ThreatPress

WordPress Vulnerabilities Database

WordPress Plugins Vulnerabilities

Please use the search to find what you're looking for

Product Title Disclosure Date
Stop User Enumeration WordPress Stop User Enumeration plugin <=1.3.19 - Authenticated Option Update vulnerability (Fremius Library security issue) 2019-03-02
WP Mobile Menu WordPress WP Mobile Menu plugin <=2.7.2 - Authenticated Option Update vulnerability (Fremius Library security issue) 2019-03-02
NextGEN Gallery WordPress NextGEN Gallery plugin <= 3.1.6 - Authenticated Option Update vulnerability (Fremius Library security issue) 2019-03-02
FooGallery WordPress FooGallery plugin <= 1.6.15 - Authenticated Option Update vulnerability (Fremius Library security issue) 2019-03-02
FooBox Image Lightbox WordPress FooBox Image Lightbox plugin <= 2.6.3 - Authenticated Option Update vulnerability (Fremius Library security issue) 2019-03-02
Image Photo Gallery Final Tiles Grid WordPress Image Photo Gallery Final Tiles Grid plugin <= 3.3.52 - Authenticated Option Update vulnerability (Fremius Library security issue) 2019-03-02
Easy Watermark WordPress Easy Watermark plugin 0.7.0 - Authenticated Option Update vulnerability (Fremius Library security issue) 2019-03-02
WooCommerce WordPress WooCommerce plugin <= 3.5.4 - Stored Cross-Site Scripting (XSS) vulnerability 2019-02-26
WP Cost Estimation & Payment Forms Builder WordPress WP Cost Estimation plugin < 9.644 - Arbitrary File Upload and Delete vulnerability 2019-02-14
WP Cost Estimation & Payment Forms Builder WordPress WP Cost Estimation plugin < 9.660 - Upload Directory Traversal vulnerability 2019-02-14
Simple Social Media Share Buttons WordPress Simple Social Media Share Buttons plugin 2.0.4-2.0.21 - Authenticated Option Injection vulnerability 2019-02-12
Parallax Scroll WordPress Parallax Scroll plugin <= 2.0.1 - Cross-Site Scripting (XSS) vulnerability 2019-02-06
Forminator WordPress Forminator plugin <= 1.5.4 - Unauthenticated Persistent Cross-Site Scripting (XSS) vulnerability 2019-02-06
Forminator WordPress Forminator plugin <= 1.5.4 - Authenticated Blind SQL Injection (SQLi) vulnerability 2019-02-06
Yet Another Stars Rating WordPress Yet Another Stars Rating plugin <= 1.8.6 - PHP Object Injection vulnerability 2019-01-28
Health Check & Troubleshooting WordPress Health Check & Troubleshooting plugin <= 1.2.3 - Authenticated Path Traversal vulnerability 2019-01-28
Health Check & Troubleshooting WordPress Health Check & Troubleshooting plugin <= 1.2.3 - Authenticated Lack of Authorisation (privilege escalation) vulnerability 2019-01-28
Wise Chat WordPress Wise Chat plugin <= 2.6.3 - Reverse Tabnabbing vulnerability 2019-01-25
Social Network Tabs WordPress Social Network Tabs premium plugin <=1.7.1 - Social Media API Key Leakage vulnerability 2019-01-17
Easy Redirect Manager WordPress Easy Redirect Manager plugin 2.18.18 - Cross-Site Scripting (XSS) vulnerability 2019-01-15