Shortcodes Ultimate

Plugin

Set alert

Changelog

Claim

VDP

Developer

Vova

Latest version

7.4.2

Installations

500,000

Last updated

2 weeks ago

Vulnerability history

0 present

24 patched

Authenticted (Contributor+) Stored CrossSite Scripting via 'dataurl' Attribute vulnerability <= 7.4.0

6.5

3 July, 2025

Cross Site Scripting (XSS) Vulnerability <= 7.3.5

6.5

5 June, 2025

Authenticated (Contributor+) Stored CrossSite Scripting via src Parameter vulnerability <= 7.3.3

6.5

4 March, 2025

Authenticated (Contributor+) DOMBased Stored CrossSite Scripting vulnerability <= 7.2.2

6.5

23 October, 2024

Authenticated (Contributor+) Stored CrossSite Scripting via su_lightbox Shortcode vulnerability <= 7.1.6

6.5

5 June, 2024

Shortcodes Ultimate

Developer

Latest version

Installations

Last updated

Vulnerability history

Vulnerability mitigation

Code security

Bug bounty

Use cases

Resources

Patchstack

Vulnerability mitigation

Code security

Bug bounty

Use cases

Resources

Patchstack

Shortcodes Ultimate

Developer

Latest version

Installations

Last updated

Vulnerability history

Vulnerability mitigation

Code security

Bug bounty

Use cases

Resources

Patchstack

Vulnerability mitigation

Code security

Bug bounty

Use cases

Resources

Patchstack

Let us know if we have missed a vulnerability reported elsewhere

reCAPTCHA's verification failed!

Thank you for contributing!