ID Added Title
8562 2016-07-20 WordPress Video Player <= 1.5.16 - Multiple Authenticated Blind SQL Inje...
8557 2016-07-19 Form Lightbox - Arbitrary Option Update Leading to Admin Account
8527 2016-06-23 WordPress File Upload <= 3.8.5 - Insufficient File Extension Blacklisting
8525 2016-06-23 WordPress File Monitor - Stored Cross-Site Scripting (XSS)
8524 2016-06-22 WordPress 4.5.2 - Password Change via Stolen Cookie
8523 2016-06-22 WordPress 4.5.2 - oEmbed Denial of Service (DoS)
8522 2016-06-22 WordPress 4.5.2 - Redirect Bypass
8520 2016-06-21 WordPress 2.6.0-4.5.2 - Unauthorized Category Removal from Post
8519 2016-06-21 WordPress 3.6-4.5.2 - Authenticated Revision History Information Disclosure
8518 2016-06-21 WordPress 4.2-4.5.2 - Authenticated Attachment Name Stored XSS
8512 2016-06-07 Wordpress Levo-Slideshow 2.3 - Stored Cross-Site Scripting (XSS)
8511 2016-06-07 Wordpress Levo-Slideshow - Arbitrary File Upload
8504 2016-05-31 Stream <= 3.0.5 - Unauthenticated Events Export
8489 2016-05-06 WordPress <= 4.5.1 - Pupload Same Origin Method Execution (SOME)
8488 2016-05-06 WordPress 4.2-4.5.1 - MediaElement.js Reflected Cross-Site Scripting (XSS)
8477 2016-04-29 Google Authenticator <= 0.47 - Two Factor Authentication Bypass
8475 2016-04-28 WordPress <= 4.4.2 - Script Compression Option CSRF
8474 2016-04-28 WordPress <= 4.4.2 - Reflected XSS in Network Settings
8473 2016-04-28 WordPress <= 4.4.2 - SSRF Bypass using Octal & Hexedecimal IP addresses
8453 2016-04-15 Indexisto WordPress Site Search <= 1.0.5 - Unauthenticated Reflected Cro...
8449 2016-04-15 HDW WordPress Video Gallery <= 1.2 - Unauthenticated Reflected Cross-Sit...
8420 2016-03-22 OptinMonster <= 1.1.4.5 - Execution of Arbitrary Shortcodes
8383 2016-02-07 XSS in Blubrry PowerPress Podcasting wordpress plugin <= 6.0.4
8382 2016-02-07 InstaLinker <= 1.1.1 - Reflected Cross-Site Scripting (XSS)
8377 2016-02-02 WordPress 3.7-4.4.1 - Open Redirect
8376 2016-02-02 WordPress 3.7-4.4.1 - Local URIs Server Side Request Forgery (SSRF)
8365 2016-01-19 WordPress Download Manager <= 2.8.7 - Multiple Vulnerabilities
8358 2016-01-06 WordPress 3.7-4.4 - Authenticated Cross-Site Scripting (XSS)
8304 2015-11-24 WordPress Meta Robots <= 2.1 - Authenticated Blind SQL Injection
8260 2015-11-22 JW Player 6 Plugin for Wordpress <= 2.1.14 - Authenticated Cross-Site Sc...