ThreatPress

WordPress Vulnerabilities Database

Daily updated database of WordPress plugins, themes and WordPress core vulnerabilities. Our R&D team monitors a large number of sources to add new vulnerabilities to the database on daily basis.

Vulnerabilities

Please use the search to find what you're looking for

Product Title Disclosure Date
wpglobus WordPress Wpglobus <= 1.9.6 - Multiple vulnerabilities 2018-01-12
Srbtranslatin WordPress Srbtranslatin <= 1.4.6 - Stored Cross-site scripting (XSS) & Cross-site request forgery (CSRF) vulnerabilities 2018-01-12
Smooth Slider WordPress Smooth Slider plugin <=2.8.6 - Authenticated SQL Injection vulnerability 2018-01-11
Dbox 3D Slider Lite WordPress Dbox 3D Slider Lite plugin <=1.2.2 - Multiple Authenticated SQL injection vulnerabilities 2018-01-11
Testimonial Slider WordPress Testimonial Slider plugin <=1.2.4 - Authenticated SQL Injection vulnerability 2018-01-11
Church Admin WordPress Church Admin plugin <=0.564 - Unauthenticated Directory Traversal vulnerability 2018-01-10
SagePay Server Gateway for WooCommerce WordPress SagePay Server Gateway for WooCommerce plugin <=1.0.8 - Unauthenticated Cross-Site Scripting (XSS) vulnerability 2018-01-10
WordPress Download Manager WordPress Download Manager plugin <=2.9.60 - Cross-Site Request Forgery (CSRF) vulnerability 2018-01-10
LearnDash LMS WordPress LearnDash LMS plugin <=2.5.3 - Unauthenticated arbitrary file upload vulnerability 2018-01-10
Simple Download Monitor WordPress Simple Download Monitor plugin <=3.5.3 - Authenticated Cross-Site Scripting (XSS) vulnerability 2018-01-09
ImageInject WordPress ImageInject plugin 1.15 - Stored Cross-Site Scripting vulnerability 2018-01-09
ImageInject WordPress ImageInject plugin 1.15 - Cross-Site Request Forgery vulnerability 2018-01-09
Simple Download Monitor WordPress Simple Download Monitor plugin <=3.5.3 - Authenticated Cross-Site Scripting (XSS) vulnerability 2018-01-09
Media from FTP WordPress Media from FTP plugin <=9.84 - Authenticated Directory Traversal vulnerability 2018-01-09
GD Rating System WordPress GD Rating System plugin 2.3 - Cross-Site Scripting (XSS) vulnerability 2018-01-09
GD Rating System WordPress GD Rating System plugin 2.3 - Directory Traversal vulnerability 2018-01-09
GD Rating System WordPress GD Rating System plugin 2.3 - Cross-Site Scripting (XSS) vulnerability (2) 2018-01-09
GD Rating System WordPress GD Rating System plugin 2.3 - Directory Traversal vulnerability (2) 2018-01-09
GD Rating System WordPress GD Rating System plugin 2.3 - Directory Traversal vulnerability (3) 2018-01-09
GD Rating System WordPress GD Rating System plugin 2.3 - Directory Traversal vulnerability (4) 2018-01-09