Known Plugin Vulnerabilities

Track known vulnerabilities from configured sources. Default view shows all open and closed vulnerabilities, ordered by most recently updated first.

Open Vulnerabilities

11439

Across tracked plugins

Affected Plugins

57

With open vulnerabilities

Critical / High

0

Require immediate attention

Recently Updated

0

In the last 30 days

Vulnerability List

Export CSV
Vulnerability list with plugin score and patch status
PluginSlugScoreVulnerabilityCVE IDSeverityAffected VersionsPatchedUpdated
asset-manager asset-manager
95
Asset Manager <= 0.3 - Arbitrary File Upload LOW *-0.3 July 5, 2026
Events Manager – Calendar, Bookings, Tickets, and more! events-manager
78
Events Manager < 5.1.7 - Cross-Site Scripting LOW [*, 5.1.7) 5.1.7 July 5, 2026
forum-server forum-server
89
WP Forum Server <= 1.7.3 - Authenticated (Admin+) Stored Cross-Site Scripting LOW *-1.7.3 1.7.4 July 5, 2026
forum-server forum-server
89
WP Forum Server < 1.7.5 - Cross-Site Scripting LOW [*, 1.7.5) 1.7.5 July 5, 2026
forum-server forum-server
89
WP Forum Server < 1.7.4 - SQL Injection LOW [*, 1.7.4) 1.7.4 July 5, 2026
flash-album-gallery flash-album-gallery
91
Album and Image Gallery with Lightbox – Flagallery Photo Portfolio <= 1.72 - Reflected Cross-Site Scripting LOW *-1.72 1.73 July 5, 2026
ezpz-one-click-backup ezpz-one-click-backup
89
EZPZ One Click Backup <= 12.03.10 - Cross-Site Scripting LOW *-12.03.10 July 5, 2026
dynamic-widgets dynamic-widgets
93
Dynamic Widgets <= 1.5.1 - Cross Site Scripting LOW *-1.5.1 1.5.2 July 5, 2026
custom-contact-forms custom-contact-forms
93
Custom Contact Forms Plugin <= 5.1.0.2 - Reflected Cross-Site Scripting LOW [*, 5.1.0.3) 5.1.0.3 July 5, 2026
catablog catablog
89
CataBlog < 1.6.3 - Reflected Cross-Site Scripting LOW [*, 1.6.3) 1.6.3 July 5, 2026
BulletProof Security bulletproof-security
68
BulletProof Security < .47.1 - Reflected Cross-Site Scripting LOW [*, .47.1) .47.1 July 5, 2026
Kadence Security – Password, Two Factor Authentication, and Brute Force Protection better-wp-security
92
iThemes Security < 3.2.5 - Cross-Site Scripting LOW [*, 3.2.5) 3.2.5 July 5, 2026
Kadence Security – Password, Two Factor Authentication, and Brute Force Protection better-wp-security
92
Better WP Security <= 3.2.4 - Multiple Cross-Site Scripting LOW *-3.2.4 3.2.5 July 5, 2026
bad-behavior bad-behavior
93
Bad Behavior < 2.0.47 & 2.2.0 - 2.2.4 - Cross-Site Scripting LOW [*, 2.0.47), [2.2.0, 2.2.5) 2.0.47 July 5, 2026
2-click-socialmedia-buttons 2-click-socialmedia-buttons
97
2 Click Social Media Buttons <= 0.33 - Multiple Cross-Site Scripting LOW *-0.33 0.34 July 5, 2026
2-click-socialmedia-buttons 2-click-socialmedia-buttons
97
2 Click Social Media Buttons < 0.34 - Cross-Site Scripting LOW [*, 0.34) 0.34 July 5, 2026
all-in-one-event-calendar all-in-one-event-calendar
97
Timely All-in-One Events Calendar < 1.6 - Cross-Site Scripting LOW [*, 1.6) 1.6 July 5, 2026
another-wordpress-classifieds-plugin another-wordpress-classifieds-plugin
97
WordPress Classifieds Plugin – Ad Directory & Listings by AWP Classifieds < 2.0 - Arbitrary File Upload LOW [*, 2.0) 2.0 July 5, 2026
deans-fckeditor-with-pwwangs-code-plugin-for-wordpress deans-fckeditor-with-pwwangs-code-plugin-for-wordpress
91
Dean's FCKEditor <= 1.0.0 - Arbitrary File Upload LOW *-1.0.0 July 5, 2026
buddypress buddypress
93
BuddyPress - 1.5-1.5.4 - SQL Injection LOW 1.5-1.5.4 1.5.5 July 5, 2026
cms-tree-page-view cms-tree-page-view
93
CMS Tree Page View < 0.8.9 - Cross-Site Scripting LOW [*, 0.8.9) 0.8.9 July 5, 2026
404like 404like
97
404like <= 1.0 - SQL Injection LOW *-1.0 1.0.2 July 5, 2026
allwebmenus-wordpress-menu-plugin allwebmenus-wordpress-menu-plugin
97
AllWebMenus WordPress Menu Plugin <= 1.1.8 - Arbitrary File Upload LOW *-1.1.8 1.1.9 July 5, 2026
allwebmenus-wordpress-menu-plugin allwebmenus-wordpress-menu-plugin
97
AllWebMenus WordPress Menu Plugin < 1.1.9 - Arbitrary File Upload LOW [*, 1.1.9) 1.1.9 July 5, 2026
count-per-day count-per-day
93
Count per Day <= 3.1 - Arbitrary File Download LOW *-3.1 3.1.1 July 5, 2026
age-verification age-verification
97
Age Verification <= 0.4 - Open Redirect LOW *-0.4 0.5 July 5, 2026
blaze-slide-show-for-wordpress blaze-slide-show-for-wordpress
91
Blaze Slideshow <= 2.4 - Arbitrary File Upload LOW *-2.4 2.6 July 5, 2026
connections connections
91
Connections Business Directory < 0.7.1.6 - Authorization Bypass LOW *-0.7.1.5 0.7.1.6 July 5, 2026
absolute-privacy absolute-privacy
95
Absolute Privacy <= 2.0.5 - Authentication Bypass LOW *-2.0.5 2.0.6 July 5, 2026
disqus-comment-system disqus-comment-system
93
Disqus Comment System < 2.68 - Reflected Cross-Site Scripting LOW [*, 2.68) 2.68 July 5, 2026
flash-album-gallery flash-album-gallery
91
Album and Image Gallery with Lightbox – Flagallery Photo Portfolio < 1.57 - Cross-Site Scripting LOW [*, 1.57) 1.57 July 5, 2026
1-jquery-photo-gallery-slideshow-flash 1-jquery-photo-gallery-slideshow-flash
95
ZooEffect Plugin for Video player, Photo Gallery Slideshow jQuery and audio / music / podcast – HTML5 <= 1.11 - Reflected Cross-Site Scripting LOW *-1.11 July 5, 2026
featurific-for-wordpress featurific-for-wordpress
91
Featurific For WordPress <= 1.6.2 - Cross-Site Scripting LOW *-1.6.2 July 5, 2026
clickdesk-live-support-chat-plugin clickdesk-live-support-chat-plugin
91
Live Chat from ClickDesk – Live Chat – Help Desk Plugin for Websites <= 2.0 - Cross-Site Scripting LOW *-2.0 3.0 July 5, 2026
alert-before-your-post alert-before-your-post
95
Alert Before Your Post <= 0.1.1 - Cross-Site Scripting LOW *-0.1.1 July 5, 2026
flexible-custom-post-type flexible-custom-post-type
93
Flexible Custom Post Type < 0.1.7 - Cross-Site Scripting LOW [*, 0.1.7) 0.1.7 July 5, 2026
AdRotate Banner Manager adrotate
74
AdRotate – Ad manager & AdSense Ads < 3.6.8 - SQL Injection LOW [*, 3.6.8) 3.6.8 July 5, 2026
allwebmenus-wordpress-menu-plugin allwebmenus-wordpress-menu-plugin
97
AllWebMenus WordPress Menu Plugin <= 1.1.3 - Remote File Inclusion LOW *-1.1.3 1.1.4 July 5, 2026
eventify eventify
91
Eventify - Simple Events <= 1.7.f - SQL Injection via eventid LOW * - 1.7.f 1.7.g July 5, 2026
category-list-portfolio-page category-list-portfolio-page
91
TimThumb <= 1.33 - Remote File Download LOW * July 5, 2026
eshop eshop
89
eShop < 6.2.9 - Reflected Cross-Site Scripting LOW [*, 6.2.9) 6.2.9 July 5, 2026
addthis addthis
97
WordPress Share Buttons Plugin – AddThis < 2.2.0 - Code Injection LOW [*, 2.2.0) 2.2.0 July 5, 2026
BackWPup – WordPress Backup & Restore Plugin backwpup
96
BackWPup <= 1.7.1 - Remote File Inclusion LOW *-1.7.1 1.7.2 July 5, 2026
BackWPup – WordPress Backup & Restore Plugin backwpup
96
BackWPup – WordPress Backup Plugin < 1.4.1 - Directory Traversal LOW [*, 1.4.1) 1.4.1 July 5, 2026
forum-server forum-server
89
WP Forum Server <= 1.6.5 - SQL Injection LOW *-1.6.5 1.6.6 July 5, 2026
cdnvote cdnvote
93
CDN Vote < 0.4.2 - SQL Injection LOW [*, 0.4.2) 0.4.2 July 5, 2026
embedded-video-with-link embedded-video-with-link
91
Embedded Video <= 4.1 - Cross-Site Scripting LOW *-4.1 July 5, 2026
cforms2 cforms2
93
CformsII <= 14.10.1 - CAPTCHA Bypass LOW *-14.10.1 14.11 July 5, 2026
event-registration event-registration
93
Event Registration < 6.00.03 - SQL Injection LOW [*, 6.00.03) 6.00.03 July 5, 2026
feedlist feedlist
93
FeedList <= 2.61.03 - Reflected Cross-Site Scripting LOW *-2.61.03 2.70.00 July 5, 2026
cforms2 cforms2
93
CformsII <=11.5 - Cross-Site Scripting LOW *-11.5 11.6.1 July 5, 2026
cpl cpl
91
Copperleaf Photolog <= 0.16- SQL injection LOW *-0.16 July 5, 2026
dm-albums dm-albums
91
DM Albums <= 1.9.2 - Remote File Inclusion LOW *-1.9.2 1.9.3 July 5, 2026
firestats firestats
93
FireStats <1.6.2 - SQL Injection LOW [*, 1.6.2) 1.6.2 July 5, 2026
firestats firestats
93
FireStats < 1.6.2 - Remote File Inclusion LOW [*, 1.6.2) 1.6.2 July 5, 2026
fmoblog fmoblog
91
fMoblog <= 2.1 - SQL Injection LOW *-2.1 July 5, 2026
downloads-manager downloads-manager
91
Downloads Manager <= 0.2 - Arbitrary File Upload LOW *-0.2 July 5, 2026
download-monitor download-monitor
93
Download Monitor <= 2.0.6 - Unauthenticated SQL Injection LOW *-2.0.6 2.0.9 July 5, 2026
dmsguestbook dmsguestbook
91
DMSGuestbook < 1.9.0 - Cross-Site Scripting LOW [*, 1.9.0) 1.9.0 July 5, 2026
dmsguestbook dmsguestbook
91
DMSGuestbook <= 1.8.0 - Directory Traversal LOW *-1.8.0 1.8.1 July 5, 2026
dmsguestbook dmsguestbook
91
DMSGuestbook < 1.9.0 - Cross-Site Scripting LOW [*, 1.9.0) 1.9.0 July 5, 2026
dmsguestbook dmsguestbook
91
DMSGuestbook <= 1.7.0 - SQL Injection LOW * July 5, 2026
fgallery fgallery
93
fGallery 2.4.1 - SQL injection LOW *-2.4.1 2.4.2 July 5, 2026
adserve adserve
97
AdServe < 0.3 - SQL Injection LOW *-0.2 0.3 July 5, 2026
cryptographp cryptographp
91
Cryptographp <= 1.2 - Cross-Site Scripting LOW *-1.2 July 5, 2026
captcha-offrepo captcha-offrepo
93
Captcha! <= 2.5d - Cross-Site Scripting LOW * - 2.5d 2.6 July 5, 2026
backupwordpress backupwordpress
93
BackUpWordPress <= 0.4.2b - Remote File Inclusion LOW [*, 0.4.3) 0.4.3 July 5, 2026
feedburner-feedsmith feedburner-feedsmith
93
FeedBurner FeedSmith <= 2.2 - Cross-Site Request Forgery LOW *-2.2 2.3 July 5, 2026
feedstats-de feedstats-de
93
FeedStats < 2.4 - Cross-Site Scripting LOW [*, 2.4) 2.4 July 5, 2026
adsense-deluxe adsense-deluxe
95
AdSense-Deluxe <= 0.8 - Cross-Site Request Forgery LOW *-0.8 July 5, 2026
Akismet Anti-spam: Spam Protection akismet
92
Akismet Spam Protection < 2.0.2 - Cross-Site Scripting LOW *-2.0.1 2.0.2 July 5, 2026
LOW

asset-manager

asset-manager

Score: 95/100 Asset Manager <= 0.3 - Arbitrary File Upload Affected: *-0.3 Patched: Updated: July 5, 2026
LOW

forum-server

forum-server

Score: 89/100 WP Forum Server <= 1.7.3 - Authenticated (Admin+) Stored Cross-Site Scripting Affected: *-1.7.3 Patched: 1.7.4 Updated: July 5, 2026
LOW

forum-server

forum-server

Score: 89/100 WP Forum Server < 1.7.5 - Cross-Site Scripting Affected: [*, 1.7.5) Patched: 1.7.5 Updated: July 5, 2026
LOW

forum-server

forum-server

Score: 89/100 WP Forum Server < 1.7.4 - SQL Injection Affected: [*, 1.7.4) Patched: 1.7.4 Updated: July 5, 2026
LOW

flash-album-gallery

flash-album-gallery

Score: 91/100 Album and Image Gallery with Lightbox – Flagallery Photo Portfolio <= 1.72 - Reflected Cross-Site Scripting Affected: *-1.72 Patched: 1.73 Updated: July 5, 2026
LOW

ezpz-one-click-backup

ezpz-one-click-backup

Score: 89/100 EZPZ One Click Backup <= 12.03.10 - Cross-Site Scripting Affected: *-12.03.10 Patched: Updated: July 5, 2026
LOW

dynamic-widgets

dynamic-widgets

Score: 93/100 Dynamic Widgets <= 1.5.1 - Cross Site Scripting Affected: *-1.5.1 Patched: 1.5.2 Updated: July 5, 2026
LOW

custom-contact-forms

custom-contact-forms

Score: 93/100 Custom Contact Forms Plugin <= 5.1.0.2 - Reflected Cross-Site Scripting Affected: [*, 5.1.0.3) Patched: 5.1.0.3 Updated: July 5, 2026
LOW

catablog

catablog

Score: 89/100 CataBlog < 1.6.3 - Reflected Cross-Site Scripting Affected: [*, 1.6.3) Patched: 1.6.3 Updated: July 5, 2026
LOW

BulletProof Security

bulletproof-security

Score: 68/100 BulletProof Security < .47.1 - Reflected Cross-Site Scripting Affected: [*, .47.1) Patched: .47.1 Updated: July 5, 2026
LOW

bad-behavior

bad-behavior

Score: 93/100 Bad Behavior < 2.0.47 & 2.2.0 - 2.2.4 - Cross-Site Scripting Affected: [*, 2.0.47), [2.2.0, 2.2.5) Patched: 2.0.47 Updated: July 5, 2026
LOW

2-click-socialmedia-buttons

2-click-socialmedia-buttons

Score: 97/100 2 Click Social Media Buttons <= 0.33 - Multiple Cross-Site Scripting Affected: *-0.33 Patched: 0.34 Updated: July 5, 2026
LOW

2-click-socialmedia-buttons

2-click-socialmedia-buttons

Score: 97/100 2 Click Social Media Buttons < 0.34 - Cross-Site Scripting Affected: [*, 0.34) Patched: 0.34 Updated: July 5, 2026
LOW

all-in-one-event-calendar

all-in-one-event-calendar

Score: 97/100 Timely All-in-One Events Calendar < 1.6 - Cross-Site Scripting Affected: [*, 1.6) Patched: 1.6 Updated: July 5, 2026
LOW

another-wordpress-classifieds-plugin

another-wordpress-classifieds-plugin

Score: 97/100 WordPress Classifieds Plugin – Ad Directory & Listings by AWP Classifieds < 2.0 - Arbitrary File Upload Affected: [*, 2.0) Patched: 2.0 Updated: July 5, 2026
LOW

buddypress

buddypress

Score: 93/100 BuddyPress - 1.5-1.5.4 - SQL Injection Affected: 1.5-1.5.4 Patched: 1.5.5 Updated: July 5, 2026
LOW

cms-tree-page-view

cms-tree-page-view

Score: 93/100 CMS Tree Page View < 0.8.9 - Cross-Site Scripting Affected: [*, 0.8.9) Patched: 0.8.9 Updated: July 5, 2026
LOW

404like

404like

Score: 97/100 404like <= 1.0 - SQL Injection Affected: *-1.0 Patched: 1.0.2 Updated: July 5, 2026
LOW

allwebmenus-wordpress-menu-plugin

allwebmenus-wordpress-menu-plugin

Score: 97/100 AllWebMenus WordPress Menu Plugin <= 1.1.8 - Arbitrary File Upload Affected: *-1.1.8 Patched: 1.1.9 Updated: July 5, 2026
LOW

allwebmenus-wordpress-menu-plugin

allwebmenus-wordpress-menu-plugin

Score: 97/100 AllWebMenus WordPress Menu Plugin < 1.1.9 - Arbitrary File Upload Affected: [*, 1.1.9) Patched: 1.1.9 Updated: July 5, 2026
LOW

count-per-day

count-per-day

Score: 93/100 Count per Day <= 3.1 - Arbitrary File Download Affected: *-3.1 Patched: 3.1.1 Updated: July 5, 2026
LOW

age-verification

age-verification

Score: 97/100 Age Verification <= 0.4 - Open Redirect Affected: *-0.4 Patched: 0.5 Updated: July 5, 2026
LOW

blaze-slide-show-for-wordpress

blaze-slide-show-for-wordpress

Score: 91/100 Blaze Slideshow <= 2.4 - Arbitrary File Upload Affected: *-2.4 Patched: 2.6 Updated: July 5, 2026
LOW

connections

connections

Score: 91/100 Connections Business Directory < 0.7.1.6 - Authorization Bypass Affected: *-0.7.1.5 Patched: 0.7.1.6 Updated: July 5, 2026
LOW

absolute-privacy

absolute-privacy

Score: 95/100 Absolute Privacy <= 2.0.5 - Authentication Bypass Affected: *-2.0.5 Patched: 2.0.6 Updated: July 5, 2026
LOW

disqus-comment-system

disqus-comment-system

Score: 93/100 Disqus Comment System < 2.68 - Reflected Cross-Site Scripting Affected: [*, 2.68) Patched: 2.68 Updated: July 5, 2026
LOW

flash-album-gallery

flash-album-gallery

Score: 91/100 Album and Image Gallery with Lightbox – Flagallery Photo Portfolio < 1.57 - Cross-Site Scripting Affected: [*, 1.57) Patched: 1.57 Updated: July 5, 2026
LOW

1-jquery-photo-gallery-slideshow-flash

1-jquery-photo-gallery-slideshow-flash

Score: 95/100 ZooEffect Plugin for Video player, Photo Gallery Slideshow jQuery and audio / music / podcast – HTML5 <= 1.11 - Reflected Cross-Site Scripting Affected: *-1.11 Patched: Updated: July 5, 2026
LOW

featurific-for-wordpress

featurific-for-wordpress

Score: 91/100 Featurific For WordPress <= 1.6.2 - Cross-Site Scripting Affected: *-1.6.2 Patched: Updated: July 5, 2026
LOW

clickdesk-live-support-chat-plugin

clickdesk-live-support-chat-plugin

Score: 91/100 Live Chat from ClickDesk – Live Chat – Help Desk Plugin for Websites <= 2.0 - Cross-Site Scripting Affected: *-2.0 Patched: 3.0 Updated: July 5, 2026
LOW

alert-before-your-post

alert-before-your-post

Score: 95/100 Alert Before Your Post <= 0.1.1 - Cross-Site Scripting Affected: *-0.1.1 Patched: Updated: July 5, 2026
LOW

flexible-custom-post-type

flexible-custom-post-type

Score: 93/100 Flexible Custom Post Type < 0.1.7 - Cross-Site Scripting Affected: [*, 0.1.7) Patched: 0.1.7 Updated: July 5, 2026
LOW

AdRotate Banner Manager

adrotate

Score: 74/100 AdRotate – Ad manager & AdSense Ads < 3.6.8 - SQL Injection Affected: [*, 3.6.8) Patched: 3.6.8 Updated: July 5, 2026
LOW

allwebmenus-wordpress-menu-plugin

allwebmenus-wordpress-menu-plugin

Score: 97/100 AllWebMenus WordPress Menu Plugin <= 1.1.3 - Remote File Inclusion Affected: *-1.1.3 Patched: 1.1.4 Updated: July 5, 2026
LOW

eventify

eventify

Score: 91/100 Eventify - Simple Events <= 1.7.f - SQL Injection via eventid Affected: * - 1.7.f Patched: 1.7.g Updated: July 5, 2026
LOW

category-list-portfolio-page

category-list-portfolio-page

Score: 91/100 TimThumb <= 1.33 - Remote File Download Affected: * Patched: Updated: July 5, 2026
LOW

eshop

eshop

Score: 89/100 eShop < 6.2.9 - Reflected Cross-Site Scripting Affected: [*, 6.2.9) Patched: 6.2.9 Updated: July 5, 2026
LOW

addthis

addthis

Score: 97/100 WordPress Share Buttons Plugin – AddThis < 2.2.0 - Code Injection Affected: [*, 2.2.0) Patched: 2.2.0 Updated: July 5, 2026
LOW

forum-server

forum-server

Score: 89/100 WP Forum Server <= 1.6.5 - SQL Injection Affected: *-1.6.5 Patched: 1.6.6 Updated: July 5, 2026
LOW

cdnvote

cdnvote

Score: 93/100 CDN Vote < 0.4.2 - SQL Injection Affected: [*, 0.4.2) Patched: 0.4.2 Updated: July 5, 2026
LOW

embedded-video-with-link

embedded-video-with-link

Score: 91/100 Embedded Video <= 4.1 - Cross-Site Scripting Affected: *-4.1 Patched: Updated: July 5, 2026
LOW

cforms2

cforms2

Score: 93/100 CformsII <= 14.10.1 - CAPTCHA Bypass Affected: *-14.10.1 Patched: 14.11 Updated: July 5, 2026
LOW

event-registration

event-registration

Score: 93/100 Event Registration < 6.00.03 - SQL Injection Affected: [*, 6.00.03) Patched: 6.00.03 Updated: July 5, 2026
LOW

feedlist

feedlist

Score: 93/100 FeedList <= 2.61.03 - Reflected Cross-Site Scripting Affected: *-2.61.03 Patched: 2.70.00 Updated: July 5, 2026
LOW

cforms2

cforms2

Score: 93/100 CformsII <=11.5 - Cross-Site Scripting Affected: *-11.5 Patched: 11.6.1 Updated: July 5, 2026
LOW

cpl

cpl

Score: 91/100 Copperleaf Photolog <= 0.16- SQL injection Affected: *-0.16 Patched: Updated: July 5, 2026
LOW

dm-albums

dm-albums

Score: 91/100 DM Albums <= 1.9.2 - Remote File Inclusion Affected: *-1.9.2 Patched: 1.9.3 Updated: July 5, 2026
LOW

firestats

firestats

Score: 93/100 FireStats <1.6.2 - SQL Injection Affected: [*, 1.6.2) Patched: 1.6.2 Updated: July 5, 2026
LOW

firestats

firestats

Score: 93/100 FireStats < 1.6.2 - Remote File Inclusion Affected: [*, 1.6.2) Patched: 1.6.2 Updated: July 5, 2026
LOW

fmoblog

fmoblog

Score: 91/100 fMoblog <= 2.1 - SQL Injection Affected: *-2.1 Patched: Updated: July 5, 2026
LOW

downloads-manager

downloads-manager

Score: 91/100 Downloads Manager <= 0.2 - Arbitrary File Upload Affected: *-0.2 Patched: Updated: July 5, 2026
LOW

download-monitor

download-monitor

Score: 93/100 Download Monitor <= 2.0.6 - Unauthenticated SQL Injection Affected: *-2.0.6 Patched: 2.0.9 Updated: July 5, 2026
LOW

dmsguestbook

dmsguestbook

Score: 91/100 DMSGuestbook < 1.9.0 - Cross-Site Scripting Affected: [*, 1.9.0) Patched: 1.9.0 Updated: July 5, 2026
LOW

dmsguestbook

dmsguestbook

Score: 91/100 DMSGuestbook <= 1.8.0 - Directory Traversal Affected: *-1.8.0 Patched: 1.8.1 Updated: July 5, 2026
LOW

dmsguestbook

dmsguestbook

Score: 91/100 DMSGuestbook < 1.9.0 - Cross-Site Scripting Affected: [*, 1.9.0) Patched: 1.9.0 Updated: July 5, 2026
LOW

dmsguestbook

dmsguestbook

Score: 91/100 DMSGuestbook <= 1.7.0 - SQL Injection Affected: * Patched: Updated: July 5, 2026
LOW

fgallery

fgallery

Score: 93/100 fGallery 2.4.1 - SQL injection Affected: *-2.4.1 Patched: 2.4.2 Updated: July 5, 2026
LOW

adserve

adserve

Score: 97/100 AdServe < 0.3 - SQL Injection Affected: *-0.2 Patched: 0.3 Updated: July 5, 2026
LOW

cryptographp

cryptographp

Score: 91/100 Cryptographp <= 1.2 - Cross-Site Scripting Affected: *-1.2 Patched: Updated: July 5, 2026
LOW

captcha-offrepo

captcha-offrepo

Score: 93/100 Captcha! <= 2.5d - Cross-Site Scripting Affected: * - 2.5d Patched: 2.6 Updated: July 5, 2026
LOW

backupwordpress

backupwordpress

Score: 93/100 BackUpWordPress <= 0.4.2b - Remote File Inclusion Affected: [*, 0.4.3) Patched: 0.4.3 Updated: July 5, 2026
LOW

feedburner-feedsmith

feedburner-feedsmith

Score: 93/100 FeedBurner FeedSmith <= 2.2 - Cross-Site Request Forgery Affected: *-2.2 Patched: 2.3 Updated: July 5, 2026
LOW

feedstats-de

feedstats-de

Score: 93/100 FeedStats < 2.4 - Cross-Site Scripting Affected: [*, 2.4) Patched: 2.4 Updated: July 5, 2026
LOW

adsense-deluxe

adsense-deluxe

Score: 95/100 AdSense-Deluxe <= 0.8 - Cross-Site Request Forgery Affected: *-0.8 Patched: Updated: July 5, 2026
LOW

Akismet Anti-spam: Spam Protection

akismet

Score: 92/100 Akismet Spam Protection < 2.0.2 - Cross-Site Scripting Affected: *-2.0.1 Patched: 2.0.2 Updated: July 5, 2026

Showing 11401 to 11471 of 11439 results

Download: CSV JSON
Important: Review Required

Vulnerability data is aggregated from automated feeds and public sources. Results may include false positives or outdated information. Always verify details and apply updates in a staging environment before deploying to production.

Data updated daily from trusted sources. Last updated: July 5, 2026 at 20:45 UTC.