ThreatPress

WordPress Vulnerabilities Database

WordPress Plugins Vulnerabilities

Please use the search to find what you're looking for

Product Title Disclosure Date
Font Organizer WordPress Font Organizer plugin <=2.1.1 - Cross-Site Scripting (XSS) vulnerability 2019-03-22
Social Warfare WordPress Social Warfare plugin <= 3.5.2 - Unauthenticated Arbitrary Settings Update vulnerability 2019-03-22
NextScripts WordPress NextScripts plugin <= 4.2.7 - Cross-Site Scripting (XSS) vulnerability 2019-03-22
WP Google Maps WordPress WP Google Maps plugin <= 7.10.41 - Cross-Site Scripting (XSS) vulnerability 2019-03-22
WP Live Chat Support WordPress WP Live Chat Support plugin <= 8.0.17 - Cross-Site Scripting (XSS) vulnerability 2019-03-22
YOP Poll WordPress YOP Poll plugin <= 6.0.2 - Cross-Site Scripting (XSS) vulnerability 2019-03-22
Easy WP SMTP WordPress Easy WP SMTP plugin <= 1.3.9 - Unauthenticated arbitrary "wp_options" import vulnerability 2019-03-20
GraceMedia Media Player WordPress GraceMedia Media Player plugin 1.0 - Local File Inclusion (LFI) vulnerability 2019-03-19
WP Support Plus Responsive Ticket System WordPress WP Support Plus Responsive Ticket System plugin <= 9.1.1 - Stored Cross-Site Scripting (XSS) vulnerability 2019-03-19
FormCraft WordPress FormCraft plugin <= 1.2.1 - Cross-Site Request Forgery (CSRF) vulnerability 2019-03-13
Smart Forms WordPress Smart Forms plugin <= 2.5.15 - Cross-Site Request Forgery (CSRF) vulnerability 2019-03-13
Abandoned Cart Lite WordPress Abandoned Cart Lite plugin <= 5.1.3 - Stored Cross-Site Scripting (XSS) vulnerability 2019-03-12
Abandoned Cart Pro WordPress Abandoned Cart Pro plugin <= 7.12.0 - Stored Cross-Site Scripting (XSS) vulnerability 2019-03-12
Caldera Forms WordPress Caldera Forms plugin <= 1.8.1 - Unspecified security issue related to Caldera Forms Pro API 2019-03-12
Contact Form Email WordPress Contact Form Email plugin <= 1.2.65 - Cross-Site Scripting (XSS) vulnerability 2019-03-12
Contact Form Email WordPress Contact Form Email plugin <= 1.2.65 - Cross-Site Request Forgery (CSRF) vulnerability 2019-03-12
WP Fastest Cache WordPress WP Fastest Cache plugin <= 0.8.9.0 - Unauthenticated Arbitrary File Deletion vulnerability 2019-03-12
Blog2Social WordPress Blog2Social plugin <= 5.0.2 - Authenticated Cross-Site Scripting (XSS) vulnerability 2019-03-12
Quiz And Survey Master WordPress Quiz And Survey Master plugin <= 6.2.1 - Authenticated Cross-Site Scripting (XSS) vulnerability 2019-03-12
Give WordPress Give plugin <= 2.3.0 - Reflected Cross-Site Scripting (XSS) vulnerability 2019-03-12