ThreatPress

WordPress Vulnerabilities Database

Daily updated database of WordPress plugins, themes and WordPress core vulnerabilities. Our R&D team monitors a large number of sources to add new vulnerabilities to the database on daily basis.

Vulnerabilities

Please use the search to find what you're looking for

Product Title Disclosure Date
WP SpamFree WordPress WP Spam Free Plugin - SQL Injection 2011-10-11
Ultimate Form Builder Lite Contact Form for WordPress – Ultimate Form Builder Lite plugin <=1.3.6 - SQL Injection (SQLi) vulnerability 2017-10-24
Add Edit Delete Listing Module WordPress Add Edit Delete Listing Module plugin 1.0 - Blind SQL Injection vulnerability 2017-08-17
AJAX Search WordPress AJAX Post Search Plugin <= 1.2 - SQL Injection 2012-11-08
Bannerize WordPress Bannerize Plugin <= 2.8.6 - SQL Injection 2011-09-01
Contact Form WordPress Contact Form Plugin <= 1.1.9 - SQL Injection 2015-07-19
Content Audit WordPress Content Audit Plugin <= 1.6.0 - SQL Injection 2014-08-22
DS FAQ WordPress DS FAQ Plugin <= 1.3.2 - SQL Injection 2011-08-18
fMoblog WordPress fMoblog Plugin 2.1 - SQL Injection Vulnerability 2009-03-17
NewsLetter WordPress Newsletter Plugin - SQL Injection #1 2008-10-20
Spreadsheet WordPress Spreadsheet Plugin <= 0.6 - SQL Injection 2008-04-27
WordPress WordPress <= 0.7 - SQL injection 2012-01-04
WordPress WordPress <= 1.5.1.2 - SQL injection 2005-07-01
WordPress WordPress <= 1.5.2 - SQL injection 2006-03-06
WordPress WordPress <= 2.0.5 - SQL Injection 2007-01-08
WordPress WordPress <= 2.0.6 - SQL Injection vulnerability 2007-01-12
WordPress WordPress <= 2.1 - SQL Injection 2007-05-22
WordPress WordPress <= 2.1.2 - SQL Injection vulnerability 2007-04-09
WordPress WordPress <= 2.2 - SQL Injection 2007-06-08
WordPress WordPress <= 2.2.1 - SQL Injection 2007-08-03