ThreatPress

WordPress Vulnerabilities Database

Daily updated database of WordPress plugins, themes and WordPress core vulnerabilities. Our R&D team monitors a large number of sources to add new vulnerabilities to the database on daily basis.

Vulnerabilities

Please use the search to find what you're looking for

Product Title Disclosure Date
oQey Headers WordPress oQey Headers Plugin <= 0.3 - SQL Injection 2011-08-27
Collision Testimonials WordPress Collision Testimonials Plugin <= 3.0 - SQL Injection 2011-08-27
Super CAPTCHA WordPress Super CAPTCHA Plugin <= 2.2.4 - SQL Injection 2011-08-27
MM Forms Community WordPress MM Forms Community Plugin <= 1.2.3 - SQL Injection 2011-08-27
Js-Appointment WordPress Js-Appointment Plugin <= 1.5 - SQL Injection 2011-08-27
Photoracer WordPress Photoracer Plugin <= 1.0 - SQL Injection 2011-08-26
SendIt WordPress SendIt Plugin <= 1.5.9 - Blind SQL Injection 2011-08-25
Twitter Feed WordPress Twitter Feed Plugin <= 0.3.1 - XSS 2011-08-23
MM Duplicate WordPress MM Duplicate Plugin <= 1.2 - SQL Injection 2011-08-22
UnGallery WordPress UnGallery plugin <= 1.5.8 - Local File Disclosure 2011-08-20
Block Spam By Math Reloaded WordPress Block Spam By Math Reloaded Plugin - Bypass 2011-08-20
Menu Creator WordPress Menu Creator Plugin <= 1.1.7 - SQL Injection 2011-08-18
Allow PHP in Posts and Pages WordPress Allow PHP in Posts and Pages Plugin <= 2.0.0.RC1 - SQL Injection 2011-08-18
Global Content Blocks WordPress Global Content Blocks Plugin <= 1.2 - SQL Injection 2011-08-18
Ajax Gallery WordPress Ajax Gallery Plugin <= 3.0 - SQL Injection 2011-08-18
Forum WordPress Forum Plugin <= 1.7.8 - SQL Injection 2011-08-18
DS FAQ WordPress DS FAQ Plugin <= 1.3.2 - SQL Injection 2011-08-18
WP Stats Dashboard WordPress WP Stats Dashboard Plugin 2.6.5.1 - Multiple Cross Site Scripting Vulnerabilities 2011-08-17
Fast Secure Contact WordPress Fast Secure Contact Form 3.0.3.1 - Cross Site Scripting 2011-08-17
OdiHost Newsletter WordPress OdiHost Newsletter Plugin <= 1.0 - SQL Injection 2011-08-17