Report WordPress vulnerabilities, earn prizes and become an Alliance member!
████
███████ ██████████████████████████████████████████
Pending
████
███████ ███████████████████████████████████
Pending
████
██████████████ █████████████████████████████████████████████████
Pending
████
██████████████ ███████████████████████████████████
Pending
████
█████████████████████ ██████████████████████████████████████████
Pending
████
█████████████████████ ███████████████████████████████████
Pending
████
█████████████████████ ████████████████████████████████████████████████████████
Pending
████
███████ ██████████████████████████████████████████
Pending
████
███████ ████████████████████████████████████████████████████████
Pending
████
█████████████████████ ████████████████████████████████████████████████████████
Pending
████
██████████████ █████████████████████████████████████████████████
Pending
████
██████████████ ██████████████████████████████████████████
Pending
████
██████████████ ██████████████████████████████████████████
Pending
████
█████████████████████ █████████████████████████████████████████████████
Pending
████
███████ ███████████████████████████████████
Pending
████
██████████████ ██████████████████████████████████████████
Pending
████
██████████████ ██████████████████████████████████████████
Pending
████
███████ ████████████████████████████████████████████████████████
Pending
████
██████████████ █████████████████████████████████████████████████
Pending
████
███████ ███████████████████████████████████
Pending
Plugin
Sunshine Photo Cart Order Manipulation vulnerability
5 September, 2023
Plugin
SendPress Newsletters Cross Site Request Forgery (CSRF)
5 September, 2023
Plugin
SendPress Newsletters Cross Site Scripting (XSS)
5 September, 2023
Plugin
Rescue Shortcodes Cross Site Scripting (XSS) vulnerability
5 September, 2023
Plugin
Photo Gallery Slideshow & Masonry Tiled Gallery Cross Site Scripting (XSS) vulnerability
1 September, 2023
Plugin
Sermon'e – Sermons Online Reflected Cross Site Scripting (XSS) vulnerability
1 September, 2023
Plugin
Vertical Marquee Plugin Cross Site Scripting (XSS)
22 August, 2023
Plugin
Typing Effect Cross Site Scripting (XSS) vulnerability
17 August, 2023
Plugin
wp tell a friend popup form Cross Site Scripting (XSS) vulnerability
26 July, 2023
Plugin
wp tell a friend popup form Cross Site Request Forgery (CSRF) vulnerability
26 July, 2023
Plugin
Pinpoint Booking System Parameter Tampering
20 July, 2023
Plugin
Elastic Email Sender Cross Site Scripting (XSS)
20 July, 2023
Plugin
Art Decoration Shortcode Cross Site Scripting (XSS)
19 July, 2023
Plugin
Shortcode IMDB Cross Site Request Forgery (CSRF)
11 July, 2023
Plugin
Image Social Feed Plugin Cross Site Scripting (XSS) vulnerability
7 July, 2023
Plugin
Animated Number Counters Cross Site Scripting (XSS) vulnerability
4 July, 2023
Plugin
Simple Site Verify Cross Site Scripting (XSS) vulnerability
4 July, 2023
Plugin
ApplyOnline – Application Form Builder and Manager Cross Site Scripting (XSS) vulnerability
26 June, 2023
Plugin
Five Star Restaurant Reservations Reflected Cross Site Scripting (XSS) vulnerability
23 June, 2023
Plugin
Seed Fonts Cross Site Scripting (XSS) vulnerability
16 June, 2023
Plugin
WP Matterport Shortcode Cross Site Scripting (XSS)
15 June, 2023
Plugin
Flo Forms Cross Site Scripting (XSS) vulnerability
15 June, 2023
Plugin
TS Webfonts for さくらのレンタルサーバ Cross Site Request Forgery (CSRF) vulnerability
30 May, 2023
Plugin
WordPress Social Login Cross Site Scripting (XSS) vulnerability
30 May, 2023
Plugin
Yandex Metrica Counter Cross Site Scripting (XSS) vulnerability
30 May, 2023
Plugin
Worthy – VG WORT Integration für WordPress 6497609 CrossSite Request Forgery (CSRF) vulnerability
30 May, 2023
Plugin
Unite Gallery Lite Cross Site Scripting (XSS) vulnerability
30 May, 2023
Plugin
Telegram Bot & Channel Cross Site Scripting (XSS) vulnerability
29 May, 2023
Plugin
Unite Gallery Lite Local File Inclusion vulnerability
22 May, 2023
Plugin
EventPrime Sensitive Data Exposure
22 May, 2023
Plugin
EventPrime Reflected Cross Site Scripting (XSS)
22 May, 2023
Plugin
Video Gallery Cross Site Scripting (XSS) vulnerability
15 May, 2023
Plugin
video carousel slider with lightbox Cross Site Scripting (XSS) vulnerability
15 May, 2023
Plugin
Button Cross Site Scripting (XSS) vulnerability
12 May, 2023
Plugin
iframe popup Cross Site Scripting (XSS) vulnerability
12 May, 2023
Plugin
wordpress vertical image slider plugin Cross Site Scripting (XSS) vulnerability
9 May, 2023
Plugin
WP Responsive Tabs horizontal vertical and accordion Tabs Reflected Cross Site Scripting (XSS) vulnerability
9 May, 2023
Plugin
Hostel Cross Site Scripting (XSS)
4 May, 2023
Plugin
Multi Rating Cross Site Scripting (XSS)
4 May, 2023
Plugin
Multi Rating Unauth Arbitrary rating value change
4 May, 2023
Plugin
Multi Rating Cross Site Request Forgery (CSRF)
4 May, 2023
Plugin
Progress Bar Cross Site Scripting (XSS) vulnerability
24 April, 2023
Plugin
Verified Reviews (Avis Vérifiés) Cross Site Scripting (XSS) vulnerability
20 April, 2023
Plugin
Live Chat by Formilla – Real-time Chat & Chatbots Plugin Cross Site Scripting (XSS) vulnerability
19 April, 2023
Plugin
Ebook Store Broken Authentication vulnerability
19 April, 2023
Plugin
Ebook Store Cross Site Scripting (XSS) vulnerability
19 April, 2023
Plugin
Subscribers – Free Web Push Notifications Cross Site Scripting (XSS) vulnerability
19 April, 2023
Plugin
Category Specific RSS feed Subscription Cross Site Scripting (XSS) vulnerability
19 April, 2023
Plugin
Video Grid Cross Site Scripting (XSS) vulnerability
18 April, 2023
Plugin
Optima Express + MarketBoost IDX Plugin Cross Site Scripting (XSS)
14 April, 2023
Plugin
Simple Popup Images Cross Site Scripting (XSS) vulnerability
13 April, 2023
Plugin
Landing Page Builder – Free Landing Page Templates Local File Inclusion vulnerability
13 April, 2023
Plugin
Comments Ratings Cross Site Request Forgery (CSRF) vulnerability
7 April, 2023
Plugin
Tiny carousel horizontal slider plus Cross Site Scripting (XSS) vulnerability
6 April, 2023
Plugin
Libsyn Publisher Hub Sensitive Data Exposure vulnerability
4 April, 2023
Plugin
affiliate-toolkit – WordPress Affiliate Plugin toolkit plugin <= 3.3.3 Cross Site Scripting (XSS) vulnerability
30 March, 2023
Plugin
Social Proof (Testimonial) Slider Cross Site Scripting (XSS) vulnerability
29 March, 2023
Plugin
Full Width Banner Slider Wp Reflected CrossSite Scripting (XSS) vulnerability
28 March, 2023
Plugin
Continuous Image Carousel With Lightbox Reflected CrossSite Scripting (XSS) vulnerability
27 March, 2023
Plugin
Userlike – WordPress Live Chat plugin Cross Site Scripting (XSS) vulnerability
21 March, 2023
Plugin
Lazy Social Comments Cross Site Scripting (XSS) vulnerability
21 March, 2023
Plugin
Disqus Conditional Load Cross Site Scripting (XSS) vulnerability
21 March, 2023
Plugin
Vertical scroll recent post Cross Site Scripting (XSS) vulnerability
21 March, 2023
Plugin
Kanban Boards for WordPress Cross Site Scripting (XSS) vulnerability
20 March, 2023
Plugin
WP Content Filter – Censor All Offensive Content From Your Site Cross Site Scripting (XSS) vulnerability
20 March, 2023
Plugin
TreePress – Easy Family Trees & Ancestor Profiles Cross Site Scripting (XSS) vulnerability
20 March, 2023
Plugin
Surbma | GDPR Proof Cookie Consent & Notice Bar Cross Site Scripting (XSS) vulnerability
17 March, 2023
Plugin
Hotel Booking Lite Cross Site Request Forgery (CSRF) vulnerability
16 March, 2023
Plugin
Yandex.News Feed by Teplitsa Cross Site Scripting (XSS) vulnerability
14 March, 2023
Plugin
Daily Prayer Time Cross Site Request Forgery (CSRF) vulnerability
8 March, 2023
Plugin
Daily Prayer Time Cross Site Scripting (XSS) vulnerability
8 March, 2023
Plugin
Event Espresso 4 Decaf Bypass vulnerability
5 March, 2023
Plugin
Leyka Cross Site Scripting (XSS) vulnerability
3 March, 2023
Plugin
Leyka Cross Site Request Forgery (CSRF) vulnerability
3 March, 2023
Plugin
Simple Slug Translate Cross Site Scripting (XSS) vulnerability
27 February, 2023
Plugin
Simple YouTube Responsive Cross Site Scripting (XSS) vulnerability
24 February, 2023
Plugin
Jobs for WordPress Cross Site Scripting (XSS)
21 February, 2023
Plugin
CP Multi View Event Calendar Broken Access Control vulnerability
20 February, 2023
Plugin
Video Gallery – YouTube Gallery Cross Site Scripting (XSS) vulnerability
20 February, 2023
Plugin
Books Gallery Cross Site Request Forgery (CSRF) vulnerability
20 February, 2023
Plugin
Protected Posts Logout Button Broken Access Control vulnerability
20 February, 2023
Plugin
Protected Posts Logout Button Cross Site Scripting (XSS) vulnerability
20 February, 2023
Plugin
Olevmedia Shortcodes Cross Site Scripting (XSS) vulnerability
15 February, 2023
Plugin
WP Post Rating Vote Manipulation Vulnerability
15 February, 2023
Plugin
WordPress Email Marketing Plugin – WP Email Capture Cross Site Request Forgery (CSRF) vulnerability
15 February, 2023
Plugin
WordPress Email Marketing Plugin – WP Email Capture Cross Site Scripting (XSS) vulnerability
15 February, 2023
Plugin
Inline Tweet Sharer – Twitter Sharing Plugin Cross Site Scripting (XSS) vulnerability
15 February, 2023
Plugin
WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) Cross Site Request Forgery (CSRF) vulnerability
15 February, 2023
Plugin
WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) Cross Site Scripting (XSS) vulnerability
15 February, 2023
Plugin
Interactive Geo Maps Cross Site Scripting (XSS) vulnerability
15 February, 2023
Plugin
Quick Paypal Payments Cross Site Scripting (XSS) vulnerability
15 February, 2023
Plugin
Quick Contact Form Cross Site Scripting (XSS)
15 February, 2023
Plugin
Podlove Subscribe button Cross Site Request Forgery (CSRF) vulnerability
15 February, 2023
Plugin
Podlove Subscribe button Cross Site Scripting (XSS) vulnerability
15 February, 2023
Plugin
Podlove Podcast Publisher Cross Site Request Forgery (CSRF) vulnerability
15 February, 2023
Plugin
Archivist – Custom Archive Templates Cross Site Request Forgery (CSRF) vulnerability
15 February, 2023
Plugin
Archivist – Custom Archive Templates Cross Site Scripting (XSS) vulnerability
15 February, 2023
Plugin
Click to Call or Chat Buttons Cross Site Scripting (XSS) vulnerability
15 February, 2023
Plugin
Quick Paypal Payments Cross Site Scripting (XSS)
14 February, 2023
Plugin
Quick Paypal Payments Broken Access Control
14 February, 2023
Plugin
Quick Paypal Payments Cross Site Scripting (XSS)
14 February, 2023
Plugin
Twitch Player Cross Site Scripting (XSS) vulnerability
13 February, 2023
Plugin
Auto Hide Admin Bar Cross Site Scripting (XSS) vulnerability
7 February, 2023
Plugin
Quick Contact Form Broken Access Control
6 February, 2023
Plugin
Quick Contact Form Cross Site Scripting (XSS) vulnerability
6 February, 2023
Plugin
Chained Quiz Cross Site Scripting (XSS)
6 February, 2023
Plugin
Watu Quiz Cross Site Scripting (XSS)
3 February, 2023
Plugin
WebinarIgnition Cross Site Scripting (XSS)
3 February, 2023
Plugin
Podlove Podcast Publisher Cross Site Scripting (XSS)
3 February, 2023
Plugin
Pinpoint Booking System Cross Site Scripting (XSS)
2 February, 2023
Plugin
VikBooking Hotel Booking Engine & PMS Cross Site Scripting (XSS)
27 January, 2023
Plugin
Booking calendar, Appointment Booking System Bypass vulnerability
27 January, 2023
Plugin
Booking calendar, Appointment Booking System Cross Site Scripting (XSS)
27 January, 2023
Plugin
Booking calendar, Appointment Booking System Broken Access Control
27 January, 2023
Plugin
Booking calendar, Appointment Booking System Cross Site Request Forgery (CSRF)
27 January, 2023
Plugin
Organization chart Cross Site Scripting (XSS)
27 January, 2023
Plugin
Organization chart Cross Site Request Forgery (CSRF)
27 January, 2023
Plugin
Namaste! LMS Cross Site Scripting (XSS)
27 January, 2023
Plugin
YouTube Embed, Playlist and Popup by WpDevArt Cross Site Scripting (XSS)
23 January, 2023
Plugin
Image and Video Lightbox, Image PopUp Cross Site Scripting (XSS)
23 January, 2023
Plugin
VikRentCar Cross Site Scripting (XSS)
20 January, 2023
Plugin
MailOptin Cross Site Scripting (XSS)
20 January, 2023
Plugin
Social Like Box and Page by WpDevArt Cross Site Scripting (XSS)
20 January, 2023
Plugin
RegistrationMagic Arbitrary Price Change
20 January, 2023
Plugin
RegistrationMagic Content Injection
20 January, 2023
Plugin
Quick Event Manager Broken Access Control
20 January, 2023
Plugin
Quick Event Manager Cross Site Request Forgery (CSRF)
20 January, 2023
Plugin
Quick Event Manager Cross Site Scripting (XSS)
20 January, 2023
Plugin
My Tickets Payment Bypass Vulnerability
20 January, 2023
Plugin
Quiz Maker Content Spoofing
20 January, 2023
Plugin
Responsive Vertical Icon Menu Cross Site Request Forgery (CSRF) Leading To Settings Change Vulnerability
20 January, 2023
Plugin
WP Time Slots Booking Form Broken Access Control vulnerability
20 January, 2023
Plugin
Category Specific RSS feed Subscription Cross Site Request Forgery (CSRF) vulnerability
20 January, 2023
Plugin
WP eBay Product Feeds Cross Site Scripting (XSS) vulnerability
20 January, 2023
Plugin
WP Flipclock Cross Site Scripting (XSS) vulnerability
20 January, 2023
Plugin
Very Simple Google Maps Cross Site Scripting (XSS) vulnerability
20 January, 2023
Plugin
Coming Soon by Supsystic Cross Site Request Forgery (CSRF) vulnerability
19 January, 2023
Plugin
Page Loading Effects Cross Site Scripting (XSS) vulnerability
19 January, 2023