary File Disclosure
indexisto 2016-04-15 Indexisto WordPress Site Search <= 1.0.5 - Unauthenticate...
incoming-links 2015-05-31 Incoming Links <= 0.9.9b - referrers.php XSS
inboundio-marketing 2015-03-24 InBoundio Marketing Plugin <= 2.0.3 - Shell Upload
images-lazyload-and-slideshow 2015-05-14 Multiple Plugins - jQuery prettyPhoto DOM Cross-Site Scri...
image-metadata-cruncher 2015-02-17 Image Metadata Cruncher - Multiple Cross-Site Scripting (...
ibs-mappro 2015-07-11 IBS Mappro <= 0.6 - Directory Traversal
i-dump-iphone-to-wordpress-... 2015-04-09 Windows Desktop And iPhone Photo Uploader <= 1.8 - File U...
history-collection 2015-06-10 History Collection <= 1.1.1 - Arbitraty File Download
hdw-tube 2016-04-15 HDW WordPress Video Gallery <= 1.2 - Unauthenticated Refl...
gravity-file-ajax-upload-free 2015-11-13 Gravity Upload Ajax <= 1.1 - Arbitrary File Upload
googmonify 2015-08-24 Googmonify <= 0.5.1 - CSRF & XSS
google-mp3-audio-player 2017-02-09 Wordpress CodeArt Google MP3 Player - File Disclosure
google-maps 2016-08-16 Google Maps <= 2.1.3 - Authenticated Reflected Cross-Sit...
google-adsense-and-hotel-bo... 2015-08-24 Google Adsense & Hotel Booking <= 1.05 - Open Proxy
gocodes 2015-11-24 GoCodes <= 1.3.5 - Authenticated XSS & Blind SQL Injection
ghost 2016-05-02 Ghost Plugin <= 0.5.5 - Unrestricted Export Download
gd-bbpress-attachments 2015-07-09 GD bbPress Attachments <= 2.2 - Local File Inclusion
gd-bbpress-attachments 2015-07-09 GD bbPress Attachments <= 2.2 - Authenticated Reflected C...
fs-shopping-cart 2016-11-21 FireStorm Shopping Cart eCommerce Plugin 2.07.02 - Authen...
freshmail-newsletter 2015-05-08 Freshmail for WordPress <= 1.5.8 - Unauthenticated SQL In...
freshmail-newsletter 2015-05-08 Freshmail for WordPress <= 1.5.8 - shortcode.php SQL Inj...
foxyshop 2015-05-14 Multiple Plugins - jQuery prettyPhoto DOM Cross-Site Scri...
fossura-tag-miner 2016-05-05 Tag Miner <= 1.1.2 - Cross-Site Request Forgery (CSRF)
form-lightbox 2016-07-19 Form Lightbox - Arbitrary Option Update Leading to Admin ...
fast-image-adder 2015-07-11 Fast Image Adder <= 1.1 - Unauthenticated Remote File Upload
fancyflickr 2015-05-14 Multiple Plugins - jQuery prettyPhoto DOM Cross-Site Scri...
facebook-page-photo-gallery 2015-05-06 Facebook Page Photo Gallery <= 2.0.9 - DOM Cross-Site Scr...
email-encoder-bundle 2015-11-24 Email Encoder Bundle <= 1.4.1 - Unauthenticated Cross-Sit...
elisqlreports 2015-09-15 EZ SQL Reports <= 4.11.33 - Authenticated Arbitrary File ...
elisqlreports 2015-09-15 EZ SQL Reports <= 4.11.33 - Authenticated Arbitrary Code ...