ThreatPress

WordPress Vulnerabilities Database

Daily updated database of WordPress plugins, themes and WordPress core vulnerabilities. Our R&D team monitors a large number of sources to add new vulnerabilities to the database on daily basis.

Vulnerabilities

Please use the search to find what you're looking for

Product Title Disclosure Date
Booking Calendar Contact Form WordPress Booking Calendar Contact Form Plugin 1.1.23 - Unauthenticated SQL Injection 2016-01-25
Booking Calendar Contact Form WordPress Booking Calendar Contact Form Plugin 1.1.24 - Addslashes SQL Injection 2016-01-27
Booking Calendar WordPress Booking Calendar Plugin - SQL Injection 2014-05-21
Booking Calendar WordPress Booking Calendar Plugin 6.2 - SQL Injection 2016-07-14
Booking System WordPress Booking System Plugin <= 2.0 - Blind SQL Injection 2015-07-07
Broken Link Manager WordPress Broken Link Manager Plugin <= 0.4.5 - SQL Injection 2015-07-04
Simple Share Buttons Adder WordPress BSK PDF Manager Plugin - Multiple SQL Injection Vulnerabilities 2014-07-09
BuddyPress WordPress BuddyPress Plugin <= 1.2.9 - SQL Injection 2015-05-15
BuddyPress WordPress BuddyPress Plugin <= 1.7.1 - Multiple SQL Injections 2015-05-15
BuddyPress WordPress BuddyPress Plugin 1.5.5 - Remote SQL Injection 2012-03-31
BulletProof Security WordPress BulletProof Security Plugin <= .51 - SQL Injection 2014-10-07
Business Intelligence Lite WordPress Business Intelligence Lite Plugin <= 1.6.1 - SQL Injection 2015-04-01
Business Intelligence WordPress Business Intelligence Plugin - SQL injection 2015-04-02
Calculated Fields Form WordPress Calculated Fields Form Plugin <= 1.0.10 - Remote SQL Injection 2015-03-02
Car Rental System WordPress Car Rental System Plugin <= 3.0 - SQL Injection 2015-08-26
Poll WordPress Cardoza Poll Plugin <= 33.5 - SQL Injection 2015-05-15
Cart66 Lite WordPress Cart66 Lite Plugin <= 1.5.3 - SQL Injection 2015-01-02
CDNVOTE WordPress CDNVOTE Plugin <= 0.4.1 - Multiple SQL Injection 2015-01-01
CevherShare WordPress CevherShare Plugin 2.0 - SQL Injection 2011-09-26
Chained Quiz WordPress Chained Quiz plugin <= 1.0.8 - Unauthenticated SQL Injection (SQLi) vulnerability 2018-08-28