ThreatPress

WordPress Vulnerabilities Database

Daily updated database of WordPress plugins, themes and WordPress core vulnerabilities. Our R&D team monitors a large number of sources to add new vulnerabilities to the database on daily basis.

Vulnerabilities

Please use the search to find what you're looking for

Product Title Disclosure Date
Auctions WordPress Auctions Plugin 1.8.8 - SQL Injection 2011-09-14
E-commerce WordPress e-Commerce Plugin <= 3.8.6 - SQL Injection 2011-09-14
Forum Server WordPress Forum Server Plugin <= 1.7 - SQL Injection 2011-09-13
Tune Library WordPress Tune Library Plugin <= 2.17 - SQL Injection 2011-09-10
Event Registration WordPress Event Registration Plugin <= 5.44 - SQL Injection 2011-09-09
A to Z Category Listing WordPress A to Z Category Listing Plugin <= 1.3 - SQL Injection 2011-09-09
WP Filebase Download Manager WordPress WP Filebase Download Manager Plugin <= 0.2.9 - SQL Injection 2011-09-09
1 Flash Gallery WordPress 1 Flash Gallery Plugin - Arbitrary File Upload Exploit (Metasploit) 2011-09-08
Community Events WordPress Community Events Plugin <= 1.2.1 - SQL Injection 2011-09-08
Paid Downloads WordPress Paid Downloads Plugin <= 2.01 - SQL Injection 2011-09-08
Eventify WordPress Eventify - Simple Events Plugin <= 1.7.f SQL Injection 2011-09-07
SCORM Cloud WordPress SCORM Cloud Plugin <= 1.0.6.6 - SQL Injection 2011-09-07
KNR Author List Widget WordPress KNR Author List Widget Plugin <= 2.0.0 - SQL Injection 2011-09-06
Post Highlights WordPress Post Highlights Plugin <= 2.2 - SQL Injection 2011-09-06
Tweet Old Post WordPress Tweet Old Post Plugin <= 3.2.5 - SQL Injection 2011-09-06
oQey Gallery WordPress oQey Gallery Plugin <= 0.4.8 - SQL Injection 2011-09-05
Zotpress WordPress Zotpress Plugin <= 4.4 - SQL Injection 2011-09-04
Facebook Opengraph Meta WordPress Facebook Opengraph Meta Plugin <= 1.0 - SQL Injection 2011-09-03
VideoWhisper Video Presentation WordPress VideoWhisper Video Presentation Plugin <= 1.1 - SQL Injection 2011-09-02
Search Autocomplete WordPress Search Autocomplete Plugin <= 1.0.8 - SQL Injection 2011-09-01