Report WordPress vulnerabilities, earn prizes and become an Alliance member!
████
█████████████████████ ███████████████████████████████████
Pending
████
█████████████████████ ███████████████████████████████████
Pending
████
█████████████████████ █████████████████████████████████████████████████
Pending
████
█████████████████████ ██████████████████████████████████████████
Pending
████
█████████████████████ ███████████████████████████████████
Pending
████
█████████████████████ ██████████████████████████████████████████
Pending
████
███████ ██████████████████████████████████████████
Pending
████
█████████████████████ ███████████████████████████████████
Pending
████
█████████████████████ ██████████████████████████████████████████
Pending
████
█████████████████████ ███████████████████████████████████
Pending
████
██████████████ █████████████████████████████████████████████████
Pending
Plugin
GD Security Headers Cross Site Scripting (XSS) vulnerability
17 August, 2023
Plugin
Contact form 7 Custom validation Unauth. SQL Injection (SQLi) vulnerability
17 August, 2023
Plugin
Doofinder for WooCommerce Open Redirection vulnerability
17 August, 2023
Plugin
PixTypes Cross Site Scripting (XSS) vulnerability
11 August, 2023
Plugin
Donations Made Easy – Smart Donations SQL Injection
11 August, 2023
Plugin
Onepage Builder – Easiest Landing Page Builder For WordPress SQL Injection
20 July, 2023
Plugin
Dynamic Visibility for Elementor Broken Access Control vulnerability
13 June, 2023
Plugin
WP ERP Reflected Cross Site Scripting (XSS) vulnerability
2 June, 2023
Plugin
MailChimp Subscribe Forms Open Redirection vulnerability
10 May, 2023
Plugin
Order Your Posts Manually Reflected Cross Site Scripting (XSS) vulnerability
9 May, 2023
Plugin
Order Your Posts Manually Reflected Cross Site Scripting (XSS) vulnerability
9 May, 2023
Plugin
Order Your Posts Manually SQL Injection vulnerability
9 May, 2023
Plugin
Woo Custom Emails Broken Access Control vulnerability
9 May, 2023
Plugin
Ultimate Addons for Contact Form 7 SQL Injection
9 May, 2023
Plugin
Radio Station Reflected Cross Site Scripting (XSS) vulnerability
9 May, 2023
Plugin
Maintenance Switch Cross Site Scripting (XSS)
28 April, 2023
Plugin
Mass Email To users Cross Site Scripting (XSS)
28 April, 2023
Plugin
Advanced Category Template Cross Site Scripting (XSS) vulnerability
24 April, 2023
Plugin
vSlider Multi Image Slider for WordPress Cross Site Request Forgery (CSRF)
19 April, 2023
Plugin
Shortcode IMDB SQL Injection
19 April, 2023
Plugin
The School Management – Education & Learning Management SQL Injection
19 April, 2023
Plugin
Accessibility Suite by Online ADA SQL Injection
19 April, 2023
Plugin
Kodex Posts likes Cross Site Request Forgery (CSRF)
19 April, 2023
Plugin
Email Subscription Popup Cross Site Scripting (XSS) vulnerability
13 April, 2023
Plugin
Neshan Maps SQL Injection
13 April, 2023
Plugin
Amelia Cross Site Scripting (XSS) vulnerability
6 April, 2023
Plugin
Dynamics 365 Integration Broken Access Control vulnerability
6 April, 2023
Plugin
Product Catalog Simple Reflected Cross Site Scripting (XSS) vulnerability
6 April, 2023
Plugin
Magic Post Thumbnail Cross Site Scripting (XSS) vulnerability
3 April, 2023
Plugin
PropertyHive Reflected Cross Site Scripting (XSS) vulnerability
3 April, 2023
Plugin
Affiliates Manager Cross Site Request Forgery (CSRF) vulnerability
29 March, 2023
Plugin
Advanced Page Visit Counter SQL Injection vulnerability
27 March, 2023
Plugin
WooCommerce JazzCash Gateway Plugin Cross Site Scripting (XSS)
22 March, 2023
Plugin
Open RDW kenteken voertuiginformatie Cross Site Scripting (XSS)
17 March, 2023
Plugin
Mortgage Calculator Estatik Reflected CrossSite Scripting (XSS) vulnerability
16 March, 2023
Plugin
Open Graphite Cross Site Scripting (XSS)
16 March, 2023
Plugin
Slideshow Gallery SQL Injection
16 March, 2023
Plugin
VideoWhisper Live Streaming Integration Remote Code Execution (RCE)
20 February, 2023
Plugin
Multi Rating Cross Site Scripting (XSS)
14 February, 2023
Plugin
微信机器人高级版 Reflected CrossSite Scripting (XSS) vulnerability
8 February, 2023
Plugin
Responsive Image Gallery, Gallery Album Cross Site Scripting (XSS)
3 February, 2023
Plugin
Multi Rating Unauth. Arbitrary Vote Increase/Decrease
2 February, 2023
Plugin
Image Hover Effects - Caption Hover with Carousel Cross Site Scripting (XSS)
2 February, 2023
Plugin
WPComplete Reflected Cross Site Scripting (XSS)
27 January, 2023
Plugin
Simple Photo Gallery SQL Injection
27 January, 2023
Plugin
User Meta Manager Reflected Cross Site Scripting (XSS) vulnerability
19 January, 2023
Plugin
Custom 404 Pro Admin+ SQL Injection Vulnerability
16 January, 2023
Plugin
Map Multi Marker Reflected CrossSite Scripting (XSS) vulnerability
13 January, 2023
Plugin
MagicForm Reflected Cross Site Scripting (XSS) Vulnerability
13 January, 2023
Plugin
Joli Table Of Contents Cross Site Request Forgery (CSRF) on Reset Settings vulnerability
7 January, 2023
Plugin
Launchpad – Coming Soon & Maintenance Mode Plugin CrossSite Request Forgery (CSRF) vulnerability
12 December, 2022
Plugin
Advanced Booking Calendar Unauth. SQL Injection (SQLi) vulnerability
2 December, 2022
Plugin
Advanced Booking Calendar Multiple CrossSite Scripting (CSRF) vulnerabilities
1 December, 2022
Plugin
WP ULike Race Condition vulnerability
24 November, 2022
Plugin
WP-Polls Polls plugin <= 2.76.0 Race Condition vulnerability
5 October, 2022
Plugin
Store Locator WordPress CrossSite Scripting (XSS) via CrossSite Request Forgery (CSRF) vulnerability
28 September, 2022
Plugin
Rate my Post – WP Rating System Race Condition vulnerability
14 September, 2022
Plugin
Rate my Post – WP Rating System CrossSite Request Forgery (CSRF) vulnerability
14 September, 2022
Plugin
WP-PostRatings PostRatings plugin <= 1.89 Rating Increase/Decrease via Race Condition vulnerability
31 August, 2022
Plugin
Event Calendar – Calendar Unauthenticated Event Deletion vulnerability
25 August, 2022
Plugin
Contest Gallery Authenticated SQL Injection (SQLi) vulnerability
9 August, 2022
Plugin
Admin Management Xtended Multiple CrossSite Request Forgery (CSRF) vulnerabilities
27 May, 2022
Plugin
Image Hover Effects Ultimate Authenticated Reflected CrossSite Scripting (XSS) vulnerability
4 May, 2022
Plugin
Download Monitor Authenticated Reflected CrossSite Scripting (XSS) vulnerability
29 October, 2021
Plugin
ThirstyAffiliates Authenticated Stored CrossSite Scripting (XSS) vulnerability
22 May, 2020