ThreatPress

WordPress Vulnerabilities Database

WordPress Plugins Vulnerabilities

Please use the search to find what you're looking for

Product Title Disclosure Date
WP Private Content Plus WordPress WP Private Content Plus plugin <= 1.31 - Unauthenticated Options Change vulnerability 2019-08-27
Pie Register WordPress Pie Register plugin <= 3.1.1 - SQL Injection (SQLi) vulnerability 2019-08-27
Import Export WordPress Users WordPress Import Export WordPress Users plugin <= 1.3.1 - CSV Injection vulnerability 2019-08-26
Easy Forms for Mailchimp WordPress Easy Forms for Mailchimp plugin <= 6.5.2 - Code Injection vulnerability 2019-08-23
WebLibrarian WordPress Web Librarian plugin <= 3.5.4 - SQL Injection (SQLi) vulnerability 2019-08-21
Easy Property Listings WordPress Easy Property Listings plugin <= 3.3.5 - Cross-Site Scripting (XSS) vulnerability 2019-08-19
WP SVG Icons WordPress WP SVG Icons plugin <= 3.2.2 - Cross-Site Request Forgery (CSRF) vulnerability 2019-08-16
Email Subscribers & Newsletters WordPress Email Subscribers & Newsletters plugin <= 4.1.6 - Cross-Site Scripting (XSS) vulnerability 2019-08-14
WP Fastest Cache WordPress WP Fastest Cache plugin <= 0.8.9.5 - Directory Traversal vulnerability 2019-08-14
Ultimate Member WordPress Ultimate Member plugin <= 2.0.53 - Cross-Site Scripting (XSS) vulnerability 2019-08-14
Simple 301 Redirects – Addon – Bulk Uploader WordPress Simple 301 Redirects Addon Bulk Uploader plugin <= 1.2.4 - Unauthenticated option changes and other security issues 2019-08-12
CformsII WordPress CformsII plugin <= 15.0.1 - Unauthenticated HTML Injection & Cross-Site Request Forgery (CSRF) vulnerabilities 2019-08-12
Give WordPress Give plugin <= 2.5.0 - SQL Injection (SQLi) vulnerability 2019-08-12
PPOM for WooCommerce WordPress PPOM for WooCommerce plugin <= 18.3 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability 2019-08-12
Restaurant Reservations WordPress Restaurant Reservations plugin <= 1.3 - Unauthenticated Options Change vulnerability 2019-08-12
Login or Logout Menu Item WordPress Login or Logout Menu Item plugin <= 1.1.1 - Unauthenticated Options Change vulnerability 2019-08-08
JoomSport WordPress JoomSport plugin <= 3.3 - SQL Injection (SQLi) vulnerability 2019-08-08
Learning Courses WordPress Learning Courses plugin <= 4.7 - Unauthenticated Options Change vulnerability 2019-08-06
Popup Builder WordPress Popup Builder plugin <= 3.44 - SQL Injection (SQLi) vulnerability 2019-08-06
Booking WordPress Booking plugin <= 2.4 - Unauthenticated Options Change vulnerability 2019-08-06