ThreatPress

WordPress Vulnerabilities Database

Daily updated database of WordPress plugins, themes and WordPress core vulnerabilities. Our R&D team monitors a large number of sources to add new vulnerabilities to the database on daily basis.

Vulnerabilities

Please use the search to find what you're looking for

Product Title Disclosure Date
DMSGuestbook WordPress DMSGuestbook Plugin <= 1.7.0 - Multiple XSS 2008-02-05
DMSGuestbook WordPress DMSGuestbook Plugin <= 1.7.0 - SQL Injection 2008-02-05
DMSGuestbook WordPress DMSGuestbook Plugin <= 1.8.0 - Directory Traversal 2008-02-05
Contact Form WordPress Contact Form Plugin <= 7.3 - Remote File Inclusion 2008-02-04
WassUp WordPress WassUp Plugin <= 1.4.3 - Multiple SQL Injection 2008-01-31
Migration WordPress Migration Plugin <= 1.0 - CSRF 2008-01-31
AdServe WordPress AdServe Plugin <= 0.2 - SQL Injection 2008-01-31
fGallery WordPress fGallery Plugin <= 2.4.1 - SQL Injection 2008-01-30
WP Call WordPress WP Call Plugin <= 0.3 - SQL Injection 2008-01-30
WP Forum Server WordPress WP Forum Server Plugin <= 1.7.4 - SQL Injection 2008-01-22
WP FileManager WordPress FileManager Plugin <= 1.2 - Arbitrary File Upload 2008-01-10
Captcha WordPress Captcha Plugin <= 2.5 - Multiple XSS 2008-01-09
Math Comment Spam Protection WordPress Math Comment Spam Protection Plugin <= 2.1 - CSRF 2008-01-09
Math Comment Spam Protection WordPress Math Comment Spam Protection Plugin <= 2.1 - XSS 2008-01-09
Cryptographp WordPress Cryptographp Plugin <= 1.2 - Multiple XSS 2008-01-09
Contact Form WordPress Contact Form Plugin <= 1.5 - Multiple CSRF 2008-01-09
Contact Form WordPress Contact Form Plugin <= 1.5 - Multiple XSS 2008-01-09
WordPress WordPress <= 2.0.11 - Multiple Directory Traversal 2008-01-09
WordPress WordPress <= 2.0.11 - Multiple Vulnerabilities 2008-01-09
WordPress WordPress <= 2.0.3 - Directory Traversal 2008-01-09