Known Plugin Vulnerabilities
Track known vulnerabilities from configured sources. Default view shows all open and closed vulnerabilities, ordered by most recently updated first.
Open Vulnerabilities
36406Across tracked plugins
Affected Plugins
91With open vulnerabilities
Critical / High
0Require immediate attention
Recently Updated
0In the last 30 days
Vulnerability List
Export CSV| Plugin | Slug | Score | Vulnerability | CVE ID | Severity | Affected Versions | Patched | Updated |
|---|---|---|---|---|---|---|---|---|
| Htaccess File Editor – Easily Edit, Backup, Restore .htaccess file | htaccess-file-editor |
98
|
Htaccess File Editor <= 1.0.19 - Unauthenticated Information Exposure | LOW | *-1.0.19 | 1.0.20 | July 5, 2026 | |
| gsheetconnector-forminator | gsheetconnector-forminator |
93
|
GSheetConnector for Forminator Forms <= 1.0.12 - Reflected Cross-Site Scripting | LOW | *-1.0.12 | 1.0.13 | July 5, 2026 | |
| glossy | glossy |
91
|
Glossy <= 2.3.5 - Reflected Cross-Site Scripting | LOW | *-2.3.5 | July 5, 2026 | ||
| giga-messenger-bots | giga-messenger-bots |
91
|
Giga Messenger – Express <= 2.3.1 - Reflected Cross-Site Scripting | LOW | *-2.3.1 | July 5, 2026 | ||
| fws-ajax-contact-form | fws-ajax-contact-form |
93
|
Ajax Contact Form <= 1.4.1 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-1.4.1 | 1.4.2 | July 5, 2026 | |
| foundation-columns | foundation-columns |
91
|
Foundation Columns <= 0.8 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-0.8 | July 5, 2026 | ||
| eazy-under-construction | eazy-under-construction |
93
|
Eazy Under Construction <= 1.0 - Reflected Cross-Site Scripting | LOW | *-1.0 | 2.0 | July 5, 2026 | |
| codebard-help-desk | codebard-help-desk |
89
|
CodeBard Help Desk <= 1.1.2 - Reflected Cross-Site Scripting | LOW | *-1.1.2 | July 5, 2026 | ||
| cf7-redirect-thank-you-page | cf7-redirect-thank-you-page |
93
|
Contact Form 7 Redirect & Thank You Page <= 1.0.7 - Reflected Cross-Site Scripting | LOW | *-1.0.7 | 1.0.8 | July 5, 2026 | |
| build-private-store-for-woocommerce | build-private-store-for-woocommerce |
93
|
Build Private Store For Woocommerce <= 1.0 - Cross-Site Request Forgery | LOW | *-1.0 | 1.1 | July 5, 2026 | |
| buddyboss-platform | buddyboss-platform |
93
|
BuddyBoss Platform < 2.7.60 - Insecure Direct Object Reference to Private Post Comment Exposure | LOW | [*, 2.7.60) | 2.7.60 | July 5, 2026 | |
| brizy-pro | brizy-pro |
93
|
Brizy Pro <= 2.8.0 - Reflected Cross-Site Scripting | LOW | *-2.8.0 | 2.8.1 | July 5, 2026 | |
| better-wlm-api | better-wlm-api |
93
|
Better WishList API <= 1.1.3 - Unauthenticated Stored Cross-Site Scripting | LOW | *-1.1.3 | 1.1.4 | July 5, 2026 | |
| banner-garden | banner-garden |
91
|
Banner Garden Plugin for WordPress <= 0.1.3 - Reflected Cross-Site Scripting | LOW | *-0.1.3 | July 5, 2026 | ||
| awesome-responsive-photo-gallery | awesome-responsive-photo-gallery |
93
|
Image Gallery – Responsive Photo Gallery <= 1.0.5 - Reflected Cross-Site Scripting | LOW | *-1.0.5 | 2.1 | July 5, 2026 | |
| amberlink | amberlink |
95
|
Amber <= 1.4.4 - Reflected Cross-Site Scripting | LOW | *-1.4.4 | July 5, 2026 | ||
| ai-addons-for-elementor | ai-addons-for-elementor |
95
|
Elementor AI Addons <= 2.2.1 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-2.2.1 | July 5, 2026 | ||
| addon-elements-for-elementor-page-builder | addon-elements-for-elementor-page-builder |
97
|
Elementor Addon Elements <= 1.13.10 - Authenticated (Contributor+) Sensitive Information Exposure via Modal Popup | LOW | *-1.13.10 | 1.14 | July 5, 2026 | |
| Page Builder by SiteOrigin | siteorigin-panels |
86
|
Page Builder by SiteOrigin <= 2.31.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Row Label Parameter | LOW | *-2.31.0 | 2.31.1 | July 5, 2026 | |
| groundhogg | groundhogg |
93
|
Groundhogg <= 3.7.3.5 - Authenticated (Author+) Arbitrary File Upload via gh_big_file_upload Function | LOW | *-3.7.3.5 | 3.7.3.6 | July 5, 2026 | |
| html5-video-player | html5-video-player |
93
|
HTML5 Video Player – mp4 Video Player Plugin and Block <= 2.5.35 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting via heading Parameter | LOW | *-2.5.35 | 2.5.36 | July 5, 2026 | |
| Royal Addons for Elementor – Addons and Templates Kit for Elementor | royal-elementor-addons | N/A | Royal Elementor Addons and Templates <= 1.7.1006 - Cross-Site Request Forgery to Reflected Cross-Site Scripting | LOW | *-1.7.1006 | 1.7.1007 | July 5, 2026 | |
| W3 Total Cache | w3-total-cache |
69
|
W3 Total Cache <= 2.8.1 - Authenticated (Subscriber+) Missing Authorization to Server-Side Request Forgery | LOW | *-2.8.1 | 2.8.2 | July 5, 2026 | |
| event-monster | event-monster |
93
|
Event monster <= 1.4.3 - Information Exposure Via Visitors List Export | LOW | *-1.4.3 | 1.4.4 | July 5, 2026 | |
| wr-price-list-for-woocommerce | wr-price-list-for-woocommerce | N/A | WR Price List Manager For Woocommerce <= 1.0.8 - Authenticated (Subscriber+) Arbitrary File Upload | LOW | *-1.0.8 | 1.1.0 | July 5, 2026 | |
| wp-migration-duplicator | wp-migration-duplicator | N/A | WebToffee WP Backup and Migration <= 1.5.3 - Unauthenticated Sensitive Information Exposure | LOW | *-1.5.3 | 1.5.4 | July 5, 2026 | |
| wp-asambleas | wp-asambleas | N/A | WP-Asambleas <= 2.85.0 - Reflected Cross-Site Scripting | LOW | *-2.85.0 | July 5, 2026 | ||
| world-cup-predictor | world-cup-predictor | N/A | World Cup Predictor <= 1.9.6 - Reflected Cross-Site Scripting | LOW | *-1.9.6 | July 5, 2026 | ||
| woolementor | woolementor | N/A | CoDesigner WooCommerce Builder for Elementor <= 4.21 - Authenticated (Author+) Stored Cross-Site Scripting | LOW | *-4.21 | July 5, 2026 | ||
| responsive-jquery-slider | responsive-jquery-slider | N/A | Responsive jQuery Slider <= 1.1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-1.1.1 | July 5, 2026 | ||
| Paid Membership Subscriptions – Effortless Memberships, Recurring Payments & Content Restriction | paid-member-subscriptions |
67
|
Paid Membership Subscriptions – Effortless Memberships, Recurring Payments & Content Restriction <= 2.13.7 - Authentication Bypass via pms_payment_id | LOW | *-2.13.7 | 2.13.8 | July 5, 2026 | |
| neon-product-designer-for-woocommerce | neon-product-designer-for-woocommerce |
89
|
Neon Product Designer <= 2.1.1 - Authenticated (Contributor+) SQL Injection | LOW | *-2.1.1 | July 5, 2026 | ||
| multilang-contact-form | multilang-contact-form |
89
|
Multilang Contact Form <= 1.5 - Reflected Cross-Site Scripting | LOW | *-1.5 | July 5, 2026 | ||
| homey-login-register | homey-login-register |
89
|
Homey Login Register <= 2.4.0 - Unauthenticated Privilege Escalation | LOW | *-2.4.0 | July 5, 2026 | ||
| gallery-and-lightbox | gallery-and-lightbox |
91
|
Gallery and Lightbox <= 1.0.14 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-1.0.14 | July 5, 2026 | ||
| essential-wp-real-estate | essential-wp-real-estate |
87
|
Essential WP Real Estate <= 1.1.3 - Reflected Cross-Site Scripting | LOW | *-1.1.3 | July 5, 2026 | ||
| elementinvader-addons-for-elementor | elementinvader-addons-for-elementor |
93
|
ElementInvader Addons for Elementor <= 1.2.6 - Authenticated (Contributor+) Local File Inclusion | LOW | *-1.2.6 | 1.2.7 | July 5, 2026 | |
| course-booking-system | course-booking-system |
93
|
Course Booking System <= 6.0.6 - Unauthenticated SQL Injection | LOW | *-6.0.6 | 6.0.7 | July 5, 2026 | |
| button-block | button-block |
93
|
Button Block <= 1.1.5 - Missing Authorization | LOW | *-1.1.5 | 1.1.6 | July 5, 2026 | |
| Booking Calendar | booking |
71
|
Booking Calendar <= 10.9.2 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting via 'booking' Shortcode | LOW | *-10.9.2 | 10.9.3 | July 5, 2026 | |
| bold-pagos-en-linea | bold-pagos-en-linea |
93
|
Bold pagos en linea <= 3.1.4 - Reflected Cross-Site Scripting | LOW | *-3.1.4 | 3.1.5 | July 5, 2026 | |
| background-control | background-control |
91
|
Background Control <= 1.0.5 - Cross-Site Request Forgery to Arbitrary File Deletion | LOW | *-1.0.5 | July 5, 2026 | ||
| booking-and-rental-manager-for-woocommerce | booking-and-rental-manager-for-woocommerce |
93
|
Rental and Booking Manager for Bike, Car, Dress, Resort with WooCommerce Integration – WpRently | WordPress plugin <= 2.2.1 - Reflected Cross-Site Scripting | LOW | *-2.2.1 | 2.2.2 | July 5, 2026 | |
| tcbd-auto-refresher | tcbd-auto-refresher | N/A | TCBD Auto Refresher <= 2.0 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-2.0 | July 5, 2026 | ||
| wp-spid-italia | wp-spid-italia | N/A | WP SPID Italia <= 2.9 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-2.9 | 2.12 | July 5, 2026 | |
| accordion-slider-lite | accordion-slider-lite |
95
|
Accordion Slider Lite <= 1.5.1 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-1.5.1 | July 5, 2026 | ||
| gatormail-smart-forms | gatormail-smart-forms |
93
|
GatorMail SmartForms <= 1.1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-1.1.0 | 1.1.1 | July 5, 2026 | |
| perfect-portal-widgets | perfect-portal-widgets |
93
|
Perfect Portal Widgets <= 3.0.3 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-3.0.3 | 3.0.4 | July 5, 2026 | |
| dominion-domain-checker-wpbakery-addon | dominion-domain-checker-wpbakery-addon |
91
|
Dominion – Domain Checker for WPBakery <= 2.3.0 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-2.3.0 | July 5, 2026 | ||
| rrdevs-for-elementor | rrdevs-for-elementor | N/A | RRAddons for Elementor <= 1.1.0 - Authenticated (Contributor+) Post Disclosure | LOW | *-1.1.0 | July 5, 2026 | ||
| grid-accordion-lite | grid-accordion-lite |
91
|
Grid Accordion Lite <= 1.5.1 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-1.5.1 | July 5, 2026 | ||
| push-notification-for-post-and-buddypress | push-notification-for-post-and-buddypress | N/A | Push Notification for Post and BuddyPress <= 2.07 - Reflected Cross-Site Scripting | LOW | *-2.06 | 2.08 | July 5, 2026 | |
| unlimited-theme-addons | unlimited-theme-addons | N/A | Unlimited Theme Addon For Elementor and WooCommerce <= 1.2.2 - Authenticated (Contributor+) Post Disclosure | LOW | *-1.2.2 | 1.2.3 | July 5, 2026 | |
| Kadence Blocks — Page Builder Toolkit for Gutenberg Editor | kadence-blocks |
91
|
Gutenberg Blocks with AI by Kadence WP – Page Builder Features <= 3.4.2 - Authenticated (contributor+) Stored Cross-Site Scripting via Button Link | LOW | *-3.4.2 | 3.4.3 | July 5, 2026 | |
| post-duplicator | post-duplicator |
93
|
Post Duplicator <= 2.36 - Authenticated (Contributor+) Protected Post Disclosure | LOW | *-2.36 | 2.37 | July 5, 2026 | |
| coupon-x-discount-pop-up | coupon-x-discount-pop-up |
93
|
Coupon X: Discount Pop Up, Promo Code Pop Ups, Announcement Pop Up, WooCommerce Popups <= 1.3.5 - Missing Authorization to Authenticated (Contributor+) PHP Object Injection | LOW | *-1.3.5 | 1.3.6 | July 5, 2026 | |
| coupon-x-discount-pop-up | coupon-x-discount-pop-up |
93
|
Coupon X: Discount Pop Up, Promo Code Pop Ups, Announcement Pop Up, WooCommerce Popups <= 1.3.5 - Missing Authorization | LOW | *-1.3.5 | 1.3.6 | July 5, 2026 | |
| trackserver | trackserver | N/A | Trackserver <= 5.0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-5.0.2 | 5.0.3 | July 5, 2026 | |
| internal-link-shortcode | internal-link-shortcode |
91
|
CF Internal Link Shortcode <= 1.1.0 - Unauthenticated SQL Injection | LOW | *-1.1.0 | July 5, 2026 | ||
| zalomeni | zalomeni | N/A | Zalomení <= 1.5 - Authenticated (Admin+) Stored Cross-Site Scripting | LOW | *-1.5 | July 5, 2026 | ||
| xml-for-avito | xml-for-avito | N/A | XML for Avito <= 2.5.2 - Reflected Cross-Site Scripting | LOW | *-2.5.2 | 2.5.3 | July 5, 2026 | |
| wp-mediatagger | wp-mediatagger | N/A | WP MediaTagger <= 4.1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-4.1.1 | July 5, 2026 | ||
| wp-mediatagger | wp-mediatagger | N/A | WP MediaTagger <= 4.1.1 - Reflected Cross-Site Scripting | LOW | *-4.1.1 | July 5, 2026 | ||
| wp-finance | wp-finance | N/A | WP Finance <= 1.3.6 - Reflected Cross-Site Scripting | LOW | *-1.3.6 | July 5, 2026 | ||
| wp-finance | wp-finance | N/A | WP Finance <= 1.3.6 - Cross-Site Request Forgery to Stored Cross-Site Scripting | LOW | *-1.3.6 | July 5, 2026 | ||
| wp-email-newsletter | wp-email-newsletter | N/A | WP Email Newsletter <= 1.1 - Reflected Cross-Site Scripting | LOW | *-1.1 | July 5, 2026 | ||
| wp-desklite | wp-desklite | N/A | WP DeskLite – Helpdesk and Support Plugin <= 1.0.0 - Reflected Cross-Site Scripting | LOW | *-1.0.0 | July 5, 2026 | ||
| woo-ups-pickup | woo-ups-pickup | N/A | OPSI Israel Domestic Shipments <= 2.6.5 - Reflected Cross-Site Scripting | LOW | *-2.6.5 | 2.6.6 | July 5, 2026 | |
| widget4call | widget4call | N/A | Widget4Call <= 1.0.7 - Reflected Cross-Site Scripting | LOW | *-1.0.7 | July 5, 2026 | ||
| user-messages | user-messages | N/A | User Messages <= 1.2.4 - Reflected Cross-Site Scripting | LOW | *-1.2.4 | July 5, 2026 | ||
| twitter-bootstrap-collapse-aka-accordian-shortcode | twitter-bootstrap-collapse-aka-accordian-shortcode | N/A | Twitter Bootstrap Collapse aka Accordian Shortcode <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode | LOW | *-1.0 | July 5, 2026 | ||
| tabulate | tabulate | N/A | Tabulate <= 2.10.3 - Reflected Cross-Site Scripting | LOW | *-2.10.3 | July 5, 2026 | ||
| slidedeck-lite-for-wordpress | slidedeck-lite-for-wordpress | N/A | SlideDeck 1 Lite Content Slider <= 1.4.8 - Reflected Cross-Site Scripting | LOW | *-1.4.8 | July 5, 2026 | ||
| responsive-iframe | responsive-iframe | N/A | Responsive iframe <= 1.2.0 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-1.2.0 | July 5, 2026 | ||
| policy-genius | policy-genius |
91
|
Policy Genius <= 2.0.4 - Reflected Cross-Site Scripting | LOW | *-2.0.4 | July 5, 2026 | ||
| google-map-professional | google-map-professional |
89
|
Google Map Professional <= 1.0 - Reflected Cross-Site Scripting | LOW | *-1.0 | July 5, 2026 | ||
| give | give |
93
|
GiveWP – Donation Plugin and Fundraising Platform <= 3.19.3 - Unauthenticated PHP Object Injection | LOW | *-3.19.3 | 3.19.4 | July 5, 2026 | |
| give | give |
93
|
GiveWP – Donation Plugin and Fundraising Platform <= 3.19.2 - Unauthenticated PHP Object Injection | LOW | *-3.19.2 | 3.19.3 | July 5, 2026 | |
| fast-tube | fast-tube |
89
|
Fast Tube <= 2.3.1 - Reflected Cross-Site Scripting | LOW | *-2.3.1 | July 5, 2026 | ||
| fantastic-elasticsearch | fantastic-elasticsearch |
91
|
Fantastic Elasticsearch <= 4.1.0 - Reflected Cross-Site Scripting | LOW | *-4.1.0 | July 5, 2026 | ||
| ect-homepage-products | ect-homepage-products |
91
|
ECT Home Page Products <= 1.9 - Reflected Cross-Site Scripting | LOW | *-1.9 | July 5, 2026 | ||
| custom-login-page | custom-login-page |
91
|
A5 Custom Login Page <= 2.8.1 - Reflected Cross-Site Scripting | LOW | *-2.8.1 | July 5, 2026 | ||
| clickwhale | clickwhale |
93
|
ClickWhale – Link Manager, Link Shortener and Click Tracker for Affiliate Links & Link Pages <= 2.4.1 - Reflected Cross-Site Scripting | LOW | *-2.4.1 | 2.4.2 | July 5, 2026 | |
| canvasflow | canvasflow |
91
|
CanvasFlow <= 1.5.5 - Reflected Cross-Site Scripting | LOW | *-1.5.5 | July 5, 2026 | ||
| essential-wp-real-estate | essential-wp-real-estate |
87
|
Essential WP Real Estate <= 1.1.3 - Missing Authorization to Arbitrary Post/Page Deletion | LOW | *-1.1.3 | July 5, 2026 | ||
| themeisle-companion | themeisle-companion | N/A | Orbit Fox by ThemeIsle <= 2.10.43 - Authenticated (Contributor+) Stored Cross-Site Scripting via title_tag Parameter | LOW | *-2.10.43 | 2.10.44 | July 5, 2026 | |
| themeisle-companion | themeisle-companion | N/A | Orbit Fox by ThemeIsle <= 2.10.43 - Authenticated (Contributor+) Stored Cross-Site Scripting via Pricing Table Widget | LOW | *-2.10.43 | 2.10.44 | July 5, 2026 | |
| ai-scribe-the-chatgpt-powered-seo-content-creation-wizard | ai-scribe-the-chatgpt-powered-seo-content-creation-wizard |
97
|
AI Scribe – SEO AI Writer, Content Generator, Humanizer, Blog Writer, SEO Optimizer, DALLE-3, AI WordPress Plugin ChatGPT (GPT-4o 128K) <= 2.5 - Authenticated (Contributor+) SQL Injection | LOW | *-2.5 | 2.6 | July 5, 2026 | |
| ai-scribe-the-chatgpt-powered-seo-content-creation-wizard | ai-scribe-the-chatgpt-powered-seo-content-creation-wizard |
97
|
AI Scribe – SEO AI Writer, Content Generator, Humanizer, Blog Writer, SEO Optimizer, DALLE-3, AI WordPress Plugin ChatGPT (GPT-4o 128K) <= 2.5 - Missing Authorization to Authenticated (Subscriber+) Settings Update | LOW | *-2.5 | 2.6 | July 5, 2026 | |
| wpguppy-lite | wpguppy-lite | N/A | One to one user Chat by WPGuppy <= 1.1.0 - Authorization Bypass | LOW | *-1.1.0 | 1.1.1 | July 5, 2026 | |
| wpbookit | wpbookit | N/A | WPBookit <= 1.6.4 - Unauthenticated Arbitrary User Password Change | LOW | *-1.6.4 | 1.6.6 | July 5, 2026 | |
| tourmaster | tourmaster | N/A | Tour Master - Tour Booking, Travel, Hotel <= 5.3.4 - Reflected Cross-Site Scripting | LOW | *-5.3.4 | 5.3.5 | July 5, 2026 | |
| The Events Calendar | the-events-calendar | N/A | The Events Calendar <= 6.7.0 - Cross-Site Request Forgery | LOW | *-6.7.0 | 6.7.1 | July 5, 2026 | |
| ninja-tables | ninja-tables |
93
|
Ninja Tables – Easy Data Table <= 5.0.16 - Authenticated (Admin+) Stored Cross-Site Scripting | LOW | *-5.0.16 | 5.0.17 | July 5, 2026 | |
| goodlayers-core | goodlayers-core |
93
|
Goodlayers Core <= 2.1.2 - Authenticated (Subscriber+) Stored Cross-Site Scripting via SVG Upload | LOW | *-2.1.2 | 2.1.3 | July 5, 2026 | |
| clipart | clipart |
91
|
ClipArt <= 0.2 - Reflected Cross-Site Scripting | LOW | *-0.2 | July 5, 2026 | ||
| clasify-classified-listing | clasify-classified-listing |
91
|
Clasify Classified Listing <= 1.0.7 - Reflected Cross-Site Scripting | LOW | *-1.0.7 | July 5, 2026 | ||
| bulk-me-now | bulk-me-now |
87
|
Bulk Me Now! <= 2.0 - Cross-Site Request Forgery to Message Deletion | LOW | *-2.0 | July 5, 2026 | ||
| bulk-me-now | bulk-me-now |
87
|
Bulk Me Now! <= 2.0 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-2.0 | July 5, 2026 | ||
| bulk-me-now | bulk-me-now |
87
|
Bulk Me Now! <= 2.0 - Reflected Cross-Site Scripting via 'status' | LOW | *-2.0 | July 5, 2026 |
Htaccess File Editor – Easily Edit, Backup, Restore .htaccess file
htaccess-file-editor
gsheetconnector-forminator
gsheetconnector-forminator
glossy
glossy
giga-messenger-bots
giga-messenger-bots
fws-ajax-contact-form
fws-ajax-contact-form
foundation-columns
foundation-columns
eazy-under-construction
eazy-under-construction
codebard-help-desk
codebard-help-desk
cf7-redirect-thank-you-page
cf7-redirect-thank-you-page
build-private-store-for-woocommerce
build-private-store-for-woocommerce
buddyboss-platform
buddyboss-platform
brizy-pro
brizy-pro
better-wlm-api
better-wlm-api
banner-garden
banner-garden
awesome-responsive-photo-gallery
awesome-responsive-photo-gallery
amberlink
amberlink
ai-addons-for-elementor
ai-addons-for-elementor
addon-elements-for-elementor-page-builder
addon-elements-for-elementor-page-builder
Page Builder by SiteOrigin
siteorigin-panels
groundhogg
groundhogg
html5-video-player
html5-video-player
Royal Addons for Elementor – Addons and Templates Kit for Elementor
royal-elementor-addons
W3 Total Cache
w3-total-cache
event-monster
event-monster
wr-price-list-for-woocommerce
wr-price-list-for-woocommerce
wp-migration-duplicator
wp-migration-duplicator
wp-asambleas
wp-asambleas
world-cup-predictor
world-cup-predictor
woolementor
woolementor
responsive-jquery-slider
responsive-jquery-slider
Paid Membership Subscriptions – Effortless Memberships, Recurring Payments & Content Restriction
paid-member-subscriptions
neon-product-designer-for-woocommerce
neon-product-designer-for-woocommerce
multilang-contact-form
multilang-contact-form
homey-login-register
homey-login-register
gallery-and-lightbox
gallery-and-lightbox
essential-wp-real-estate
essential-wp-real-estate
elementinvader-addons-for-elementor
elementinvader-addons-for-elementor
course-booking-system
course-booking-system
button-block
button-block
Booking Calendar
booking
bold-pagos-en-linea
bold-pagos-en-linea
background-control
background-control
booking-and-rental-manager-for-woocommerce
booking-and-rental-manager-for-woocommerce
tcbd-auto-refresher
tcbd-auto-refresher
wp-spid-italia
wp-spid-italia
accordion-slider-lite
accordion-slider-lite
gatormail-smart-forms
gatormail-smart-forms
perfect-portal-widgets
perfect-portal-widgets
dominion-domain-checker-wpbakery-addon
dominion-domain-checker-wpbakery-addon
rrdevs-for-elementor
rrdevs-for-elementor
grid-accordion-lite
grid-accordion-lite
push-notification-for-post-and-buddypress
push-notification-for-post-and-buddypress
unlimited-theme-addons
unlimited-theme-addons
Kadence Blocks — Page Builder Toolkit for Gutenberg Editor
kadence-blocks
post-duplicator
post-duplicator
coupon-x-discount-pop-up
coupon-x-discount-pop-up
coupon-x-discount-pop-up
coupon-x-discount-pop-up
trackserver
trackserver
internal-link-shortcode
internal-link-shortcode
zalomeni
zalomeni
xml-for-avito
xml-for-avito
wp-mediatagger
wp-mediatagger
wp-mediatagger
wp-mediatagger
wp-finance
wp-finance
wp-finance
wp-finance
wp-email-newsletter
wp-email-newsletter
wp-desklite
wp-desklite
woo-ups-pickup
woo-ups-pickup
widget4call
widget4call
user-messages
user-messages
twitter-bootstrap-collapse-aka-accordian-shortcode
twitter-bootstrap-collapse-aka-accordian-shortcode
tabulate
tabulate
slidedeck-lite-for-wordpress
slidedeck-lite-for-wordpress
responsive-iframe
responsive-iframe
policy-genius
policy-genius
google-map-professional
google-map-professional
give
give
give
give
fast-tube
fast-tube
fantastic-elasticsearch
fantastic-elasticsearch
ect-homepage-products
ect-homepage-products
custom-login-page
custom-login-page
clickwhale
clickwhale
canvasflow
canvasflow
essential-wp-real-estate
essential-wp-real-estate
themeisle-companion
themeisle-companion
themeisle-companion
themeisle-companion
ai-scribe-the-chatgpt-powered-seo-content-creation-wizard
ai-scribe-the-chatgpt-powered-seo-content-creation-wizard
ai-scribe-the-chatgpt-powered-seo-content-creation-wizard
ai-scribe-the-chatgpt-powered-seo-content-creation-wizard
wpguppy-lite
wpguppy-lite
wpbookit
wpbookit
tourmaster
tourmaster
The Events Calendar
the-events-calendar
ninja-tables
ninja-tables
goodlayers-core
goodlayers-core
clipart
clipart
clasify-classified-listing
clasify-classified-listing
bulk-me-now
bulk-me-now
bulk-me-now
bulk-me-now
bulk-me-now
bulk-me-now
Showing 13501 to 13600 of 36406 results
Vulnerability data is aggregated from automated feeds and public sources. Results may include false positives or outdated information. Always verify details and apply updates in a staging environment before deploying to production.
Data updated daily from trusted sources. Last updated: July 5, 2026 at 05:58 UTC.