Report WordPress vulnerabilities, earn prizes and become an Alliance member!
Plugin
Profile Builder CrossSite Request Forgery (CSRF) vulnerability
29 September, 2022
Plugin
Redirection for Contact Form 7 Unauthenticated Options Change and Content Injection vulnerability
29 September, 2022
Plugin
Andrea Pernici News Sitemap for Google Authenticated Stored CrossSite Scripting (XSS) vulnerability
4 May, 2022
Plugin
CalderaWP License Manager CrossSite Request Forgery (CSRF) vulnerability leading to Reflected CrossSite Scripting (XSS)
12 April, 2022
Plugin
WP-Appbox Appbox plugin <= 4.3.20 Authenticated Stored CrossSite Scripting (XSS) vulnerability
5 April, 2022