ThreatPress

WordPress Vulnerabilities Database

Daily updated database of WordPress plugins, themes and WordPress core vulnerabilities. Our R&D team monitors a large number of sources to add new vulnerabilities to the database on daily basis.

Vulnerabilities

Please use the search to find what you're looking for

Product Title Disclosure Date
fGallery WordPress fGallery Plugin <= 2.4.1 - SQL Injection 2008-01-30
WP Call WordPress WP Call Plugin <= 0.3 - SQL Injection 2008-01-30
WP Forum Server WordPress WP Forum Server Plugin <= 1.7.4 - SQL Injection 2008-01-22
WP FileManager WordPress FileManager Plugin <= 1.2 - Arbitrary File Upload 2008-01-10
Captcha WordPress Captcha Plugin <= 2.5 - Multiple XSS 2008-01-09
Math Comment Spam Protection WordPress Math Comment Spam Protection Plugin <= 2.1 - CSRF 2008-01-09
Math Comment Spam Protection WordPress Math Comment Spam Protection Plugin <= 2.1 - XSS 2008-01-09
Cryptographp WordPress Cryptographp Plugin <= 1.2 - Multiple XSS 2008-01-09
Contact Form WordPress Contact Form Plugin <= 1.5 - Multiple CSRF 2008-01-09
Contact Form WordPress Contact Form Plugin <= 1.5 - Multiple XSS 2008-01-09
WordPress WordPress <= 2.0.11 - Multiple Directory Traversal 2008-01-09
WordPress WordPress <= 2.0.11 - Multiple Vulnerabilities 2008-01-09
WordPress WordPress <= 2.0.3 - Directory Traversal 2008-01-09
WordPress WordPress <= 2.0.11 - XSS 2008-01-09
WordPress WordPress <= 2.0.9 - Multiple XSS 2008-01-09
WordPress WordPress <= 2.3.9 - SQL Injection 2008-01-09
Anti-Spam Image WordPress Peter's Random Anti-Spam Image Plugin <= 0.2.4 - XSS 2008-01-09
PictPress WordPress PictPress Plugin <= 0.91 - Multiple Directory Traversal 2007-12-14
WordPress WordPress <= 2.3.1 - SQL Injection 2007-12-11
WordPress WordPress <= 2.3.1 - Cookie Authentication Vulnerability 2007-11-19