ID Added Title
8947 2017-11-09 Ultimate Instagram Feed <= 1.3 - Authenticated Cross-Site Scripting (XSS)
8941 2017-10-31 WordPress <= 4.8.2 - $wpdb->prepare() Weakness
8940 2017-10-30 Caldera Forms <= 1.5.4 - Authenticated Cross-Site Scripting (XSS)
8935 2017-10-23 Contact Form for WordPress – Ultimate Form Builder Lite <= 1.3.6 - SQL I...
8934 2017-10-17 Qards - Stored Cross-Site Scripting (XSS)
8933 2017-10-17 Qards - Server Side Request Forgery (SSRF)
8932 2017-10-17 Import any XML or CSV File to WordPress <= 3.4.5 - Cross-Site Scripting ...
8917 2017-09-28 MarketPress <= 3.2.6 - PHP Object Injection
8916 2017-09-28 Basic Contact Form <= 1.0.3 - Potential Unauthenticated Shell Upload
8914 2017-09-27 WordPress 4.2.3-4.8.1 - Authenticated Cross-Site Scripting (XSS) in Visu...
8913 2017-09-25 WordPress 4.4-4.8.1 - Cross-Site Scripting (XSS) in oEmbed
8912 2017-09-25 WordPress 4.4-4.8.1 - Path Traversal in Customizer
8911 2017-09-25 WordPress 3.0-4.8.1 - Path Traversal in Unzipping
8910 2017-09-25 WordPress 2.9.2-4.8.1 - Open Redirect
8906 2017-09-20 WordPress 2.3.0-4.7.4 - Authenticated SQL injection
8905 2017-09-20 WordPress 2.3.0-4.8.1 - $wpdb->prepare() potential SQL Injection
8902 2017-09-19 SmokeSignal <= 1.2.6 - Authenticated Stored XSS
8896 2017-09-06 Participants Database <= 1.7.5.9 - Cross-Site Scripting
8888 2017-08-16 wordpress-gallery-transformation 1.0 - Blind SQL Injection
8887 2017-08-16 I Recommend This <= 3.8.1 - Authenticated SQL Injection
8885 2017-08-16 AddToAny Share Buttons <= 1.7.14 - Conditional Host Header Injection
8882 2017-08-07 Podlove Podcast Publisher <= 2.5.3 - Authenticated SQL Injection
8881 2017-08-07 Easy Modal <= 2.0.17 - Authenticated SQL Injection
8877 2017-08-02 FormCraft - Premium WordPress Form Builder <= v3.2.31 - Authenticated St...
8876 2017-08-02 Ultimate Affiliate Pro WordPress Plugin <= v3.6 - Authenticated Stored XSS
8875 2017-08-01 Salutation Responsive WordPress + BuddyPress Theme <= 3.0.15 - Stored XSS
8871 2017-07-25 WordPress Task Manager Pro <= 1.3.1 - Authenticated SQL Injection
8869 2017-07-25 WordPress Plugin IBPS Online Exam <= 1.0 - Authenticated SQL Injection /...
8857 2017-07-16 WordPress Download Manager <= 2.9.50 - Open Redirect
8856 2017-07-16 WordPress Download Manager <= 2.9.49 - Cross-Site Scripting (XSS)