WordPress security
Instantly fix and mitigate vulnerabilities
Plugin auditing
Paid auditing for WordPress vendors
Managed VDP
Start a security program for your plugin
Bug Bounty
Join the community and earn bounties
Enterprise API
At scale monitoring and vPatching for hosts
Vulnerability database
The latest WordPress security intelligence
Likely abandoned
Theme
Set alert
Changelog
Claim
VDP
WPoperation
1.2.8
N/A
2 years ago
Authenticated Arbitrary Plugin Activation/Deactivation vulnerability <= 1.2.8
8.1
28 January, 2022
CrossSite Request Forgery (CSRF) leading to Arbitrary Plugin Activation/Deactivation <= 1.2.8
24 January, 2022
Arbitrary File Upload vulnerability <= 1.2.8
8.8
24 December, 2021