WordPress Plugin Vulnerabilities Please use the search to find what you're looking for Product Title Disclosure Date AdServe WordPress AdServe Plugin <= 0.2 - SQL Injection 2008-01-31 fGallery WordPress fGallery Plugin <= 2.4.1 - SQL Injection 2008-01-30 WP Call WordPress WP Call Plugin <= 0.3 - SQL Injection 2008-01-30 WP Forum Server WordPress WP Forum Server Plugin <= 1.7.4 - SQL Injection 2008-01-22 WP FileManager WordPress FileManager Plugin <= 1.2 - Arbitrary File Upload 2008-01-10 Captcha WordPress Captcha Plugin <= 2.5 - Multiple XSS 2008-01-09 Math Comment Spam Protection WordPress Math Comment Spam Protection Plugin <= 2.1 - CSRF 2008-01-09 Math Comment Spam Protection WordPress Math Comment Spam Protection Plugin <= 2.1 - XSS 2008-01-09 Cryptographp WordPress Cryptographp Plugin <= 1.2 - Multiple XSS 2008-01-09 Contact Form WordPress Contact Form Plugin <= 1.5 - Multiple CSRF 2008-01-09 Contact Form WordPress Contact Form Plugin <= 1.5 - Multiple XSS 2008-01-09 Anti-Spam Image WordPress Peter's Random Anti-Spam Image Plugin <= 0.2.4 - XSS 2008-01-09 PictPress WordPress PictPress Plugin <= 0.91 - Multiple Directory Traversal 2007-12-14 BackUpWordPress WordPress BackUpWordPress Plugin <= 0.4.2 - Remote File Inclusion 2007-11-02 FeedBurner WordPress FeedBurner Plugin <= 2.2 - CSRF 2007-10-05 Feed Reader WordPress Feed Reader Plugin <= 3.10 - XSS 2007-09-30 Feed Stats WordPress Feed Stats Plugin <= 2.3 - Multiple XSS 2007-07-31 Automattic Stats WordPress Automattic Stats Plugin <= 1.0 - XSS 2007-06-20 AdSense Deluxe WordPress AdSense Deluxe Plugin <= 0.9 - CSRF 2007-05-22 Akismet WordPress Akismet Plugin <= 2.0.1 - Unspecified vulnerability 2007-05-15 171 172 ... 173 174 175