ThreatPress

WordPress Vulnerabilities Database

Daily updated database of WordPress plugins, themes and WordPress core vulnerabilities. Our R&D team monitors a large number of sources to add new vulnerabilities to the database on daily basis.

Vulnerabilities

Please use the search to find what you're looking for

Product Title Disclosure Date
File Groups WordPress File Groups Plugin <= 1.1.2 - SQL Injection 2011-08-17
IP-Logger WordPress IP Logger Plugin <= 3.0 - SQL Injection 2011-08-16
WordPress WordPress <= 3.1.2 - SQL Injection 2011-08-10
WordPress WordPress <= 3.1.2 - Arbitrary File Upload vulnerability 2011-08-10
WordPress WordPress <= 3.1.2 - Multiple vulnerabilities 2011-08-10
WordPress WordPress <= 3.1.2 - Clickjacking Attacks 2011-08-10
WordPress WordPress <= 3.1.2 - Multiple Unspecified Remote vulnerabilities 2011-08-10
WordPress WordPress <= 3.1.2 - Unspecified vulnerability #1 2011-08-10
WordPress WordPress <= 3.1.2 - Unspecified vulnerability #2 2011-08-10
eShop WordPress eShop Plugin 6.2.8 - Multiple Cross Site Scripting Vulnerabilities 2011-08-10
Media Library WordPress Media Library Categories Plugin <= 1.0.6 - SQL Injection 2011-08-06
UPM Pools WordPress UPM Polls plugin <= 1.0.3 - SQL Injection 2011-08-06
Social Slider WordPress Social Slider Plugin <= 5.6.5 - SQL Injection 2011-08-05
ProPlayer WordPress ProPlayer Plugin <= 4.7.7 - SQL Injection 2011-08-05
E-commerce WordPress E-commerce Plugin <= 3.8.4 - SQL Injection Exploit 2011-08-05
WP eCommerce WordPress WP e-Commerce Plugin 3.8.6 - Cross Site Scripting 2011-08-04
TimThumb WordPress TimThumb Plugin 1.32 - Remote Code Execution 2011-08-03
bSuite WordPress bSuite Plugin 4.0.7 - Multiple HTML Injection Vulnerabilities 2011-07-11
WordPress WordPress 3.1.3 - SQL Injection Vulnerabilities 2011-07-01
Pretty Link Lite WordPress Pretty Link Lite Plugin 1.4.56 - Multiple SQL Injection Vulnerabilities 2011-06-27