ID Added Title
8365 2016-01-19 WordPress Download Manager <= 2.8.7 - Multiple Vulnerabilities
8358 2016-01-06 WordPress 3.7-4.4 - Authenticated Cross-Site Scripting (XSS)
8304 2015-11-24 WordPress Meta Robots <= 2.1 - Authenticated Blind SQL Injection
8260 2015-11-22 JW Player 6 Plugin for Wordpress <= 2.1.14 - Authenticated Cross-Site Sc...
8256 2015-11-22 CKEditor for WordPress <= 4.5.3 - Authenticated Reflected Cross-Site Scr...
8241 2015-11-13 WordPress Store Locator 2.3-3.11 - SQL Injection
8226 2015-11-09 WordPress File Upload <= 3.4.0 - Unauthenticated Malicious File Upload
8219 2015-10-21 WordPress Calls to Action <= 2.4.3 - Reflected Cross-Site Scripting (XSS)
8200 2015-09-30 WordPress Landing Pages 1.8.8-1.9.0 - Unauthenticated Remote Command Exe...
8195 2015-09-21 wordpress vertical image slider plugin - Cross-Site Scripting & CSRF
8191 2015-09-18 MyPixs <= 0.3 - Unauthenticated Local File Inclusion (LFI)
8189 2015-09-16 Csv2WPeC Coupon <= 1.1 - Unauthenticated Remote File Upload
8188 2015-09-15 WordPress <= 4.3 - Publish Post & Mark as Sticky Permission Issue
8187 2015-09-15 WordPress <= 4.3 - User List Table Cross-Site Scripting (XSS)
8186 2015-09-15 WordPress <= 4.3 - Authenticated Shortcode Tags Cross-Site Scripting (XSS)
8184 2015-09-15 EZ SQL Reports <= 4.11.33 - Authenticated Arbitrary File Download
8172 2015-09-02 WordPress Responsive Thumbnail Slider 1.0 - Stored Cross-Site Scripting ...
8171 2015-09-02 WordPress Responsive Thumbnail Slider 1.0 - Authenticated Shell Upload &...
8170 2015-09-02 Testimonial Slider <= 1.2.1 - Authenticated Stored Cross-Site Scripting ...
8155 2015-08-22 DukaPress <= 2.5.9 - Unauthenticated Blind SQL Injection
8144 2015-08-10 MP3-jPlayer <= 2.4.2 - Full Path Disclosure
8140 2015-08-09 WP Symposium <= 15.5.1 - Unauthenticated SQL Injection
8133 2015-08-05 WordPress <= 4.2.3 - Legacy Theme Preview Cross-Site Scripting (XSS)
8132 2015-08-05 WordPress <= 4.2.3 - Nav Menu Title Cross-Site Scripting (XSS)
8131 2015-08-05 WordPress <= 4.2.3 - Widgets Title Cross-Site Scripting (XSS)
8130 2015-08-05 WordPress <= 4.2.3 - Timing Side Channel Attack
8126 2015-08-04 WordPress <= 4.2.3 - wp_untrash_post_comments SQL Injection
8111 2015-07-23 WordPress <= 4.2.2 - Authenticated Stored Cross-Site Scripting (XSS)
8107 2015-07-20 WordPress Mobile Pack <= 2.1.2 - Information Disclosure
8104 2015-07-16 WordPress Download Manager <= 2.7.94 - Authenticated Stored XSS