Report WordPress vulnerabilities, earn prizes and become an Alliance member!
Plugin
Super Testimonial Pro Auth. Stored CrossSite Scripting (XSS) vulnerability
15 November, 2022
Plugin
Testimonials Auth. Stored CrossSite Scripting (XSS) vulnerability
15 November, 2022
Plugin
WP CSV Exporter Auth. SQL Injection (SQLi) vulnerability
9 November, 2022
Plugin
Image Hover Effects Css3 Auth. Stored CrossSite Scripting (XSS) vulnerability
3 November, 2022
Plugin
Salat Times Auth. Stored CrossSite Scripting (XSS) vulnerability
2 November, 2022
Plugin
WP Contact Slider Auth. Stored CrossSite Scripting (XSS) vulnerability
10 October, 2022
Plugin
Social Media Follow Buttons Bar Authenticated Stored CrossSite Scripting (XSS) vulnerability
27 September, 2022
Plugin
Comment Guestbook Authenticated Stored CrossSite Scripting (XSS) vulnerability
26 September, 2022
Plugin
Meks Easy Social Share Authenticated Stored CrossSite Scripting (XSS) vulnerability
26 September, 2022
Plugin
We’re Open! Authenticated Stored CrossSite Scripting (XSS) vulnerability
20 September, 2022
Plugin
Top Bar Authenticated Stored CrossSite Scripting (XSS) vulnerability
19 September, 2022
Plugin
Social Rocket Authenticated Stored CrossSite Scripting (XSS) vulnerability
19 September, 2022
Plugin
Advanced Comment Form Auth. Stored CrossSite Scripting (XSS) vulnerability
15 September, 2022
Plugin
Donation Thermometer Authenticated Stored CrossSite Scripting (XSS) vulnerability
7 September, 2022
Plugin
Launcher: Coming Soon & Maintenance Mode Authenticated Stored CrossSite Scripting (XSS) vulnerability
25 August, 2022
Plugin
Scroll To Top Authenticated Stored CrossSite Scripting (XSS) vulnerability
23 August, 2022
Plugin
Float to Top Button Authenticated Stored CrossSite Scripting (XSS) vulnerability
23 August, 2022
Plugin
Social Media Share Buttons | MashShare Authenticated Stored CrossSite Scripting (XSS) vulnerability
16 June, 2022
Plugin
Ninja Forms Authenticated Stored CrossSite Scripting (XSS) vulnerability
7 June, 2022
Plugin
Custom Share Buttons with Floating Sidebar Authenticated Stored CrossSite Scripting (XSS) vulnerability
26 May, 2022
Plugin
underConstruction Authenticated Stored CrossSite Scripting (XSS) vulnerability
26 May, 2022
Plugin
Export any WordPress data to XML/CSV Authenticated SQL Injection (SQLi) vulnerability
20 May, 2022
Plugin
WP Subscribe Authenticated Stored CrossSite Scripting (XSS) vulnerability
29 April, 2022
Plugin
Webba Booking Authenticated Stored CrossSite Scripting (XSS) vulnerability
15 April, 2022
Plugin
WP Maintenance Authenticated Stored CrossSite Scripting (XSS) vulnerability
15 April, 2022
Plugin
Chaty Authenticated Stored CrossSite Scripting (XSS) vulnerability
8 April, 2022
Plugin
Ad Injection Stored CrossSite Scripting (XSS) & RCE vulnerabilities
23 March, 2022
Plugin
Export All URLs Reflected CrossSite Scripting (XSS) vulnerability
21 March, 2022
Plugin
Export All URLs Private/Draft Post/Page Title Disclosure via CrossSite Request Forgery (CSRF) vulnerability
21 March, 2022
Plugin
MC4WP Authenticated Stored CrossSite Scripting (XSS) vulnerability
2 March, 2022
Plugin
Social Media Feather Authenticated Stored CrossSite Scripting (XSS) vulnerability
10 February, 2022
Plugin
Floating Social Media Icon Authenticated Stored CrossSite Scripting (XSS) vulnerability
27 October, 2021
Plugin
Testimonial Stored CrossSite Scripting (XSS) vulnerability
13 October, 2021
Plugin
Storefront Footer Text Stored CrossSite Scripting (XSS) vulnerability
11 October, 2021
Plugin
Booking.com Banner Creator Stored CrossSite Scripting (XSS) vulnerability
5 October, 2021
Plugin
Booking.com Product Helper Stored CrossSite Scripting (XSS) vulnerability
5 October, 2021
Plugin
Google Language Translator Stored CrossSite Scripting (XSS) vulnerability
5 October, 2021
Plugin
Coming Soon, Under Construction & Maintenance Mode By Dazzler Stored CrossSite Scripting (XSS) vulnerability
4 October, 2021
Plugin
Video Gallery – Vimeo and YouTube Gallery Stored CrossSite Scripting (XSS) vulnerability
21 September, 2021
Plugin
YITH Maintenance Mode Authenticated Stored CrossSite Scripting (XSS) vulnerability
15 September, 2021
Plugin
Simple Social Media Share Buttons Authenticated Stored CrossSite Scripting (XSS) vulnerability
13 September, 2021
Plugin
Coming soon and Maintenance mode Authenticated Stored CrossSite Scripting (XSS) vulnerability
13 September, 2021
Plugin
Easy Accordion Authenticated Stored CrossSite Scripting (XSS) vulnerability
10 September, 2021
Plugin
Appointment Hour Booking Stored CrossSite Scripting (XSS) vulnerability
6 September, 2021
Plugin
Cookie Notice & Compliance for GDPR / CCPA Stored CrossSite Scripting (XSS) vulnerability
30 August, 2021
Plugin
Icegram Authenticated Stored CrossSite Scripting (XSS) vulnerability
17 August, 2021
Plugin
Daily Prayer Time Authenticated Stored CrossSite Scripting (XSS) vulnerability
10 August, 2021
Plugin
AddToAny Share Buttons Authenticated Stored CrossSite Scripting (XSS) vulnerability
9 August, 2021
Plugin
Site Reviews Authenticated Stored CrossSite Scripting (XSS) vulnerability
9 August, 2021
Plugin
Sitewide Notice WP Authenticated Stored CrossSite Scripting (XSS) vulnerability
2 August, 2021
Plugin
Business Hours Indicator Authenticated Stored CrossSite Scripting (XSS) vulnerability
2 August, 2021
Plugin
HD Quiz Authenticated Stored CrossSite Scripting (XSS) vulnerability
26 July, 2021
Plugin
Simple Banner Authenticated Stored CrossSite Scripting (XSS) vulnerability
26 July, 2021
Plugin
GiveWP Authenticated Stored CrossSite Scripting (XSS) vulnerability
26 July, 2021
Plugin
Export Users With Meta Authenticated SQL Injection (SQLi) vulnerability
21 June, 2021