Report WordPress vulnerabilities, earn prizes and become an Alliance member!
████
█████████████████████ ████████████████████████████████████████████████████████
Pending
████
██████████████ ████████████████████████████████████████████████████████
Pending
████
█████████████████████ █████████████████████████████████████████████████
Pending
████
███████ ██████████████████████████████████████████
Pending
████
█████████████████████ ███████████████████████████████████
Pending
████
█████████████████████ ███████████████████████████████████
Pending
████
███████ ████████████████████████████████████████████████████████
Pending
████
██████████████ ████████████████████████████████████████████████████████
Pending
████
█████████████████████ ████████████████████████████████████████████████████████
Pending
████
██████████████ ██████████████████████████████████████████
Pending
████
█████████████████████ ███████████████████████████████████
Pending
████
██████████████ ████████████████████████████████████████████████████████
Pending
████
██████████████ ████████████████████████████████████████████████████████
Pending
████
██████████████ ████████████████████████████████████████████████████████
Pending
████
█████████████████████ █████████████████████████████████████████████████
Pending
████
█████████████████████ ██████████████████████████████████████████
Pending
████
███████ ██████████████████████████████████████████
Pending
████
█████████████████████ ██████████████████████████████████████████
Pending
████
██████████████ ███████████████████████████████████
Pending
████
██████████████ ████████████████████████████████████████████████████████
Pending
████
█████████████████████ ███████████████████████████████████
Pending
████
█████████████████████ ███████████████████████████████████
Pending
████
█████████████████████ ███████████████████████████████████
Pending
████
██████████████ ██████████████████████████████████████████
Pending
████
██████████████ ████████████████████████████████████████████████████████
Pending
████
██████████████ ████████████████████████████████████████████████████████
Pending
████
██████████████ ██████████████████████████████████████████
Pending
████
███████ ███████████████████████████████████
Pending
████
██████████████ █████████████████████████████████████████████████
Pending
████
███████ ████████████████████████████████████████████████████████
Pending
████
█████████████████████ ████████████████████████████████████████████████████████
Pending
████
██████████████ ████████████████████████████████████████████████████████
Pending
████
███████ █████████████████████████████████████████████████
Pending
████
█████████████████████ ███████████████████████████████████
Pending
████
██████████████ ██████████████████████████████████████████
Pending
████
█████████████████████ █████████████████████████████████████████████████
Pending
████
███████ ██████████████████████████████████████████
Pending
████
█████████████████████ ███████████████████████████████████
Pending
████
██████████████ ███████████████████████████████████
Pending
████
██████████████ ███████████████████████████████████
Pending
████
█████████████████████ ███████████████████████████████████
Pending
████
███████ ███████████████████████████████████
Pending
████
███████ ██████████████████████████████████████████
Pending
████
██████████████ ███████████████████████████████████
Pending
████
███████ █████████████████████████████████████████████████
Pending
████
███████ ████████████████████████████████████████████████████████
Pending
████
█████████████████████ ████████████████████████████████████████████████████████
Pending
████
█████████████████████ ██████████████████████████████████████████
Pending
████
███████ ██████████████████████████████████████████
Pending
████
█████████████████████ █████████████████████████████████████████████████
Pending
████
█████████████████████ █████████████████████████████████████████████████
Pending
████
█████████████████████ ████████████████████████████████████████████████████████
Pending
████
█████████████████████ ███████████████████████████████████
Pending
████
███████ █████████████████████████████████████████████████
Pending
████
█████████████████████ ██████████████████████████████████████████
Pending
████
██████████████ █████████████████████████████████████████████████
Pending
████
██████████████ ████████████████████████████████████████████████████████
Pending
████
█████████████████████ ████████████████████████████████████████████████████████
Pending
████
███████ ███████████████████████████████████
Pending
████
███████ █████████████████████████████████████████████████
Pending
████
██████████████ ██████████████████████████████████████████
Pending
████
███████ ███████████████████████████████████
Pending
████
██████████████ ████████████████████████████████████████████████████████
Pending
████
█████████████████████ █████████████████████████████████████████████████
Pending
████
███████ ████████████████████████████████████████████████████████
Pending
████
██████████████ ███████████████████████████████████
Pending
████
███████ █████████████████████████████████████████████████
Pending
████
█████████████████████ ██████████████████████████████████████████
Pending
████
██████████████ █████████████████████████████████████████████████
Pending
████
██████████████ ██████████████████████████████████████████
Pending
████
█████████████████████ ██████████████████████████████████████████
Pending
Plugin
Uncanny Toolkit for LearnDash Open Redirection vulnerability
7 days ago
Plugin
Uncanny Toolkit for LearnDash Broken Access Control vulnerability
7 days ago
Plugin
WP Inventory Manager Cross Site Request Forgery (CSRF) vulnerability
7 days ago
Plugin
WP Report Post SQL Injection vulnerability
30 May, 2023
Plugin
WP Report Post Cross Site Request Forgery (CSRF) vulnerability
30 May, 2023
Plugin
LH Password Changer Cross Site Request Forgery (CSRF) vulnerability
30 May, 2023
Plugin
Download Monitor Server Side Request Forgery (SSRF) vulnerability
30 May, 2023
Plugin
Recently Viewed Products PHP Object Injection vulnerability
25 May, 2023
Plugin
Flickr Justified Gallery Cross Site Request Forgery (CSRF) vulnerability
24 May, 2023
Plugin
WP Tiles Cross Site Request Forgery (CSRF) vulnerability
24 May, 2023
Plugin
SIS Handball SQL Injection vulnerability
23 May, 2023
Plugin
Stop Referrer Spam Cross Site Request Forgery (CSRF) vulnerability
18 May, 2023
Plugin
WooCommerce Predictive Search Broken Access Control vulnerability
18 May, 2023
Plugin
Simple Page Ordering Broken Access Control vulnerability
18 May, 2023
Plugin
WP Custom Cursors Cross Site Request Forgery (CSRF) vulnerability
15 May, 2023
Plugin
Hyphenator Cross Site Request Forgery (CSRF) vulnerability
12 May, 2023
Plugin
Post State Tags Cross Site Request Forgery (CSRF) vulnerability
12 May, 2023
Plugin
WP All Backup Cross Site Request Forgery (CSRF) vulnerability
12 May, 2023
Plugin
Column-Matic Matic plugin <= 1.3.3 Cross Site Scripting (XSS) vulnerability
12 May, 2023
Plugin
Google Site Verification plugin using Meta Tag Cross Site Request Forgery (CSRF) vulnerability
9 May, 2023
Plugin
Cryptocurrency Donation Box – Bitcoin & Crypto Donations SQL Injection vulnerability
4 May, 2023
Plugin
Library Viewer Cross Site Scripting (XSS) vulnerability
3 May, 2023
Plugin
Library Viewer Open Redirection vulnerability
3 May, 2023
Plugin
Emails & Newsletters with Jackmail CSV Injection
28 April, 2023
Plugin
Simple Giveaways Cross Site Request Forgery (CSRF) vulnerability
24 April, 2023
Plugin
Tippy Cross Site Scripting (XSS) vulnerability
24 April, 2023
Plugin
Video XML Sitemap Generator Cross Site Request Forgery (CSRF) vulnerability
24 April, 2023
Plugin
Inactive User Deleter Cross Site Request Forgery (CSRF) vulnerability
24 April, 2023
Plugin
Chronosly Events Calendar Cross Site Request Forgery (CSRF) vulnerability
24 April, 2023
Plugin
Album Gallery – WordPress Gallery Cross Site Request Forgery (CSRF) vulnerability
19 April, 2023
Plugin
Kaya QR Code Generator Cross Site Scripting (XSS) vulnerability
18 April, 2023
Plugin
PowerPress Podcasting Cross Site Scripting (XSS) vulnerability
17 April, 2023
Plugin
WP Reroute Email Cross Site Request Forgery (CSRF) vulnerability
14 April, 2023
Plugin
WP Reroute Email Auth. SQL Injection (SQLi) vulnerability
14 April, 2023
Plugin
Database Collation Fix Cross Site Request Forgery (CSRF) vulnerability
14 April, 2023
Plugin
ReviewX CSV Injection
13 April, 2023
Plugin
PixTypes Cross Site Request Forgery (CSRF) vulnerability
7 April, 2023
Plugin
Cryptocurrency All-in-One inOne plugin <= 3.0.19 Cross Site Scripting (XSS) vulnerability
6 April, 2023
Plugin
tencentcloud-cos cos plugin <= 1.0.7 Broken Access Control vulnerability
6 April, 2023
Plugin
IFrame Shortcode Cross Site Scripting (XSS) vulnerability
6 April, 2023
Plugin
PHP Compatibility Checker Cross Site Request Forgery (CSRF) vulnerability
6 April, 2023
Plugin
Transbank Webpay REST Auth. SQL Injection (SQLi) vulnerability
6 April, 2023
Plugin
Comment Reply Notification Cross Site Request Forgery (CSRF) vulnerability
4 April, 2023
Plugin
Wp Ultimate Review Cross Site Request Forgery (CSRF) vulnerability
29 March, 2023
Plugin
IP Blocker Lite Cross Site Request Forgery (CSRF) vulnerability
28 March, 2023
Plugin
CBX Currency Converter Cross Site Request Forgery (CSRF)
22 March, 2023
Plugin
Export Users Data Distinct CSV Injection
22 March, 2023
Plugin
amr users CSV Injection vulnerability
22 March, 2023
Plugin
Download Weather Station Cross Site Request Forgery (CSRF) vulnerability
21 March, 2023
Plugin
BigContact Cross Site Request Forgery (CSRF) vulnerability
21 March, 2023
Plugin
Google XML Sitemap for Mobile Cross Site Request Forgery (CSRF) vulnerability
20 March, 2023
Plugin
Read More Without Refresh Cross Site Scripting (XSS) vulnerability
20 March, 2023
Plugin
Simple Mobile URL Redirect Cross Site Request Forgery (CSRF) vulnerability
20 March, 2023
Plugin
Force First and Last Name as Display Name Cross Site Request Forgery (CSRF) vulnerability
16 March, 2023
Plugin
Website Monetization by MageNet Cross Site Request Forgery (CSRF) vulnerability
16 March, 2023
Plugin
Customify Cross Site Request Forgery (CSRF) vulnerability
14 March, 2023
Plugin
Google XML Sitemap for Videos Cross Site Request Forgery (CSRF) vulnerability
14 March, 2023
Plugin
Stock Ticker Broken Access Control vulnerability
13 March, 2023
Plugin
Site Reviews Cross Site Scripting (XSS) vulnerability
13 March, 2023
Plugin
Mass Delete Unused Tags Cross Site Request Forgery (CSRF) vulnerability
13 March, 2023
Plugin
Auto Prune Posts Cross Site Request Forgery (CSRF) vulnerability
13 March, 2023
Plugin
Clone Broken Access Control vulnerability
8 March, 2023
Plugin
Affiliate Super Assistent Cross Site Request Forgery (CSRF) vulnerability
8 March, 2023
Plugin
DecaLog Cross Site Request Forgery (CSRF) vulnerability
5 March, 2023
Plugin
WP Translitera Cross Site Request Forgery (CSRF) vulnerability
3 March, 2023
Plugin
Resize at Upload Plus Cross Site Request Forgery (CSRF) vulnerability
3 March, 2023
Plugin
About Me 3000 widget Cross Site Request Forgery (CSRF) vulnerability
3 March, 2023
Plugin
Total Poll Lite Broken Access Control vulnerability
3 March, 2023
Plugin
Simple CSV/XLS Exporter Authenticated CSV Injection Vulnerability
2 March, 2023
Plugin
Simple Vimeo Shortcode Cross Site Scripting (XSS) vulnerability
2 March, 2023
Plugin
DeepL Pro API translation Cross Site Request Forgery (CSRF) vulnerability
2 March, 2023
Plugin
Smart YouTube PRO Cross Site Request Forgery (CSRF) vulnerability
28 February, 2023
Plugin
WP Social Bookmarking Light Cross Site Request Forgery (CSRF) vulnerability
28 February, 2023
Plugin
Maspik – Spam blacklist Cross Site Request Forgery (CSRF) vulnerability
27 February, 2023
Plugin
Sheets To WP Table Live Sync Cross Site Request Forgery (CSRF) vulnerability
27 February, 2023
Plugin
WP Google Tag Manager Cross Site Request Forgery (CSRF) vulnerability
27 February, 2023
Plugin
Sp*tify Play Button for WordPress Cross Site Scripting (XSS) vulnerability
24 February, 2023
Plugin
phpinfo() WP Cross Site Request Forgery (CSRF) vulnerability
24 February, 2023
Plugin
YouTube Channel Cross Site Request Forgery (CSRF) vulnerability
24 February, 2023
Plugin
All In One Favicon Arbitrary File Deletion vulnerability
23 February, 2023
Plugin
Admin Block Country Cross Site Request Forgery (CSRF) vulnerability
23 February, 2023
Plugin
GMAce Cross Site Request Forgery (CSRF) vulnerability
23 February, 2023
Plugin
GMAce Arbitrary File Download vulnerability
23 February, 2023
Plugin
Read More Excerpt Link Cross Site Request Forgery (CSRF) vulnerability
21 February, 2023
Plugin
Minify HTML Cross Site Request Forgery (CSRF) vulnerability
21 February, 2023
Plugin
Theme Tweaker Cross Site Request Forgery (CSRF) vulnerability
20 February, 2023
Plugin
Easy Google Analytics for WordPress Broken Access Control vulnerability
20 February, 2023
Plugin
Product Reviews Import Export for WooCommerce Unauth. CSV Injection vulnerability
15 February, 2023
Plugin
Auto YouTube Importer Cross Site Request Forgery (CSRF) vulnerability
6 February, 2023
Plugin
Email Subscribers & Newsletters CSV Injection
6 February, 2023
Plugin
WordPress Comments Import & Export CSV Injection
6 February, 2023
Plugin
Commenter Emails CSV Injection
2 February, 2023
Plugin
Posts and Users Stats CSV Injection vulnerability
2 February, 2023
Plugin
Usersnap Cross Site Scripting (XSS)
2 February, 2023
Plugin
PHP Execution Cross Site Request Forgery (CSRF) vulnerability
2 February, 2023
Plugin
Noptin Unauth. CSV Injection vulnerability
27 January, 2023
Plugin
Site Reviews Unauth. CSV Injection vulnerability
27 January, 2023
Plugin
Simple Image Popup Cross Site Scripting (XSS)
27 January, 2023
Plugin
WP Pipes Auth. SQL Injection (SQLi) vulnerability
20 January, 2023
Plugin
Admin Log Cross Site Request Forgery (CSRF) vulnerability
19 January, 2023
Plugin
Nice PayPal Button Lite Cross Site Request Forgery (CSRF) vulnerability
19 January, 2023
Plugin
WP Tabs Slides Cross Site Request Forgery (CSRF) vulnerability
19 January, 2023
Plugin
SRS Simple Hits Counter Cross Site Request Forgery (CSRF) vulnerability
19 January, 2023
Plugin
WP Fast Cache Cross Site Request Forgery (CSRF) vulnerability
19 January, 2023
Plugin
Hover Image Cross Site Request Forgery (CSRF)
13 January, 2023
Plugin
DNUI Multiple Cross Site Request Forgery (CSRF)
13 January, 2023
Plugin
No API Amazon Affiliate Cross Site Scripting (XSS)
13 January, 2023
Plugin
WP Better Emails Cross Site Scripting (XSS)
13 January, 2023
Plugin
WP Super Popup Cross Site Scripting (XSS)
13 January, 2023
Plugin
Universal Star Rating CrossSite Request Forgery (CSRF) vulnerability
13 January, 2023
Plugin
WP CSV Exporter Auth. CSV Injection Vulnerability
8 December, 2022
Plugin
Custom Content by Country (by Shield Security) Broken Access Control vulnerability
2 December, 2022
Plugin
Export Users Data CSV Auth. CSV Injection vulnerability
30 November, 2022
Plugin
ProfileGrid Auth. CSV Injection vulnerability
17 November, 2022
Plugin
News Announcement Scroll Auth. Stored CrossSite Scripting (XSS) vulnerability
17 November, 2022
Plugin
User Blocker Auth. CSV Injection vulnerability
9 November, 2022
Plugin
Homepage Pop-up CrossSite Request Forgery (CSRF) vulnerability
1 November, 2022
Plugin
Homepage Pop-up Auth. Stored CrossSite Scripting (XSS) vulnerability
1 November, 2022
Plugin
IP Blacklist Cloud Auth. SQL Injection (SQLi) vulnerability
24 October, 2022
Plugin
IP Blacklist Cloud Auth. Stored CrossSite Scripting (XSS) vulnerability
24 October, 2022
Plugin
Simple SEO CrossSite Request Forgery (CSRF) vulnerability
20 October, 2022
Plugin
Simple SEO Broken Access Control vulnerability
20 October, 2022
Plugin
Mantenimiento web Auth. CrossSite Scripting (XSS) vulnerability
20 October, 2022
Plugin
Rock Convert Auth. CrossSite Scripting (XSS) vulnerability
13 October, 2022
Plugin
Page View Count CrossSite Request Forgery (CSRF) vulnerability
13 October, 2022
Plugin
Export Post Info Authenticated CSV Injection vulnerability
22 September, 2022
Plugin
Search Logger Authenticated SQL Injection (SQLi) vulnerability
20 September, 2022
Plugin
Export Post Info Authenticated Stored CrossSite Scripting (XSS) vulnerability
8 September, 2022
Plugin
Goolytics – Simple Google Analytics Simple Google Analytics plugin <= 1.1.1 Authenticated Stored CrossSite Scripting (XSS) vulnerability
7 September, 2022
Plugin
WP Server Health Stats Authenticated Stored CrossSite Scripting (XSS) vulnerability
22 August, 2022
Plugin
Social comments by WpDevArt Stored CrossSite Scripting (XSS) vulnerability
4 April, 2022
Plugin
Opensea Stored CrossSite Scripting (XSS) vulnerability
4 April, 2022
Plugin
Optimole Stored CrossSite Scripting (XSS) vulnerability
21 March, 2022
Plugin
BulletProof Security Stored CrossSite Scripting (XSS) vulnerability
22 February, 2022
Plugin
Shop Page WP Stored CrossSite Scripting (XSS) vulnerability
1 November, 2021
Plugin
Helpful Stored CrossSite Scripting (XSS) vulnerability
18 October, 2021
Plugin
Shared Files Stored CrossSite Scripting (XSS) vulnerability
18 October, 2021