Report WordPress vulnerabilities, earn prizes and become an Alliance member!
Plugin
Duplicate Post Page Menu & Custom Post Type Broken Access Control
27 June, 2023
Plugin
Ajax Pagination and Infinite Scroll Cross Site Request Forgery (CSRF) vulnerability
30 May, 2023
Plugin
Quick Page/Post Redirect Cross Site Scripting (XSS)
12 May, 2023
Plugin
Wise Chat Cross Site Request Forgery (CSRF) vulnerability
9 May, 2023
Plugin
WP Search Analytics Cross Site Scripting (XSS)
28 April, 2023
Plugin
AJAX Thumbnail Rebuild Broken Access Control vulnerability
28 April, 2023
Plugin
WP-CORS CORS plugin <= 0.2.1 Auth. Stored CrossSite Scripting (XSS) vulnerability
28 April, 2023
Plugin
WP-dTree dTree plugin <= 4.4.5 Cross Site Scripting (XSS)
19 April, 2023
Plugin
Login Page Styler Cross Site Scripting (XSS)
19 April, 2023
Plugin
Flyzoo Chat Cross Site Scripting (XSS)
19 April, 2023
Plugin
Continuous announcement scroller Cross Site Scripting (XSS)
19 April, 2023
Plugin
Affiliate Links Lite Cross Site Scripting (XSS) vulnerability
14 April, 2023
Plugin
Spiffy Calendar Auth. SQL Injection (SQLi) vulnerability
7 April, 2023
Plugin
PixFields Auth. CrossSite Scripting (XSS) vulnerability
29 March, 2023
Plugin
Custom Options Plus Cross Site Request Forgery (CSRF) vulnerability
16 March, 2023
Plugin
WP Custom Fields Search Cross Site Scripting (XSS)
20 February, 2023
Plugin
UsersWP CSV Injection
20 February, 2023
Plugin
Quick Event Manager Cross Site Scripting (XSS)
14 February, 2023
Plugin
Auto Affiliate Links Cross Site Request Forgery (CSRF) vulnerability
2 February, 2023
Plugin
Media Library Categories Cross Site Scripting (XSS)
20 January, 2023
Plugin
Freesoul Deactivate Plugins – Plugin manager and cleanup Content Spoofing
16 January, 2023