Advisories
2020
2019
- Quick Page/Post Redirect Plugin [Unvalidated Redirects and Forwards]
- Subscribe2 [Sensitive Data Exposure]
- Gallery – Flagallery Photo Portfolio [CSRF → File Upload]
- Form Maker by WD [CSRF → LFI]
- Contact Form by WD [CSRF → LFI]
- Contact Form Builder [CSRF → LFI]
2017
- WordPress Download Manager [CSRF]
- Social Media Widget by Acurax [CSRF]
- CMS Tree Page View [CSRF, Privilege Escalation]
- Admin Menu Tree Page View [CSRF, Privilege Escalation]
- Admin Menu Tree Page View [CSRF, Privilege Escalation]
- Import users from CSV with meta [CSRF]
- Kiwi Social Share – Social Media Share Buttons & Icons [Privilege Escalation]
- CMS Tree Page View [CSRF, Privilege Escalation]
- WooZone - WooCommerce Amazon Affiliates [Authenticated Unrestricted Create/Update Admin User Password]
- WooZone - WooCommerce Amazon Affiliates [Authenticated Remote Code Execution]
- rtMedia for WordPress, BuddyPress and bbPress [Unauthenticated File Upload]
- WooZone - WooCommerce Amazon Affiliates [Local File Disclosure]
- WooZone - WooCommerce Amazon Affiliates [Arbitrary File Upload]
2016
- Beaver Builder Plugin [Authenticated Post Content Copy]
- Beaver Builder Plugin [Authenticated Persistent XSS]
- WPtouch Pro [Unauthenticated Persistent XSS]
- JQuery Html5 File Upload [Unauthenticated Options Update and Arbitrary File Upload]
- Viddler WordPress plugin [Unauthenticated Arbitrary File Upload]
- Simple User Registration [Privilege Escalation]
- N-Media Post Front-end Form [Unauthenticated Arbitrary File Upload]
- Front end file upload and manager Plugin [Unauthenticated Arbitrary File Upload]
- WooCommerce Product Addons [Unauthenticated Arbitrary File Upload]
- WordPress Zero Spam [Unauthenticated Persistent XSS]
- Photo Gallery by Supsystic [Privilege Escalation]
- User Access Manager [Reflected XSS]
- Product Catalog [Reflected XSS]
- FormBuilder [Reflected XSS]
- Booking Calendar [Reflected XSS]
- DELUCKS SEO [Authenticated Arbitrary File Download]
- Easy Forms for MailChimp [Reflected XSS]
- All in One SEO Pack - Robots.txt Feature [Reflected XSS]
- All in One SEO Pack - Sitemap Feature [Unauthenticated Stored XSS]
- Audio Attachment Widget [Unauthenticated Arbitrary File Download]
- WP Security Audit Log [Unauthorized Plugin Options Update - CSRF]
- WP Security Audit Log [Reflected XSS]
- WP Security Audit Log [CSRF → Plugin Options Update ]
- 360 Product Rotation [Unauthenticated Arbitrary File Upload]
- Profile Builder [Privilege Escalation]
- File Manager [Authenticated Arbitrary File Upload - Download]
- Wp-D3 [Reflected XSS]
- Wp-D3 [Authenticated Persistent XSS]
- SendPress Newsletters [Reflected XSS]
- SendPress Newsletters [Missing Capabilities Checks]
- Form Lightbox [Unauthenticated Options Update]
- Duplicate Post [Unauthorized Clone Posts]
- Double Opt-In for Download [Reflected XSS]
- Sauron [Reflected XSS]
- Fruitful [Reflected XSS]
- Memphis Documents Library [Unauthenticated Arbitrary File Download]
- Toolset Types [SQL Injection]
- SEO by SQUIRRLY™ [Privilege Escalation]
- SEO by SQUIRRLY™ [Path Traversal]
- Caldera Forms [Multisite Admins Remote Code Execution]
- EasyRotator for WordPress [Reflected XSS]
- MainWP Dashboard [Unauthenticated Local File Download]
- Share Buttons by AddThis [CSRF]
- Add Meta Tags [CSRF]
- DELUCKS SEO [Unauthenticated Options Update]
- BulletProof Security [Remote Code Execution]
- Profile Builder - front-end user registration, login and edit profile [Privilege Escalation]
- ThirstyAffiliates [Multiple Vulnerabilities]
- UpdraftPlus Backup and Restoration [Insuficient Directory Access Protection]
- WPTouch [Unauthenticated Stored XSS]
- WP Fastest Cache [Unauthorized Options Update]
- WP Fastest Cache [Local File Inclusion]
- Google SEO Pressor for Rich snippets [Unauthorized Profile Update]
- Google SEO Pressor for Rich snippets [SQL Injection]
- HDW Player Plugin [Reflected XSS]
- Caldera Forms [Sensitive Data Exposure]
- Kento Post View Counter [SQL Injection]
- Kento Post View Counter [Reflected XSS]
- WordPress [Authentication Bypass]
- Paid Memberships Pro [Send Email With Arbitrary Content]
- Paid Memberships Pro [Reflected XSS]
- Easy Table [Persistent XSS]
- Subscribe2 [Persistent XSS]
- Subscribe2 [Sensitive Data Exposure]
- Fluid Responsive Slideshow [Unauthorized Content Modification]
- Fluid Responsive Slideshow [Reflected XSS]
- Yoast SEO [Sensitive Data Exposure]
- WP-Members [CSRF]
- Compress JPEG & PNG images [Multiple Vulnerabilities]
- Admin Management Xtended [CSRF]
- GD Custom Posts And Taxonomies Tools [DoS]
- AG Custom Admin [CSRF]
- AG Custom Admin [Persistent XSS]
- GD Press Tools [DoS]
- GD Press Tools [Sensitive Data Exposure]
- GD Press Tools [Missing Function Level Access Control]
- WooCommerce Poor Guys Swiss Knife [Persistent XSS]
- Extra User Details [Privilege Escalation]
- User Submitted Posts [Persistent XSS]
- Bulk Delete [Privilege Escalation]
- WP Membership [Privilege Escalation]
- WooCommerce - Store Toolkit [Privilege Escalation]
- WP User Frontend [Unrestricted File Upload]
- WCK - Custom Fields and Custom Post Types Creator [Unauthorized DB Access]
2015
- User Meta Manager [Privilege Escalation]
- User Meta Manager [Information Disclosure]
- User Meta Manager [Blind SQLi]
- Users Ultra [Unrestricted File Upload]
- Gnome Nautilus [Denial of Service]
- Users Ultra [Persistence XSS]
- Users Ultra [Blind SQL injection]
- zM Ajax Login & Register [Local File Inclusion]
- Users Ultra [SQL injection]
- Free Counter [Persistent XSS]
- WP Membership [Persistent XSS]