WordPress vulnerability database
Security programs Bounty leaderboard API Protect
Report
🎉 Check out our updated Community and new Developer plans!
Stream Logo

Stream

Plugin

Changelog

Claim

VDP

Developer

XWP

Current version

3.9.3

Installations

80,000

Last updated

5 months ago

Vulnerability history

0 present
5 patched

Auth. Insecure Direct Object References (IDOR) vulnerability <= 3.9.2

4.3

25 April, 2023

CrossSite Request Forgery (CSRF) vulnerability <= 3.9.2

5.4

18 April, 2023

Subscriber+ Alert Creation vulnerability < 3.9.2

4.3

16 January, 2023

SQL Injection (SQLi) vulnerability <= 3.8.1

6.0

18 October, 2021

Unauthenticated Events Export <= 3.0.5

31 May, 2016

Solutions

WordPress security Vulnerability database Vulnerability API Bug bounty program Plugin auditing Active security programs NEW

WordPress security

Pricing & features For care plans For hosts For plugins NEW Documentation

Patchstack

About us Careers Media Kit Articles & insight Whitepaper 2022 NEW

Social

DPA Privacy Policy Terms & Conditions © 2023 Patchstack

Solutions

WordPress security Vulnerability database Vulnerability API Bug bounty program Plugin auditing Active security programs NEW

WordPress security

Pricing & features For care plans For hosts For plugins NEW Documentation

Patchstack

About us Careers Media Kit Articles & insight Whitepaper 2022 NEW

Social

Let us know if we have missed a vulnerability reported elsewhere

Report arrow right Close

Thank you for contributing!

Successfully submit vulnerabilities and receive an invite to our Alliance platform.

Learn more arrow right Close