ThreatPress

WordPress Vulnerability Database

Daily updated database of WordPress plugins, themes and WordPress core vulnerabilities. Our R&D team monitors a large number of sources to add new vulnerabilities to the database on daily basis.

All WordPress Vulnerabilities

Please use the search to find what you're looking for

Product Title Disclosure Date
Good LMS WordPress Good LMS premium plugin <= 2.1.4 - Unauthenticated SQL Injection (SQLi) vulnerability 2020-10-10
Dynamic Content for Elementor WordPress Dynamic Content for Elementor premium plugin <= 1.9.5.6 - Authenticated Remote Code Execution (RCE) vulnerability 2020-10-08
HyperComments WordPress HyperComments plugin <= 1.2.2 - Unauthenticated Arbitrary File Deletion vulnerability 2020-10-07
WPBakery Page Builder WordPress WPBakery Page Builder premium plugin <= 6.4 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability 2020-10-07
Real Estate 7 WordPress Real Estate 7 premium theme <= 3.0.4 - Unauthenticated Reflected Cross-Site Scripting (XSS) vulnerability 2020-10-07
Team Showcase WordPress Team Showcase plugin <= 1.22.15 - PHP Object Injection vulnerability 2020-10-05
Post Grid WordPress Post Grid plugin <= 2.0.72 - PHP Object Injection vulnerability 2020-10-05
Team Showcase WordPress Team Showcase plugin <= 1.22.15 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability 2020-10-05
Post Grid WordPress Post Grid plugin <= 2.0.72 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability 2020-10-05
WPO365 WordPress Microsoft Office 365 / Azure AD | LOGIN plugin <= 11.6 - JWT Signature Verification Bypass vulnerability 2020-10-02
Brilliance WordPress Brilliance theme <=1.2.9 - Unauthenticated Function Injection vulnerability 2020-10-01
MedZone Lite WordPress MedZone Lite <=1.2.5 - Unauthenticated Function Injection vulnerability 2020-10-01
Regina Lite WordPress Regina Lite theme <= 2.0.5 - Unauthenticated Function Injection vulnerability 2020-10-01
Transcend WordPress Transcend theme <= 1.1.9 - Unauthenticated Function Injection vulnerability 2020-10-01
Affluent WordPress Affluent theme <= 1.1.1 - Unauthenticated Function Injection vulnerability 2020-10-01
Bonkers WordPress Bonkers theme <= 1.0.5 - Unauthenticated Function Injection vulnerability 2020-10-01
Antreas WordPress Antreas theme <= 1.0.6 - Unauthenticated Function Injection vulnerability 2020-10-01
NatureMag Lite WordPress NatureMag Lite theme <=1.0.4 - Unauthenticated Function Injection vulnerability 2020-10-01
Shapely WordPress Shapely theme <= 1.2.8 - Unauthenticated Function Injection vulnerability 2020-10-01
NewsMag WordPress NewsMag theme <= 2.4.1 - Unauthenticated Function Injection vulnerability 2020-10-01