WordPress Plugins Vulnerabilities Please use the search to find what you're looking for Product Title Disclosure Date FireStats WordPress Firestats Plugin <= 1.6.5 - Remote Configuration File Download 2010-07-09 Simple:Press WordPress Simple:Press Plugin 4.3.0 - SQL Injection Vulnerability 2010-07-04 Cimy Counter WordPress Cimy Counter Plugin <= 0.9.5 - Vulnerabilities 2010-06-26 Gigya Socialize WordPress Gigya Socialize Plugin 1.0/1.1.x - Cross-Site Scripting Vulnerability 2010-06-04 Cimy Counter WordPress Cimy Counter Plugin 0.9.4 - HTTP Response Splitting and Cross-Site Scripting Vulnerabilities 2010-05-05 NextGEN Gallery WordPress NextGEN Gallery Plugin <= 1.5.1 - XSS Vulnerability 2010-04-06 Copperleaf Photolog WordPress Copperleaf Photolog Plugin 0.16 - SQL injection Vulnerability 2010-02-15 Events WordPress Events Plugin - SQL Injection Vulnerability 2010-01-02 Image Manager WordPress Image Manager Plugins - Shell Upload 2009-12-05 Google Analytics WordPress Google Analytics Plugin 3.2.4 - 404 Error Page Cross-Site Scripting Vulnerability 2009-12-04 WP Cumulus WordPress WP Cumulus Plugin <= 1.21 - XSS 2009-12-02 WP-PHPList WordPress WP-PHPList Plugin 2.10.2 - Cross-Site Scripting Vulnerability 2009-11-29 WP Cumulus WordPress WP-Cumulus <= 1.20 - Vulnerabilities 2009-11-25 FireStats WordPress FireStats Plugin 1.0.2 - Multiple Cross-Site Scripting and Authentication Bypass Vulnerabilities 2009-11-24 Subscribe to Comments WordPress Subscribe to Comments Plugin 2.0 - Multiple Cross-Site Scripting Vulnerabilities 2009-11-16 Trashbin WordPress Trashbin Plugin 0.1 - Cross-Site Scripting Vulnerability 2009-11-15 FuctWeb CapCC WordPress CAPTCHA Fuctweb CapCC Plugin 1.0 - Security Bypass Vulnerability 2009-11-13 WP Cumulus WordPress WP-Cumulus Plugin 1.x - Cross-Site Scripting Vulnerability 2009-11-09 JD WordPress JD-WordPress 2.0 RC2 - Remote file inclusion 2009-10-19 WP Forum Server WordPress WP Forum Server Plugin <= 2.3 - Multiple SQL Injection 2009-10-15 155 156 157 158 ... 159 160 161