Known Plugin Vulnerabilities
Track known vulnerabilities from configured sources. Default view shows all open and closed vulnerabilities, ordered by most recently updated first.
Open Vulnerabilities
36406Across tracked plugins
Affected Plugins
95With open vulnerabilities
Critical / High
0Require immediate attention
Recently Updated
0In the last 30 days
Vulnerability List
Export CSV| Plugin | Slug | Score | Vulnerability | CVE ID | Severity | Affected Versions | Patched | Updated |
|---|---|---|---|---|---|---|---|---|
| jeg-elementor-kit | jeg-elementor-kit |
93
|
Jeg Elementor Kit <= 2.6.11 - Authenticated (Contributor+) Sensitive Information Exposure via Countdown and Off-Canvas | LOW | *-2.6.11 | 2.6.12 | July 3, 2026 | |
| Events Manager – Calendar, Bookings, Tickets, and more! | events-manager |
78
|
Events Manager – Calendar, Bookings, Tickets, and more! <= 6.6.4.1 - Missing Authorization | LOW | *-6.6.4.1 | 6.6.4.2 | July 3, 2026 | |
| download-html-tinymce-button | download-html-tinymce-button |
91
|
Download HTML TinyMCE Button <= 1.2 - Reflected Cross-Site Scripting | LOW | *-1.2 | July 3, 2026 | ||
| Floating Chat Widget: Contact Chat Icons, Telegram Chat, Line Messenger, WeChat, Email, SMS, Call Button – Chaty | chaty |
88
|
Floating Chat Widget: Contact Chat Icons, Telegram Chat, Line Messenger, WeChat, Email, SMS, Call Button, WhatsApp – Chaty <= 3.3.5 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting | LOW | *-3.3.5 | 3.3.6 | July 3, 2026 | |
| buddyboss-platform | buddyboss-platform |
93
|
BuddyBoss Platform <= 2.7.70 - Authenticated (Subscriber+) Stored Cross-Site Scripting via 'link_title' | LOW | *-2.7.70 | 2.8.00 | July 3, 2026 | |
| boldgrid-backup | boldgrid-backup |
93
|
Total Upkeep – WordPress Backup Plugin plus Restore & Migrate by BoldGrid <= 1.16.8 - Authenticated (Administrator+) Server-Side Request Forgery | LOW | *-1.16.8 | 1.16.9 | July 3, 2026 | |
| admin-menu-manager | admin-menu-manager |
95
|
Admin Menu Manager <= 1.0.3 - Cross-Site Request Forgery | LOW | *-1.0.3 | July 3, 2026 | ||
| quiz-organizer | quiz-organizer | N/A | Quiz Organizer <= 2.9.1 - Authenticated (Administrator+) Stored Cross-Site Scripting | LOW | *-2.9.1 | July 3, 2026 | ||
| subscriptions-memberships-for-paypal | subscriptions-memberships-for-paypal | N/A | Subscriptions & Memberships for PayPal <= 1.1.6 - Cross-Site Request Forgery to Arbitrary Post Deletion | LOW | *-1.1.6 | 1.1.7 | July 3, 2026 | |
| sina-extension-for-elementor | sina-extension-for-elementor | N/A | Sina Extension for Elementor <= 3.6.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Fancy Text, Countdown Widget, and Login Form Shortcodes | LOW | *-3.6.0 | 3.6.1 | July 3, 2026 | |
| suremembers | suremembers | N/A | SureMembers <= 1.10.6 - Sensitive Information Exposure | LOW | *-1.10.6 | 1.10.7 | July 3, 2026 | |
| social-share-and-social-locker-arsocial | social-share-and-social-locker-arsocial | N/A | Social Share And Social Locker – ARSocial <= 1.4.1 - Authenticated (Admin+) Stored Cross-Site Scripting | LOW | *-1.4.1 | 1.4.2 | July 3, 2026 | |
| instagram-slider-widget | instagram-slider-widget |
93
|
Social Slider Feed <= 2.2.8 - Authenticated (Administrator+) Stored Cross-Site Scripting | LOW | *-2.2.8 | 2.2.9 | July 3, 2026 | |
| essential-blocks | essential-blocks |
93
|
Essential Blocks – Page Builder Gutenberg Blocks, Patterns & Templates <= 5.2.3 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-5.2.3 | 5.3.0 | July 3, 2026 | |
| yawave | yawave | N/A | Yawave <= 2.9.1 - Unauthenticated SQL Injection | LOW | *-2.9.1 | July 3, 2026 | ||
| wumii-related-posts | wumii-related-posts | N/A | 无觅相关文章插件 <= 1.0.5.7 - Cross-Site Request Forgery to Stored Cross-Site Scripting | LOW | *-1.0.5.7 | July 3, 2026 | ||
| wp-video-posts | wp-video-posts | N/A | WP Video Posts <= 3.5.1 - Cross-Site Request Forgery to Remote Code Execution | LOW | *-3.5.1 | July 3, 2026 | ||
| wp-tarteaucitron-js-self-hosted | wp-tarteaucitron-js-self-hosted | N/A | WP tarteaucitron.js Self Hosted <= 1.2.4 - Running a Vulnerable Dependency | LOW | *-1.2.4 | July 3, 2026 | ||
| wp-social-seo-booster | wp-social-seo-booster | N/A | WP Social SEO Booster – Knowledge Graph Social Signals SEO <= 1.2.0 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-1.2.0 | July 3, 2026 | ||
| wp-sitemap | wp-sitemap | N/A | WP Sitemap <= 1.0 - Authenticated (Contributor+) SQL Injection | LOW | *-1.0 | July 3, 2026 | ||
| wp-postratings-cheater | wp-postratings-cheater | N/A | WP-PostRatings Cheater <= 1.5 - Cross-Site Request Forgery | LOW | *-1.5 | July 3, 2026 | ||
| wp-image-compression | wp-image-compression | N/A | JPG, PNG Compression and Optimization <= 1.7.35 - Cross-Site Request Forgery | LOW | *-1.7.35 | July 3, 2026 | ||
| Iptanus File Upload | wp-file-upload |
76
|
WordPress File Upload <= 4.25.2 - Cross-Site Request Forgery in wfu_file_details | LOW | *-4.25.2 | 4.25.3 | July 3, 2026 | |
| wp-asambleas | wp-asambleas | N/A | WP-Asambleas <= 2.85.0 - Unauthenticated Arbitrary Shortcode Execution | LOW | *-2.85.0 | July 3, 2026 | ||
| wp-about-author | wp-about-author | N/A | WP About Author <= 1.5 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-1.5 | 1.6 | July 3, 2026 | |
| woocommerce-display-products-by-tags | woocommerce-display-products-by-tags | N/A | WooCommerce Display Products by Tags <= 1.0.0 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-1.0.0 | July 3, 2026 | ||
| woo-recargo-de-equivalencia | woo-recargo-de-equivalencia | N/A | WooCommerce Recargo de Equivalencia <= 1.6.24 - Cross-Site Request Forgery | LOW | *-1.6.24 | July 3, 2026 | ||
| woo-direct-checkout-button | woo-direct-checkout-button | N/A | Direct Checkout Button for WooCommerce <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-1.0 | July 3, 2026 | ||
| viperbar | viperbar | N/A | ViperBar <= 2.0 - Reflected Cross-Site Scripting | LOW | *-2.0 | July 3, 2026 | ||
| videojs-hls-player | videojs-hls-player | N/A | Video.js HLS Player <= 1.0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-1.0.2 | July 3, 2026 | ||
| vg-postcarousel | vg-postcarousel | N/A | VG PostCarousel <= 1.1 - Authenticated (Contributor+) Local File Inclusion | LOW | *-1.1 | July 3, 2026 | ||
| table-of-contents | table-of-contents | N/A | Table of Contents Block <= 1.0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-1.0.2 | July 3, 2026 | ||
| svg-support | svg-support | N/A | SVG Support <= 2.5.8 - Stored Cross-Site Scripting via Vulnerability Dependency | LOW | *-2.5.8 | 2.5.9 | July 3, 2026 | |
| sticky-header-on-scroll | sticky-header-on-scroll | N/A | Sticky Header On Scroll <= 1.0 - Missing Authorization | LOW | *-1.0 | July 3, 2026 | ||
| srs-player | srs-player | N/A | Live Streaming Video Player – by SRS Player <= 1.0.18 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-1.0.18 | July 3, 2026 | ||
| smart-maintenance-countdown | smart-maintenance-countdown | N/A | Smart Maintenance & Countdown <= 1.2 - Cross-Site Request Forgery to Stored Cross-Site Scripting | LOW | *-1.2 | July 3, 2026 | ||
| simple-google-sitemap | simple-google-sitemap | N/A | Simple Google Sitemap <= 1.6 - Cross-Site Request Forgery | LOW | *-1.6 | July 3, 2026 | ||
| revenueflex-easy-ads | revenueflex-easy-ads | N/A | Auto Ad Inserter – Increase Google Adsense and Ad Manager Revenue <= 1.5 - Missing Authorization to Authenticated (Editor+) Settings Update | LOW | *-1.5 | 1.5.1 | July 3, 2026 | |
| reactive-mortgage-calculator | reactive-mortgage-calculator | N/A | Reactive Mortgage Calculator <= 1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-1.1 | July 3, 2026 | ||
| rays-grid | rays-grid | N/A | RAYS Grid <= 1.3.1 - Cross-Site Request Forgery | LOW | *-1.3.1 | July 3, 2026 | ||
| quotes-llama | quotes-llama | N/A | Quotes llama <= 3.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-3.0.1 | 3.0.2 | July 3, 2026 | |
| profile-widget-ninja | profile-widget-ninja | N/A | Profile Widget Ninja <= 4.3 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-4.3 | July 3, 2026 | ||
| private-content | private-content | N/A | Private Content <= 8.11.5 - Unauthenticated Privilege Escalation via Account Takeover | LOW | *-8.11.5 | July 3, 2026 | ||
| private-content | private-content | N/A | Private Content <= 8.11.5 - Authenticated (Subscriber+) SQL Injection | LOW | *-8.11.5 | July 3, 2026 | ||
| private-content | private-content | N/A | Private Content <= 8.11.5 - Missing Authorization | LOW | *-8.11.5 | July 3, 2026 | ||
| private-content | private-content | N/A | Private Content <= 8.11.5 - Reflected Cross-Site Scripting | LOW | *-8.11.5 | July 3, 2026 | ||
| playerjs | playerjs | N/A | PlayerJS <= 2.23 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-2.23 | 2.24 | July 3, 2026 | |
| piwigopress | piwigopress | N/A | PiwigoPress <= 2.33 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-2.33 | 2.34 | July 3, 2026 | |
| pie-register-premium | pie-register-premium | N/A | Pie Register Premium <= 3.8.3.2 - Authenticated (Subscriber+) Limited File Deletion | LOW | *-3.8.3.2 | 3.8.3.3 | July 3, 2026 | |
| pie-register-premium | pie-register-premium | N/A | Pie Register Premium <= 3.8.3.2 - Missing Authorization | LOW | *-3.8.3.2 | 3.8.3.3 | July 3, 2026 | |
| photo-gallery-pearlbells | photo-gallery-pearlbells | N/A | Photo Gallery ( Responsive ) <= 4.0 - Cross-Site Request Forgery to Privilege Escalation | LOW | *-4.0 | July 3, 2026 | ||
| pathomation | pathomation | N/A | Pathomation <= 2.5.1 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-2.5.1 | July 3, 2026 | ||
| onceki-yazi-linki | onceki-yazi-linki |
91
|
Önceki Yazı Link <= 1.3 - Cross-Site Request Forgery | LOW | *-1.3 | July 3, 2026 | ||
| ohio-extra | ohio-extra |
91
|
Ohio Extra <= 3.4.7 - Unauthenticated Arbitrary Shortcode Execution | LOW | *-3.4.7 | July 3, 2026 | ||
| nurelm-get-posts | nurelm-get-posts |
91
|
Get Posts <= 0.6 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-0.6 | July 3, 2026 | ||
| nhrrob-options-table-manager | nhrrob-options-table-manager |
93
|
NHR Options Table Manager <= 1.1.2 - Authenticated (Admin+) PHP Object Injection | LOW | *-1.1.2 | 1.1.3 | July 3, 2026 | |
| namaste-lms | namaste-lms |
91
|
Namaste! LMS <= 2.6.5 - Cross-Site Request Forgery | LOW | *-2.6.5 | July 3, 2026 | ||
| minimum-password-strength | minimum-password-strength |
91
|
Minimum Password Strength <= 1.2.0 - Cross-Site Request Forgery | LOW | *-1.2.0 | July 3, 2026 | ||
| loi-hamon | loi-hamon |
91
|
Woocommerce – Loi Hamon <= 1.1.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting | LOW | *-1.1.0 | July 3, 2026 | ||
| local-search-seo-contact-page | local-search-seo-contact-page |
91
|
Local Search SEO Contact Page <= 4.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-4.0.1 | July 3, 2026 | ||
| list-related-attachments-widget | list-related-attachments-widget |
91
|
List Related Attachments <= 2.1.6 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-2.1.6 | July 3, 2026 | ||
| linkpreview | linkpreview |
91
|
Phee's LinkPreview <= 1.6.7 - Cross-Site Request Forgery | LOW | *-1.6.7 | July 3, 2026 | ||
| just-wp-variables | just-wp-variables |
91
|
Just Variables <= 1.2.3 - Cross-Site Request Forgery | LOW | *-1.2.3 | July 3, 2026 | ||
| inlinkz-scripter | inlinkz-scripter |
91
|
EZ InLinkz linkup <= 0.18 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-0.18 | July 3, 2026 | ||
| ibtana-visual-editor | ibtana-visual-editor |
91
|
Ibtana <= 1.2.4.9 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-1.2.4.9 | July 3, 2026 | ||
| hover-image-button | hover-image-button |
91
|
Hover Image Button <= 1.1.2 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-1.1.2 | July 3, 2026 | ||
| google-maps-for-wordpress | google-maps-for-wordpress |
91
|
Google Maps for WordPress <= 1.0.3 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-1.0.3 | July 3, 2026 | ||
| fs-poster | fs-poster |
93
|
FS Poster <= 6.5.8 - Authenticated (Subscriber+) SQL Injection | LOW | *-6.5.8 | 6.5.9 | July 3, 2026 | |
| fresh-framework | fresh-framework |
89
|
Fresh Framework <= 1.70.0 - Missing Authorization | LOW | *-1.70.0 | July 3, 2026 | ||
| fresh-framework | fresh-framework |
89
|
Fresh Framework <= 1.70.0 - Unauthenticated Remote Code Execution | LOW | *-1.70.0 | July 3, 2026 | ||
| f12-profiler | f12-profiler |
93
|
F12-Profiler <= 1.3.9 - Cross-Site Request Forgery | LOW | *-1.3.9 | 1.4.0 | July 3, 2026 | |
| erima-zarinpal-donate | erima-zarinpal-donate |
91
|
Erima Zarinpal Donate <= 1.0 - Cross-Site Request Forgery | LOW | *-1.0 | July 3, 2026 | ||
| Elementor Website Builder – more than just a page builder | elementor |
79
|
Elementor Website Builder <= 3.25.10 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-3.25.10 | 3.25.11 | July 3, 2026 | |
| defend-wp-firewall | defend-wp-firewall |
93
|
DefendWP Firewall <= 1.1.0 - Missing Authorization | LOW | *-1.1.0 | 1.1.1 | July 3, 2026 | |
| contact-form-7-star-rating-with-font-awersome | contact-form-7-star-rating-with-font-awersome |
91
|
Contact Form 7 Star Rating with font Awesome <= 1.3 - Authenticated (Editor+) Stored Cross-Site Scripting | LOW | *-1.3 | July 3, 2026 | ||
| contact-form-7-star-rating | contact-form-7-star-rating |
91
|
Contact Form 7 Star Rating <= 1.10 - Authenticated (Editor+) Stored Cross-Site Scripting | LOW | *-1.10 | July 3, 2026 | ||
| classified-listing | classified-listing |
93
|
Classified Listing – Classified ads & Business Directory Plugin <= 4.0.4 - Unauthenticated Settings Exposure | LOW | *-4.0.4 | 4.0.5 | July 3, 2026 | |
| bulk-content-creator | bulk-content-creator |
91
|
Bulk Content Creator <= 1.2.1 - Cross-Site Request Forgery | LOW | *-1.2.1 | July 3, 2026 | ||
| bravo-search-and-replace | bravo-search-and-replace |
91
|
Bravo Search & Replace <= 1.0 - Authenticated (Administrator+) SQL Injection | LOW | *-1.0 | July 3, 2026 | ||
| booknetic | booknetic |
91
|
Booknetic <= 4.0.9 - Cross-Site Request Forgery | LOW | *-4.0.9 | July 3, 2026 | ||
| blighty-explorer | blighty-explorer |
91
|
Blightly Explorer <= 2.3.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting | LOW | *-2.3.0 | July 3, 2026 | ||
| auto-tag-links | auto-tag-links |
91
|
Auto Tag Links <= 1.0.13 - Cross-Site Request Forgery | LOW | *-1.0.13 | July 3, 2026 | ||
| ark-core | ark-core |
97
|
Ark Theme Core <= 1.70.0 - Unauthenticated Remote Code Execution | LOW | *-1.70.0 | 1.71.0 | July 3, 2026 | |
| archive-page | archive-page |
97
|
Archive Page <= 1.0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-1.0.2 | 1.0.3 | July 3, 2026 | |
| animated-text-block | animated-text-block |
97
|
Animated Text Block <= 1.0.7 - Missing Authorization | LOW | *-1.0.7 | 1.0.8 | July 3, 2026 | |
| all-in-one-cufon | all-in-one-cufon |
95
|
All-In-One Cufon <= 1.3.0 - Cross-Site Request Forgery | LOW | *-1.3.0 | July 3, 2026 | ||
| Advanced Google reCAPTCHA | advanced-google-recaptcha |
89
|
Advanced Google reCaptcha <= 1.27 - Built-in Math CAPTCHA Bypass | LOW | *-1.27 | 1.28 | July 3, 2026 | |
| admin-form | admin-form |
95
|
ADFO – Custom data in admin dashboard <= 1.9.1 - Authenticated (Admin+) PHP Object Injection | LOW | *-1.9.1 | July 3, 2026 | ||
| add-linked-images-to-gallery-v01 | add-linked-images-to-gallery-v01 |
95
|
Add Linked Images To Gallery <= 1.4 - Cross-Site Request Forgery to Stored Cross-Site Scripting | LOW | *-1.4 | July 3, 2026 | ||
| wpo365-msgraphmailer | wpo365-msgraphmailer | N/A | WPO365 | MICROSOFT 365 GRAPH MAILER <= 3.2 - Open Redirect via 'redirect_to' Parameter | LOW | *-3.2 | 3.3 | July 3, 2026 | |
| zigaform-calculator-cost-estimation-form-builder-lite | zigaform-calculator-cost-estimation-form-builder-lite | N/A | Zigaform – Price Calculator & Cost Estimation Form Builder Lite <= 7.4.2 - Unauthenticated Stored Cross-Site Scripting | LOW | *-7.4.2 | 7.4.3 | July 3, 2026 | |
| wptemplata | wptemplata | N/A | WP Templata <= 1.0.7 - Reflected Cross-Site Scripting | LOW | *-1.0.7 | 1.0.8 | July 3, 2026 | |
| wppizza | wppizza | N/A | WPPizza <= 3.19.4 - Reflected Cross-Site Scripting | LOW | *-3.19.4 | 3.19.5 | July 3, 2026 | |
| wp-yelp-review-slider | wp-yelp-review-slider | N/A | WP Yelp Review Slider <= 8.1 - Authenticated (Administrator+) SQL Injection | LOW | *-8.1 | 8.2 | July 3, 2026 | |
| wp-responsive-slab-text | wp-responsive-slab-text | N/A | WP Responsive Auto Fit Text <= 0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-0.2 | 0.3 | July 3, 2026 | |
| wp-multi-store-locator | wp-multi-store-locator | N/A | WP Multistore Locator <= 2.5.1 - Unauthenticated SQL Injection | LOW | *-2.5.1 | 2.5.2 | July 3, 2026 | |
| wp-job-portal | wp-job-portal | N/A | WP Job Portal <= 2.2.8 - Authenticated (Contributor+) Local File Inclusion | LOW | *-2.2.8 | 2.2.9 | July 3, 2026 | |
| wp-event-solution | wp-event-solution | N/A | Eventin <= 4.0.20 - Authenticated (Contributor+) Local File Inclusion | LOW | *-4.0.20 | 4.0.21 | July 3, 2026 | |
| wishlist | wishlist | N/A | Wishlist <= 1.0.41 - Authenticated (Contributor+) SQL Injection | LOW | *-1.0.41 | 1.0.42 | July 3, 2026 | |
| wired-impact-volunteer-management | wired-impact-volunteer-management | N/A | Wired Impact Volunteer Management <= 2.5 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-2.5 | 2.5.1 | July 3, 2026 |
jeg-elementor-kit
jeg-elementor-kit
Events Manager – Calendar, Bookings, Tickets, and more!
events-manager
download-html-tinymce-button
download-html-tinymce-button
Floating Chat Widget: Contact Chat Icons, Telegram Chat, Line Messenger, WeChat, Email, SMS, Call Button – Chaty
chaty
buddyboss-platform
buddyboss-platform
boldgrid-backup
boldgrid-backup
admin-menu-manager
admin-menu-manager
quiz-organizer
quiz-organizer
subscriptions-memberships-for-paypal
subscriptions-memberships-for-paypal
sina-extension-for-elementor
sina-extension-for-elementor
suremembers
suremembers
social-share-and-social-locker-arsocial
social-share-and-social-locker-arsocial
instagram-slider-widget
instagram-slider-widget
essential-blocks
essential-blocks
yawave
yawave
wumii-related-posts
wumii-related-posts
wp-video-posts
wp-video-posts
wp-tarteaucitron-js-self-hosted
wp-tarteaucitron-js-self-hosted
wp-social-seo-booster
wp-social-seo-booster
wp-sitemap
wp-sitemap
wp-postratings-cheater
wp-postratings-cheater
wp-image-compression
wp-image-compression
Iptanus File Upload
wp-file-upload
wp-asambleas
wp-asambleas
wp-about-author
wp-about-author
woocommerce-display-products-by-tags
woocommerce-display-products-by-tags
woo-recargo-de-equivalencia
woo-recargo-de-equivalencia
woo-direct-checkout-button
woo-direct-checkout-button
viperbar
viperbar
videojs-hls-player
videojs-hls-player
vg-postcarousel
vg-postcarousel
table-of-contents
table-of-contents
svg-support
svg-support
sticky-header-on-scroll
sticky-header-on-scroll
srs-player
srs-player
smart-maintenance-countdown
smart-maintenance-countdown
simple-google-sitemap
simple-google-sitemap
revenueflex-easy-ads
revenueflex-easy-ads
reactive-mortgage-calculator
reactive-mortgage-calculator
rays-grid
rays-grid
quotes-llama
quotes-llama
profile-widget-ninja
profile-widget-ninja
private-content
private-content
private-content
private-content
private-content
private-content
private-content
private-content
playerjs
playerjs
piwigopress
piwigopress
pie-register-premium
pie-register-premium
pie-register-premium
pie-register-premium
photo-gallery-pearlbells
photo-gallery-pearlbells
pathomation
pathomation
onceki-yazi-linki
onceki-yazi-linki
ohio-extra
ohio-extra
nurelm-get-posts
nurelm-get-posts
nhrrob-options-table-manager
nhrrob-options-table-manager
namaste-lms
namaste-lms
minimum-password-strength
minimum-password-strength
loi-hamon
loi-hamon
local-search-seo-contact-page
local-search-seo-contact-page
list-related-attachments-widget
list-related-attachments-widget
linkpreview
linkpreview
just-wp-variables
just-wp-variables
inlinkz-scripter
inlinkz-scripter
ibtana-visual-editor
ibtana-visual-editor
hover-image-button
hover-image-button
google-maps-for-wordpress
google-maps-for-wordpress
fs-poster
fs-poster
fresh-framework
fresh-framework
fresh-framework
fresh-framework
f12-profiler
f12-profiler
erima-zarinpal-donate
erima-zarinpal-donate
Elementor Website Builder – more than just a page builder
elementor
defend-wp-firewall
defend-wp-firewall
contact-form-7-star-rating-with-font-awersome
contact-form-7-star-rating-with-font-awersome
contact-form-7-star-rating
contact-form-7-star-rating
classified-listing
classified-listing
bulk-content-creator
bulk-content-creator
bravo-search-and-replace
bravo-search-and-replace
booknetic
booknetic
blighty-explorer
blighty-explorer
auto-tag-links
auto-tag-links
ark-core
ark-core
archive-page
archive-page
animated-text-block
animated-text-block
all-in-one-cufon
all-in-one-cufon
Advanced Google reCAPTCHA
advanced-google-recaptcha
admin-form
admin-form
add-linked-images-to-gallery-v01
add-linked-images-to-gallery-v01
wpo365-msgraphmailer
wpo365-msgraphmailer
zigaform-calculator-cost-estimation-form-builder-lite
zigaform-calculator-cost-estimation-form-builder-lite
wptemplata
wptemplata
wppizza
wppizza
wp-yelp-review-slider
wp-yelp-review-slider
wp-responsive-slab-text
wp-responsive-slab-text
wp-multi-store-locator
wp-multi-store-locator
wp-job-portal
wp-job-portal
wp-event-solution
wp-event-solution
wishlist
wishlist
wired-impact-volunteer-management
wired-impact-volunteer-management
Showing 11701 to 11800 of 36406 results
Vulnerability data is aggregated from automated feeds and public sources. Results may include false positives or outdated information. Always verify details and apply updates in a staging environment before deploying to production.
Data updated daily from trusted sources. Last updated: July 3, 2026 at 09:17 UTC.