ThreatPress

WordPress Vulnerabilities Database

Daily updated database of WordPress plugins, themes and WordPress core vulnerabilities. Our R&D team monitors a large number of sources to add new vulnerabilities to the database on daily basis.

Vulnerabilities

Please use the search to find what you're looking for

Product Title Disclosure Date
Daily Maui Photo Widget WordPress Daily Maui Photo Widget Plugin 0.2 - Multiple Cross-Site Scripting Vulnerabilities 2011-04-28
Ajax Recent Posts WordPress Ajax Recent Posts Plugin 1.0.1 - Cross-Site Scripting 2011-04-26
Sermon Browser WordPress Sermon Browser Plugin 0.43 - Cross-Site Scripting and SQL Injection Vulnerabilities 2011-04-26
Sermon Browser WordPress Sermon Browser Plugin 0.43 - SQL Injection 2011-04-26
Ajax Category Dropdown WordPress Ajax Category Dropdown Plugin 0.1.5 - Multiple Vulnerabilities 2011-04-22
WP Stars Rate Box WordPress StarsRateBox Plugin 1.1 - SQL Injection 2011-04-19
Gazette Edition WordPress Gazette Edition Theme 2.9.4 - Multiple Security Vulnerabilities 2011-04-12
Spell Checker WordPress Spellchecker Plugin 3.1 - Local and Remote File Include Vulnerabilities 2011-04-12
WPtouch WordPress WPtouch Plugin <= 1.9.20 - XSS 2011-04-07
Custom Pages WordPress Custom Pages Plugin 0.5.0.1 - Local File Inclusion 2011-04-05
Placester WordPress Placester Plugin 0.1 - Cross-Site Scripting 2011-04-03
BackWPup WordPress BackWPup Plugin - Remote and Local Code Execution 2011-03-28
Rating Widget WordPress Rating Widget Plugin 1.3.1 - Multiple Cross-Site Scripting Vulnerabilities 2011-03-17
Sodahead Polls WordPress Sodahead Polls Plugin 2.0.2 - Multiple Cross-Site Scripting Vulnerabilities 2011-03-17
Lazyest Gallery WordPress Lazyest Gallery Plugin 1.0.26 - Cross-Site Scripting 2011-03-10
1 Flash Gallery WordPress 1 Flash Gallery Plugin 0.2.5 - Cross-Site Scripting and SQL Injection 2011-03-08
PhotoSmash Galleries WordPress PhotoSmash Galleries Plugin 1.0.x - Cross-Site Scripting 2011-03-08
Inline Gallery WordPress Inline Gallery Plugin 0.3.9 - Cross-Site Scripting 2011-03-08
GRAND Flash Album Gallery WordPress GRAND Flash Album Gallery Plugin 0.55 - Multiple Vulnerabilities 2011-03-08
PHP Speedy WordPress PHP Speedy Plugin <= 0.5.2 - Remote Code Execution Exploit 2011-03-04