ThreatPress

WordPress Vulnerabilities Database

WordPress Plugins Vulnerabilities

Please use the search to find what you're looking for

Product Title Disclosure Date
Download Woocommerce Category Banner Management WordPress WooCommerce Category Banner Management plugin <= 1.1.0 - Unauthenticated Settings Change Vulnerability 2018-06-03
Add Social Share Messenger Buttons Whatsapp and Viber WordPress Add Social Share Messenger Buttons Whatsapp and Viber plugin <= 1.0.8 - Cross-site Request Forgery (CSRF) vulnerability 2018-06-03
Advance Search for WooCommerce WordPress Advance Search for WooCommerce plugin <= 1.0.9 - Stored Cross-site scripting (XSS) vulnerability 2018-06-03
Eu Cookie Notice WordPress Eu Cookie Notice plugin <= 1.0.6 - Cross-site request forgery (CSRF) vulnerability 2018-06-03
Mass Pages/Posts Creator WordPress Mass Pages/Posts Creator plugin <= 1.2.2 - Stored Cross-Site scripting (XSS) vulnerability 2018-06-03
Page Visit Counter WordPress Page Visit Counter plugin <= 4.0.9 - SQL Injection (SQLi) vulnerability 2018-06-03
WooCommerce Checkout For Digital Goods WordPress Woo Checkout for Digital Goods plugin <= 2.1 - Cross-site request forgery (CSRF) vulnerability 2018-06-03
WooCommerce Enhanced Ecommerce Analytics Integration with Conversion Tracking WordPress WooCommerce Enhanced Ecommerce Analytics Integration with Conversion Tracking plugin <= 1.8 - Cross-Site Request Forgery (CSRF) vulnerability 2018-06-03
WooCommerce Enhanced Ecommerce Analytics Integration with Conversion Tracking WordPress WooCommerce Enhanced Ecommerce Analytics Integration with Conversion Tracking plugin <= 1.8 - Cross-Site Scripting (XSS) vulnerability 2018-06-03
WooCommerce Product Attachment WordPress WooCommerce Product Attachment plugin <= 1.1.2 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability 2018-06-03
WooCommerce Quick Reports WordPress WooCommerce Quick Reports plugin <= 1.0.6 - Stored Cross-Site Scripting (XSS) vulnerability 2018-06-03
wpForo Forum WordPress wpForo Forum plugin <=1.4.9 - Unauthenticated SQL Injection (SQLi) vulnerability 2018-05-30
Loginizer WordPress Loginizer plugin 1.3.8-1.3.9 - Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability 2018-05-30
WP Live Chat Support WordPress WP Live Chat Support plugin <=8.0.07 - Authenticated Cross-Site Scripting (XSS) vulnerability 2018-05-17
Metronet Tag Manager WordPress Metronet Tag Manager plugin <=1.2.7 - Cross-Site Request Forgery (CSRF) vulnerability 2018-05-17
WP User Groups WordPress WP User Groups plugin <=2.0.0 - Cross-Site Request Forgery (CSRF) vulnerability 2018-05-14
WF Cookie Consent WordPress WF Cookie Consent plugin <=1.1.3 - Authenticated Persistent Cross-Site Scripting (XSS) vulnerability 2018-05-14
GD bbPress Attachments WordPress GD bbPress Attachments plugin <=2.5 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability 2018-05-14
Responsive Cookie Consent WordPress Responsive Cookie Consent plugin <=1.7 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability 2018-04-29
Cookie Consent WordPress Cookie Consent plugin <=2.3.9 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability 2018-04-29