Known Plugin Vulnerabilities
Track known vulnerabilities from configured sources. Default view shows all open and closed vulnerabilities, ordered by most recently updated first.
Open Vulnerabilities
36406Across tracked plugins
Affected Plugins
96With open vulnerabilities
Critical / High
0Require immediate attention
Recently Updated
0In the last 30 days
Vulnerability List
Export CSV| Plugin | Slug | Score | Vulnerability | CVE ID | Severity | Affected Versions | Patched | Updated |
|---|---|---|---|---|---|---|---|---|
| wp-spell-check | wp-spell-check | N/A | WP Spell Check <= 9.21 - Cross-Site Request Forgery | LOW | *-9.21 | 9.22 | July 3, 2026 | |
| wp-social-stream | wp-social-stream | N/A | WP Social Stream <= 1.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting | LOW | *-1.1 | July 3, 2026 | ||
| wp-simpleweather | wp-simpleweather | N/A | WP SimpleWeather <= 0.2.5 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-0.2.5 | July 3, 2026 | ||
| wp-keyword-monitor | wp-keyword-monitor | N/A | WP Keyword Monitor <= 1.0.5 - Cross-Site Request Forgery to Stored Cross-Site Scripting | LOW | *-1.0.5 | July 3, 2026 | ||
| wp-custom-post-rss-feed | wp-custom-post-rss-feed | N/A | WP Custom Post RSS Feed <= 1.0.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting | LOW | *-1.0.0 | July 3, 2026 | ||
| wp-admin-custom-page | wp-admin-custom-page | N/A | WP Admin Custom Page <= 1.5.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting | LOW | *-1.5.0 | July 3, 2026 | ||
| wizshop | wizshop | N/A | WizShop <= 3.0.2 - Unauthenticated Local File Inclusion | LOW | *-3.0.2 | July 3, 2026 | ||
| wedevs-project-manager | wedevs-project-manager | N/A | WP Project Manager <= 2.6.22 - Authenticated (Administrator+) Stored Cross-Site Scripting | LOW | *-2.6.22 | 2.6.23 | July 3, 2026 | |
| vr-frases | vr-frases | N/A | VR-Frases <= 4.0.1 - Reflected Cross-Site Scripting | LOW | *-4.0.1 | 4.0.2 | July 3, 2026 | |
| VikBooking Hotel Booking Engine & PMS | vikbooking |
95
|
VikBooking Hotel Booking Engine & PMS <= 1.7.2 - Cross-Site Request Forgery to Settings Update | LOW | *-1.7.2 | 1.7.3 | July 3, 2026 | |
| vignete-ads | vignete-ads | N/A | Vignette Ads <= 0.2 - Cross-Site Request Forgery to Stored Cross-Site Scripting | LOW | *-0.2 | July 3, 2026 | ||
| vayu-blocks | vayu-blocks | N/A | Vayu Blocks – Gutenberg Blocks for WordPress & WooCommerce <= 1.3.7 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-1.3.7 | July 3, 2026 | ||
| upcasted-s3-offload | upcasted-s3-offload | N/A | Upcasted S3 Offload – AWS S3, Digital Ocean Spaces, Backblaze, Minio and more <= 3.0.3 - Authenticated (Subscriber+) Stored Cross-Site Scripting | LOW | *-3.0.3 | 3.0.4 | July 3, 2026 | |
| unusedcss | unusedcss | N/A | RapidLoad <= 2.4.4 - Missing Authorization | LOW | *-2.4.4 | 2.4.5 | July 3, 2026 | |
| ulisting | ulisting | N/A | uListing <= 2.1.6 - Unauthenticated SQL Injection | LOW | *-2.1.6 | 2.1.7 | July 3, 2026 | |
| ulisting | ulisting | N/A | uListing <= 2.1.6 - Authenticated (Contributor+) SQL Injection | LOW | *-2.1.6 | 2.1.7 | July 3, 2026 | |
| uix-shortcodes | uix-shortcodes | N/A | Uix Shortcodes <= 2.0.3 - Unauthenticated Arbitrary Shortcode Execution | LOW | *-2.0.3 | 2.0.4 | July 3, 2026 | |
| totalcontest-lite | totalcontest-lite | N/A | Total Contest Lite <= 2.8.1 - Reflected Cross-Site Scripting | LOW | *-2.8.1 | 2.9.0 | July 3, 2026 | |
| themeisle-companion | themeisle-companion | N/A | Orbit Fox by ThemeIsle <= 2.10.44 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-2.10.44 | 2.10.45 | July 3, 2026 | |
| theme-options-z | theme-options-z | N/A | Theme Options Z <= 1.4 - Cross-Site Request Forgery | LOW | *-1.4 | July 3, 2026 | ||
| theasys | theasys | N/A | Theasys <= 1.0.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting | LOW | *-1.0.1 | July 3, 2026 | ||
| survey-maker | survey-maker | N/A | Survey Maker <= 5.1.3.5 - Authenticated (Administrator+) Stored Cross-Site Scripting | LOW | *-5.1.3.5 | 5.1.3.6 | July 3, 2026 | |
| stylish-google-sheet-reader | stylish-google-sheet-reader | N/A | Stylish Google Sheet Reader <= 4.0 - Reflected Cross-Site Scripting | LOW | *-4.0 | 4.1 | July 3, 2026 | |
| style-tweaker | style-tweaker | N/A | Style Tweaker <= 0.11 - Cross-Site Request Forgery to Stored Cross-Site Scripting | LOW | *-0.11 | July 3, 2026 | ||
| starter-templates | starter-templates | N/A | Starter Templates by FancyWP <= 2.0.0 - Cross-Site Request Forgery to Arbitrary Plugin Installation | LOW | *-2.0.0 | July 3, 2026 | ||
| songkick-concerts-and-festivals | songkick-concerts-and-festivals | N/A | Songkick Concerts and Festivals <= 0.9.7 - Cross-Site Request Forgery to Stored Cross-Site Scripting | LOW | *-0.9.7 | 0.10.0 | July 3, 2026 | |
| smartarget-contact-us | smartarget-contact-us | N/A | Smartarget – Get 40% more sales, improve user engagement with 25+ free apps. <= 1.4 - Authenticated (Subscriber+) Stored Cross-Site Scripting | LOW | *-1.4 | July 3, 2026 | ||
| smart-dofollow | smart-dofollow | N/A | Smart DoFollow <= 1.0.2 - Cross-Site Request Forgery to Stored Cross-Site Scripting | LOW | *-1.0.2 | July 3, 2026 | ||
| smart-countdown-fx | smart-countdown-fx | N/A | Smart Countdown FX <= 1.5.5 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-1.5.5 | July 3, 2026 | ||
| slide-banners | slide-banners | N/A | Slide Banners <= 1.3 - Missing Authorization | LOW | *-1.3 | July 3, 2026 | ||
| simple-user-profile | simple-user-profile | N/A | Simple User Profile <= 1.9 - Cross-Site Request Forgery to Stored Cross-Site Scripting | LOW | *-1.9 | July 3, 2026 | ||
| simple-select-all-text-box | simple-select-all-text-box | N/A | Simple Select All Text Box <= 3.2 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-3.2 | July 3, 2026 | ||
| simple-auto-tag | simple-auto-tag | N/A | Simple Auto Tag <= 1.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting | LOW | *-1.1 | July 3, 2026 | ||
| show-notice-or-message-on-admin-area | show-notice-or-message-on-admin-area | N/A | Show notice or message on admin area <= 2.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting | LOW | *-2.0 | July 3, 2026 | ||
| sendpulse-email-marketing-newsletter | sendpulse-email-marketing-newsletter | N/A | SendPulse Email Marketing Newsletter <= 2.1.5 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-2.1.5 | 2.1.6 | July 3, 2026 | |
| rss-in-page | rss-in-page | N/A | RSS in Page <= 2.9.1 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-2.9.1 | July 3, 2026 | ||
| reverbnation-widgets | reverbnation-widgets | N/A | ReverbNation Widgets <= 2.1 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-2.1 | July 3, 2026 | ||
| real-estate-manager | real-estate-manager | N/A | Real Estate Manager – Property Listing and Agent Management <= 7.3 - CAPTCHA Bypass | LOW | *-7.3 | July 3, 2026 | ||
| read-more-copy-link | read-more-copy-link | N/A | Read More Copy Link <= 1.0.2 - Cross-Site Request Forgery to Stored Cross-Site Scripting | LOW | *-1.0.2 | July 3, 2026 | ||
| quote-comments | quote-comments | N/A | Quote Comments <= 3.0.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting | LOW | *-3.0.0 | July 3, 2026 | ||
| qi-addons-for-elementor | qi-addons-for-elementor | N/A | Qi Addons For Elementor <= 1.8.7 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-1.8.7 | 1.8.8 | July 3, 2026 | |
| product-table-for-woocommerce | product-table-for-woocommerce | N/A | Product Table For WooCommerce <= 1.2.3 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-1.2.3 | 1.2.4 | July 3, 2026 | |
| product-blocks-for-woocommerce | product-blocks-for-woocommerce | N/A | Product Blocks for WooCommerce <= 1.9.1 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-1.9.1 | 2.0 | July 3, 2026 | |
| ppv-live-webcams | ppv-live-webcams | N/A | Paid Videochat Turnkey Site – HTML5 PPV Live Webcams <= 7.2.16 - Unauthenticated Arbitrary File Deletion | LOW | *-7.2.16 | 7.3.1 | July 3, 2026 | |
| popup-seo-optimized | popup-seo-optimized | N/A | Pop Up <= 0.1 - Authenticated (Administrator+) Stored Cross-Site Scripting | LOW | *-0.1 | July 3, 2026 | ||
| paytm-donation | paytm-donation | N/A | Paytm Payment Donation <= 2.3.3 - Authenticated (Administrator+) Stored Cross-Site Scripting | LOW | *-2.3.3 | July 3, 2026 | ||
| payment-forms-for-paystack | payment-forms-for-paystack | N/A | Payment Forms for Paystack <= 4.0.1 - Authenticated (Administrator+) SQL Injection | LOW | *-4.0.1 | 4.0.2 | July 3, 2026 | |
| optimate-ads | optimate-ads |
89
|
Optimate Ads – Advance Ad Inserter AdSense & Ad Manager <= 1.0.3 - Authenticated (Subscriber+) Stored Cross-Site Scripting | LOW | *-1.0.3 | July 3, 2026 | ||
| optimate-ads | optimate-ads |
89
|
Optimate Ads <= 1.0.3 - Authenticated (Subscriber+) Stored Cross-Site Scripting | LOW | *-1.0.3 | July 3, 2026 | ||
| ops-robots-txt | ops-robots-txt |
93
|
On Page SEO + Whatsapp Chat Button <= 2.0.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting | LOW | *-2.0.0 | 2.0.1 | July 3, 2026 | |
| onestore-sites | onestore-sites |
89
|
OneStore Sites <= 0.1.1 - Cross-Site Request Forgery to Arbitrary Plugin Installation | LOW | *-0.1.1 | July 3, 2026 | ||
| nopeamedia | nopeamedia |
93
|
Print PDF Generator and Publisher <= 1.2.0 - Cross-Site Request Forgery | LOW | *-1.2.0 | 1.2.1 | July 3, 2026 | |
| nextgen-cooliris-gallery | nextgen-cooliris-gallery |
91
|
NextGen Cooliris Gallery <= 0.7 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-0.7 | July 3, 2026 | ||
| music-press-pro | music-press-pro |
89
|
Music Press Pro <= 1.4.6 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-1.4.6 | July 3, 2026 | ||
| munk-sites | munk-sites |
91
|
Munk Sites <= 1.0.7 - Cross-Site Request Forgery to Arbitrary Plugin Installation | LOW | *-1.0.7 | July 3, 2026 | ||
| medical-addon-for-elementor | medical-addon-for-elementor |
91
|
Medical Addon for Elementor <= 1.6.2 - Insecure Direct Object Reference to Authenticated (Contributor+) Sensitive Information Exposure via Shortcode | LOW | *-1.6.2 | 1.6.3 | July 3, 2026 | |
| logo-slider-wp | logo-slider-wp |
89
|
Logo Slider <= 4.5.0 - Authenticated (Admin+) Stored Cross-Site Scripting | LOW | *-4.5.0 | 4.6.0 | July 3, 2026 | |
| login-box | login-box |
91
|
Login-box <= 2.0.4 - Cross-Site Request Forgery to Stored Cross-Site Scripting | LOW | *-2.0.4 | July 3, 2026 | ||
| listings-for-appfolio | listings-for-appfolio |
93
|
Listings for Appfolio <= 1.2.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting | LOW | *-1.2.0 | 1.2.1 | July 3, 2026 | |
| links-in-captions | links-in-captions |
91
|
Links in Captions <= 1.2 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-1.2 | July 3, 2026 | ||
| link-to-url-post | link-to-url-post |
91
|
Link to URL / Post <= 1.3 - Authenticated (Administrator+) SQL Injection | LOW | *-1.3 | July 3, 2026 | ||
| kona-instagram-feed-for-gutenberg | kona-instagram-feed-for-gutenberg |
89
|
Kona Gallery Block <= 1.7 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-1.7 | July 3, 2026 | ||
| kikfyre-events-calendar-tickets | kikfyre-events-calendar-tickets |
91
|
Event Kikfyre <= 2.1.8 - Missing Authorization | LOW | *-2.1.8 | July 3, 2026 | ||
| js-support-ticket | js-support-ticket |
93
|
JS Help Desk – The Ultimate Help Desk & Support Plugin <= 2.8.8 - Authenticated (Subscriber+) Insecure Direct Object Reference | LOW | *-2.8.8 | 2.8.9 | July 3, 2026 | |
| job-board-manager | job-board-manager |
83
|
Job Board Manager <= 2.1.60 - Reflected Cross-Site Scripting | LOW | *-2.1.60 | July 3, 2026 | ||
| inlocation | inlocation |
91
|
InLocation <= 1.8 - Cross-Site Request Forgery to Stored Cross-Site Scripting | LOW | *-1.8 | July 3, 2026 | ||
| infusionsoft-web-tracker | infusionsoft-web-tracker |
91
|
Infusionsoft Analytics <= 2.0 - Cross-Site Request Forgery | LOW | *-2.0 | July 3, 2026 | ||
| indeed-api | indeed-api |
91
|
Indeed API <= 0.5 - Cross-Site Request Forgery to Settings Update | LOW | *-0.5 | July 3, 2026 | ||
| include-mastodon-feed | include-mastodon-feed |
93
|
Include Mastodon Feed <= 1.9.9 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-1.9.9 | 1.9.10 | July 3, 2026 | |
| ht-mega-for-elementor | ht-mega-for-elementor |
93
|
HT Mega <= 2.7.6 - Authenticated (Contributor+) Stored Cross-Site Scripting via block_css and inner_css | LOW | *-2.7.6 | 2.7.7 | July 3, 2026 | |
| graceful-email-obfuscation | graceful-email-obfuscation |
91
|
Graceful Email Obfuscation <= 0.2.2 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-0.2.2 | July 3, 2026 | ||
| google-earth-tours | google-earth-tours |
91
|
Google Earth Embed <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-1.0 | July 3, 2026 | ||
| good-url-preview-box | good-url-preview-box |
91
|
URL-Preview-Box <= 1.20 - Cross-Site Request Forgery to Stored Cross-Site Scripting | LOW | *-1.20 | July 3, 2026 | ||
| globalquran | globalquran |
91
|
GlobalQuran <= 1.0 - Cross-Site Request Forgery to Settings Update | LOW | *-1.0 | July 3, 2026 | ||
| gallery-for-ultimate-member | gallery-for-ultimate-member |
91
|
Video & Photo Gallery for Ultimate Member <= 1.1.2 - Authenticated (Subscriber+) Server-Side Request Forgery | LOW | *-1.1.2 | 1.1.3 | July 3, 2026 | |
| fyrebox-shortcode | fyrebox-shortcode |
89
|
Fyrebox Quizzes <= 3.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting | LOW | *-3.0 | July 3, 2026 | ||
| form-maker | form-maker |
93
|
Form Maker by 10Web <= 1.15.32 - Authenticated (Admin+) Stored Cross-Site Scripting | LOW | *-1.15.32 | 1.15.33 | July 3, 2026 | |
| fm-notification-bar | fm-notification-bar |
91
|
FM Notification Bar <= 1.0.2 - Authenticated (Administrator+) Stored Cross-Site Scripting | LOW | *-1.0.2 | July 3, 2026 | ||
| flexidx-home-search | flexidx-home-search |
91
|
FlexIDX Home Search <= 2.1.2 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-2.1.2 | July 3, 2026 | ||
| fb-status-updater | fb-status-updater |
91
|
Status Updater <= 1.9.2 - Reflected Cross-Site Scripting | LOW | *-1.9.2 | July 3, 2026 | ||
| facilita-form-tracker | facilita-form-tracker |
91
|
Facilita Form Tracker <= 1.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting | LOW | *-1.0 | July 3, 2026 | ||
| external-video-for-everybody | external-video-for-everybody |
91
|
External Video For Everybody <= 2.1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-2.1.1 | July 3, 2026 | ||
| eventer | eventer |
89
|
Eventer <= 3.9.9.5 - Missing Authorization to Unauthenticated Event Ticket Download | LOW | *-3.9.9.5 | 3.9.9.5.1 | July 3, 2026 | |
| eventer | eventer |
89
|
Eventer <= 3.9.9.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode | LOW | *-3.9.9.4 | 3.9.9.5 | July 3, 2026 | |
| eventer | eventer |
89
|
Eventer <= 3.9.9 - Missing Authorization to Authenticated (Subscriber+) Bookings Export | LOW | *-3.9.9 | 3.9.9.1 | July 3, 2026 | |
| embed-rss | embed-rss |
91
|
Embed RSS <= 3.1 - Authenticated (Subscriber+) Arbitrary Shortcode Execution | LOW | *-3.1 | July 3, 2026 | ||
| easy-wp-tiles | easy-wp-tiles |
91
|
Easy WP Tiles <= 1 - Authenticated (Administrator+) Stored Cross-Site Scripting | LOW | *-1 | July 3, 2026 | ||
| easy-related-posts | easy-related-posts |
91
|
Easy Related Posts <= 2.0.2 - Cross-Site Request Forgery to Stored Cross-Site Scripting | LOW | *-2.0.2 | July 3, 2026 | ||
| easy-chart-builder | easy-chart-builder |
91
|
Easy Chart Builder for WordPress <= 1.3 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-1.3 | July 3, 2026 | ||
| ean-for-woocommerce | ean-for-woocommerce |
93
|
EAN for WooCommerce <= 5.3.5 - Missing Authorization | LOW | *-5.3.5 | 5.4.0 | July 3, 2026 | |
| dynamicconditions | dynamicconditions |
93
|
Dynamic Conditions <= 1.7.4 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-1.7.4 | 1.7.5 | July 3, 2026 | |
| dynamic-url-seo | dynamic-url-seo |
93
|
Dynamic URL SEO <= 1.0 - Reflected Cross-Site Scripting | LOW | *-1.0 | 1.2 | July 3, 2026 | |
| distance-rate-shipping-for-woocommerce | distance-rate-shipping-for-woocommerce |
91
|
Distance Rate Shipping For WooCommerce <= 1.3.4 - Authenticated (Subscriber+) SQL Injection | LOW | *-1.3.4 | July 3, 2026 | ||
| disable-elementor-editor-translation | disable-elementor-editor-translation |
93
|
Disable Elementor Editor Translation <= 1.0.2 - Missing Authorization | LOW | *-1.0.2 | 1.0.3 | July 3, 2026 | |
| cwd-stealth-links | cwd-stealth-links |
91
|
CWD – Stealth Links <= 1.3 - Unauthenticated SQL Injection | LOW | *-1.3 | July 3, 2026 | ||
| customize-wpadmin | customize-wpadmin |
91
|
Custom Links On Admin Dashboard Toolbar <= 3.3 - Cross-Site Request Forgery to Stored Cross-Site Scripting | LOW | *-3.3 | July 3, 2026 | ||
| custom-comment-notifications | custom-comment-notifications |
91
|
Custom Comment Notifications <= 1.0.8 - Cross-Site Request Forgery to Stored Cross-Site Scripting | LOW | *-1.0.8 | July 3, 2026 | ||
| cookie-monster | cookie-monster |
91
|
Cookie Monster <= 1.2.2 - Unauthenticated Local File Inclusion | LOW | *-1.2.2 | July 3, 2026 | ||
| cm-email-blacklist | cm-email-blacklist |
93
|
CM E-Mail Blacklist – Simple email filtering for safer registration <= 1.5.5 - Reflected Cross-Site Scripting | LOW | *-1.5.5 | 1.5.6 | July 3, 2026 | |
| child-themes-helper | child-themes-helper |
91
|
Child Themes Helper <= 2.2.7 - Cross-Site Request Forgery to Arbitrary File Deletion | LOW | *-2.2.7 | July 3, 2026 |
wp-spell-check
wp-spell-check
wp-social-stream
wp-social-stream
wp-simpleweather
wp-simpleweather
wp-keyword-monitor
wp-keyword-monitor
wp-custom-post-rss-feed
wp-custom-post-rss-feed
wp-admin-custom-page
wp-admin-custom-page
wizshop
wizshop
wedevs-project-manager
wedevs-project-manager
vr-frases
vr-frases
VikBooking Hotel Booking Engine & PMS
vikbooking
vignete-ads
vignete-ads
vayu-blocks
vayu-blocks
upcasted-s3-offload
upcasted-s3-offload
unusedcss
unusedcss
ulisting
ulisting
ulisting
ulisting
uix-shortcodes
uix-shortcodes
totalcontest-lite
totalcontest-lite
themeisle-companion
themeisle-companion
theme-options-z
theme-options-z
theasys
theasys
survey-maker
survey-maker
stylish-google-sheet-reader
stylish-google-sheet-reader
style-tweaker
style-tweaker
starter-templates
starter-templates
songkick-concerts-and-festivals
songkick-concerts-and-festivals
smartarget-contact-us
smartarget-contact-us
smart-dofollow
smart-dofollow
smart-countdown-fx
smart-countdown-fx
slide-banners
slide-banners
simple-user-profile
simple-user-profile
simple-select-all-text-box
simple-select-all-text-box
simple-auto-tag
simple-auto-tag
show-notice-or-message-on-admin-area
show-notice-or-message-on-admin-area
sendpulse-email-marketing-newsletter
sendpulse-email-marketing-newsletter
rss-in-page
rss-in-page
reverbnation-widgets
reverbnation-widgets
real-estate-manager
real-estate-manager
read-more-copy-link
read-more-copy-link
quote-comments
quote-comments
qi-addons-for-elementor
qi-addons-for-elementor
product-table-for-woocommerce
product-table-for-woocommerce
product-blocks-for-woocommerce
product-blocks-for-woocommerce
ppv-live-webcams
ppv-live-webcams
popup-seo-optimized
popup-seo-optimized
paytm-donation
paytm-donation
payment-forms-for-paystack
payment-forms-for-paystack
optimate-ads
optimate-ads
optimate-ads
optimate-ads
ops-robots-txt
ops-robots-txt
onestore-sites
onestore-sites
nopeamedia
nopeamedia
nextgen-cooliris-gallery
nextgen-cooliris-gallery
music-press-pro
music-press-pro
munk-sites
munk-sites
medical-addon-for-elementor
medical-addon-for-elementor
logo-slider-wp
logo-slider-wp
login-box
login-box
listings-for-appfolio
listings-for-appfolio
links-in-captions
links-in-captions
link-to-url-post
link-to-url-post
kona-instagram-feed-for-gutenberg
kona-instagram-feed-for-gutenberg
kikfyre-events-calendar-tickets
kikfyre-events-calendar-tickets
js-support-ticket
js-support-ticket
job-board-manager
job-board-manager
inlocation
inlocation
infusionsoft-web-tracker
infusionsoft-web-tracker
indeed-api
indeed-api
include-mastodon-feed
include-mastodon-feed
ht-mega-for-elementor
ht-mega-for-elementor
graceful-email-obfuscation
graceful-email-obfuscation
google-earth-tours
google-earth-tours
good-url-preview-box
good-url-preview-box
globalquran
globalquran
gallery-for-ultimate-member
gallery-for-ultimate-member
fyrebox-shortcode
fyrebox-shortcode
form-maker
form-maker
fm-notification-bar
fm-notification-bar
flexidx-home-search
flexidx-home-search
fb-status-updater
fb-status-updater
facilita-form-tracker
facilita-form-tracker
external-video-for-everybody
external-video-for-everybody
eventer
eventer
eventer
eventer
eventer
eventer
embed-rss
embed-rss
easy-wp-tiles
easy-wp-tiles
easy-related-posts
easy-related-posts
easy-chart-builder
easy-chart-builder
ean-for-woocommerce
ean-for-woocommerce
dynamicconditions
dynamicconditions
dynamic-url-seo
dynamic-url-seo
distance-rate-shipping-for-woocommerce
distance-rate-shipping-for-woocommerce
disable-elementor-editor-translation
disable-elementor-editor-translation
cwd-stealth-links
cwd-stealth-links
customize-wpadmin
customize-wpadmin
custom-comment-notifications
custom-comment-notifications
cookie-monster
cookie-monster
cm-email-blacklist
cm-email-blacklist
child-themes-helper
child-themes-helper
Showing 12301 to 12400 of 36406 results
Vulnerability data is aggregated from automated feeds and public sources. Results may include false positives or outdated information. Always verify details and apply updates in a staging environment before deploying to production.
Data updated daily from trusted sources. Last updated: July 3, 2026 at 15:33 UTC.