ThreatPress

WordPress Vulnerabilities Database

Daily updated database of WordPress plugins, themes and WordPress core vulnerabilities. Our R&D team monitors a large number of sources to add new vulnerabilities to the database on daily basis.

Vulnerabilities

Please use the search to find what you're looking for

Product Title Disclosure Date
Adicon Server WordPress Adicon Server plugin <= 1.2 - SQL Injection (SQLi) vulnerability 2019-01-07
AdRotate Banner Manager WordPress AdRotate Banner Manager plugin <= 5.2 - Authenticated SQL Injection (SQLi) vulnerability 2019-07-26
AdRotate WordPress AdRotate Plugin <= 3.6.5 - SQL Injection 2011-09-24
AdRotate WordPress AdRotate Plugin 3.9.4 - SQL Injection 2014-02-22
Ads Box WordPress Ads Box Plugin - SQL Injection 2012-11-26
Ads Pro WordPress Ads Pro plugin <= 3.4 - Cross-Site Scripting / SQL Injection 2017-07-25
AdServe WordPress AdServe Plugin <= 0.2 - SQL Injection 2008-01-31
Advanced Contact form 7 DB WordPress Advanced Contact form 7 DB plugin <= 1.6.0 - Authenticated SQL Injection (SQLi) vulnerability 2019-04-12
Advanced Contact form 7 DB WordPress Advanced Contact form 7 DB plugin <= 1.6.1 - SQL Injection (SQLi) vulnerability 2019-07-26
Advertizer WordPress Advertizer Plugin <= 1.0 - SQL Injection 2011-08-30
Ajax Gallery WordPress Ajax Gallery Plugin <= 3.0 - SQL Injection 2011-08-18
Ajax Store Locator WordPress Ajax Store Locator Plugin 1.2 - SQL Injection 2015-04-16
All in One Event Calendar WordPress All in One Event Calendar Plugin <= 1.9 - SQL Injection 2015-05-15
All In One WP Security & Firewall WordPress All In One WP Security & Firewall Plugin <= 3.8.7 - SQL Injection 2015-01-08
All In One WP Security & Firewall WordPress All In One WP Security & Firewall Plugin 3.9.0 - SQL Injection 2015-04-08
All-in-One Event Calendar WordPress All In One WP Security Plugin 3.8.2 - SQL Injection 2014-09-25
All Video Gallery WordPress All Video Gallery Plugin <= 1.2 - SQL Injection 2014-08-06
All Video Gallery WordPress All Video Gallery Plugin 1.1 - SQL Injection Vulnerability 2012-11-02
Allow PHP in Posts and Pages WordPress Allow PHP in Posts and Pages Plugin <= 2.0.0.RC1 - SQL Injection 2011-08-18
Amazon Product In a Post WordPress Amazon Product In a Post Plugin - SQL Injection 2015-05-07