Known Plugin Vulnerabilities
Track known vulnerabilities from configured sources. Default view shows all open and closed vulnerabilities, ordered by most recently updated first.
Open Vulnerabilities
36319Across tracked plugins
Affected Plugins
81With open vulnerabilities
Critical / High
0Require immediate attention
Recently Updated
0In the last 30 days
Vulnerability List
Export CSV| Plugin | Slug | Score | Vulnerability | CVE ID | Severity | Affected Versions | Patched | Updated |
|---|---|---|---|---|---|---|---|---|
| sitepress-multilingual-cms | sitepress-multilingual-cms | N/A | WPML <= 4.5.13 - Cross-Site Request Forgery | LOW | *-4.5.13 | 4.5.14 | July 1, 2026 | |
| sitepress-multilingual-cms | sitepress-multilingual-cms | N/A | WPML <= 4.5.13 - Cross-Site Request Forgery | LOW | *-4.5.13 | 4.5.14 | July 1, 2026 | |
| sitepress-multilingual-cms | sitepress-multilingual-cms | N/A | WPML <= 4.5.10 - Missing Authorization to Settings Change | LOW | *-4.5.10 | 4.5.11 | July 1, 2026 | |
| simple-video-embedder | simple-video-embedder | N/A | Simple Video Embedder <= 2.2 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-2.2 | July 1, 2026 | ||
| seed-social | seed-social | N/A | Seed Social <= 2.0.3 - Authenticated (Admin+) Stored Cross-Site Scripting | LOW | *-2.0.3 | 2.0.4 | July 1, 2026 | |
| quick-restaurant-reservations | quick-restaurant-reservations | N/A | Quick Restaurant Reservations <= 1.5.4 - Cross-Site Request Forgery | LOW | *-1.5.4 | 1.5.5 | July 1, 2026 | |
| car-rental | car-rental |
91
|
Car Rental by BestWebSoft <= 1.1.2 - Authenticated (Admin+) Stored Cross-Site Scripting | LOW | *-1.1.2 | July 1, 2026 | ||
| Better Messages – Live Chat, Chat Rooms, Real-Time Messaging & Private Messages | bp-better-messages |
75
|
Better Messages <= 1.9.10.68 - Authorization Bypass to Blocking Control Bypass | LOW | *-1.9.10.68 | 1.9.10.69 | July 1, 2026 | |
| asgaros-forum | asgaros-forum |
97
|
Asgaros Forum <= 2.1.0 - Cross-Site Request Forgery | LOW | *-2.1.0 | 2.2.0 | July 1, 2026 | |
| wp-affiliate-platform | wp-affiliate-platform | N/A | WP Affiliate Platform <= 6.3.9 - Reflected Cross-Site Scripting | LOW | *-6.3.9 | 6.4.0 | July 1, 2026 | |
| wp-affiliate-platform | wp-affiliate-platform | N/A | WP Affiliate Platform <= 6.3.9 - Authenticated (Administrator+) Stored Cross-Site Scripting | LOW | *-6.3.9 | 6.4.0 | July 1, 2026 | |
| wp-affiliate-platform | wp-affiliate-platform | N/A | WP Affiliate Platform <= 6.3.9 - Cross-Site Request Forgery | LOW | *-6.3.9 | 6.4.0 | July 1, 2026 | |
| theme-demo-import | theme-demo-import | N/A | Theme Demo Import <= 1.1.3 - Authenticated (Administrator+) Arbitrary File Upload | LOW | *-1.1.3 | July 1, 2026 | ||
| salon-booking-system | salon-booking-system | N/A | Salon booking system <= 7.9 - Reflected Cross-Site Scripting | LOW | *-7.9 | 7.9.4 | July 1, 2026 | |
| oauth2-provider | oauth2-provider | N/A | WP OAuth Server (OAuth Authentication) <= 4.2.1 - Authenticated (Administrator+) Stored Cross-Site Scripting | LOW | *-4.2.1 | 4.2.2 | July 1, 2026 | |
| form-vibes | form-vibes |
93
|
Form Vibes <= 1.4.5 - Authenticated (Admininstrator+) SQL Injection | LOW | *-1.4.5 | 1.4.6 | July 1, 2026 | |
| 3dprint | 3dprint |
95
|
3DPrint < 3.5.6.9 - Cross-Site Request Forgery to Arbitrary File Deletion | LOW | *-3.5.4.8 | 3.5.6.9 | July 1, 2026 | |
| wp-user-merger | wp-user-merger | N/A | WP User Merger <= 1.5.2 - Authenticated (Admin+) SQL Injection | LOW | *-1.5.2 | 1.5.3 | July 1, 2026 | |
| wp-user-merger | wp-user-merger | N/A | WP User Merger <= 1.5.2 - Authenticated (Admin+) SQL Injection | LOW | *-1.5.2 | 1.5.3 | July 1, 2026 | |
| wp-user-merger | wp-user-merger | N/A | WP User Merger <= 1.5.2 - Authenticated (Admin+) SQL Injection | LOW | *-1.5.2 | 1.5.3 | July 1, 2026 | |
| wp-smart-contracts | wp-smart-contracts | N/A | WPSmartContracts <= 1.3.11 - Authenticated (Author+) SQL Injection | LOW | *-1.3.11 | 1.3.12 | July 1, 2026 | |
| woo-checkout-field-editor-pro | woo-checkout-field-editor-pro | N/A | Checkout Field Editor <= 1.7.2 - Authenticated (Admin+) PHP Object Injection | LOW | *-1.7.2 | 1.8.0 | July 1, 2026 | |
| testimonial-slider | testimonial-slider | N/A | Testimonial Slider <= 1.3.1 - Cross-Site Request Forgery | LOW | *-1.3.1 | 1.3.2 | July 1, 2026 | |
| seed-social | seed-social | N/A | Seed Social <= 2.0.2 - Authenticated (Administrator+) Stored Cross-Site Scripting | LOW | *-2.0.2 | 2.0.3 | July 1, 2026 | |
| loginpress | loginpress |
93
|
LoginPress | Custom Login Page Customizer <= 1.6.2 - Missing Authorization to Settings Changes | LOW | *-1.6.2 | 1.6.3 | July 1, 2026 | |
| HTML Forms – Simple WordPress Forms Plugin | html-forms |
86
|
HTML Forms <= 1.3.24 - Authenticated (Administrator+) SQL Injection | LOW | *-1.3.24 | 1.3.25 | July 1, 2026 | |
| cyklodev-wp-notify | cyklodev-wp-notify |
93
|
Cyklodev WP Notify <= 1.2.1 - Authenticated (Admin+) Stored Cross-Site Scripting | LOW | *-1.2.1 | 1.3.0 | July 1, 2026 | |
| awesome-support | awesome-support |
93
|
Awesome Support <= 6.1.1 - Insecure Direct Object Reference to (Subscriber+) Ticket Export | LOW | *-6.1.1 | 6.1.2 | July 1, 2026 | |
| wp-admin-ui-customize | wp-admin-ui-customize | N/A | WP Admin UI Customize <= 1.5.12 - Authenticated (Administrator+) Cross-Site Scripting | LOW | *-1.5.12 | 1.5.13 | July 1, 2026 | |
| responsive-lightbox | responsive-lightbox | N/A | Responsive Lightbox & Gallery <= 2.4.1 - Authenticated (Administrator+) Stored Cross-Site Scripting | LOW | *-2.4.1 | 2.4.2 | July 1, 2026 | |
| paypal-donations | paypal-donations | N/A | Donations via PayPal <= 1.9.8 - Authenticated (Administrator+) Stored Cross-Site Scripting | LOW | *-1.9.8 | 1.9.9 | July 1, 2026 | |
| jeg-elementor-kit | jeg-elementor-kit |
93
|
Jeg Elementor Kit <= 2.5.6 - Authorization Bypass | LOW | *-2.5.6 | 2.5.7 | July 1, 2026 | |
| jeg-elementor-kit | jeg-elementor-kit |
93
|
Jeg Elementor Kit <= 2.5.6 - Unauthenticated Authorization Bypass | LOW | *-2.5.6 | 2.5.7 | July 1, 2026 | |
| find-and-replace-all | find-and-replace-all |
89
|
Find and Replace All <= 1.3 - Cross-Site Request Forgery to Arbitrary Content Replacement | LOW | *-1.3 | July 1, 2026 | ||
| find-and-replace-all | find-and-replace-all |
89
|
Find and Replace All <= 1.3 - Cross-Site Request Forgery to Reflected Cross-Site Scripting | LOW | *-1.3 | July 1, 2026 | ||
| wpgform | wpgform | N/A | Google Forms <= 0.95 - Authenticated (Admin+) Stored Cross-Site Scripting | LOW | *-0.95 | July 1, 2026 | ||
| vr-calendar-sync | vr-calendar-sync | N/A | VR Calendar <= 2.3.3 - Cross-Site Request Forgery | LOW | *-2.3.3 | 2.3.4 | July 1, 2026 | |
| photo-gallery | photo-gallery | N/A | Photo Gallery by 10Web <= 1.8.0 - Reflected Cross-Site Scripting | LOW | *-1.8.0 | 1.8.1 | July 1, 2026 | |
| login-form-recaptcha | login-form-recaptcha |
91
|
reCAPTCHA <= 1.6 - Authenticated (Administrator+) Stored Cross-Site Scripting | LOW | *-1.6 | July 1, 2026 | ||
| image-hover-effects-css3 | image-hover-effects-css3 |
91
|
Image Hover Effects Css3 <= 4.5 - Authenticated (Administrator+) Stored Cross-Site Scripting | LOW | *-4.5 | July 1, 2026 | ||
| get-site-to-phone-by-qr-code | get-site-to-phone-by-qr-code |
91
|
Showing URL in QR Code <= 0.0.1 - Cross-Site Request Forgery to Cross-Site Scripting | LOW | *-0.0.1 | July 1, 2026 | ||
| fancier-author-box | fancier-author-box |
91
|
Fancier Author Box by ThematoSoup <= 1.4 - Authenticated (Admin+) Stored Cross-Site Scripting | LOW | *-1.4 | July 1, 2026 | ||
| export-woocommerce-customer-list | export-woocommerce-customer-list |
93
|
Export customers list csv for WooCommerce <= 2.0.67 - CSV Injection | LOW | *-2.0.67 | 2.0.69 | July 1, 2026 | |
| Beautiful Cookie Consent Banner | beautiful-and-responsive-cookie-consent |
93
|
Beautiful Cookie Consent Banner <= 2.9.0 - Authenticated (Admin+) Stored Cross-Site Scripting | LOW | *-2.9.0 | 2.9.1 | July 1, 2026 | |
| analytics-for-wp | analytics-for-wp |
95
|
Analytics for WP <= 1.5.1 - Authenticated (Admin+) Stored Cross-Site Scripting | LOW | *-1.5.1 | July 1, 2026 | ||
| 001-prime-strategy-translate-accelerator | 001-prime-strategy-translate-accelerator |
95
|
001 Prime Strategy Translate Accelerator <= 1.1.1 - Missing Authorization | LOW | *-1.1.1 | July 1, 2026 | ||
| wp-email-template | wp-email-template | N/A | a3 Lazy Load <= 2.6.0 - Cross-Site Request Forgery to Settings Reset | LOW | *-2.6.2 | 2.6.3 | July 1, 2026 | |
| woocommerce-products-quick-view | woocommerce-products-quick-view | N/A | a3 Lazy Load <= 2.6.0 - Cross-Site Request Forgery to Settings Reset | LOW | *-2.0.1 | 2.0.2 | July 1, 2026 | |
| woocommerce-product-sort-and-display | woocommerce-product-sort-and-display | N/A | a3 Lazy Load <= 2.6.0 - Cross-Site Request Forgery to Settings Reset | LOW | *-2.2.2 | 2.2.3 | July 1, 2026 | |
| woocommerce-dynamic-gallery | woocommerce-dynamic-gallery | N/A | a3 Lazy Load <= 2.6.0 - Cross-Site Request Forgery to Settings Reset | LOW | *-3.0.1 | 3.0.2 | July 1, 2026 | |
| woocommerce-compare-products | woocommerce-compare-products | N/A | a3 Lazy Load <= 2.6.0 - Cross-Site Request Forgery to Settings Reset | LOW | *-2.8.2 | 2.8.3 | July 1, 2026 | |
| woo-widget-product-slideshow | woo-widget-product-slideshow | N/A | a3 Lazy Load <= 2.6.0 - Cross-Site Request Forgery to Settings Reset | LOW | *-1.9.1 | 1.9.2 | July 1, 2026 | |
| video-thumbnails | video-thumbnails | N/A | Video Thumbnails <= 2.12.3 - Authenticated (Admin+) Stored Cross-Site Scripting | LOW | *-2.12.3 | July 1, 2026 | ||
| salat-times | salat-times | N/A | Salat Times < = 3.2.1 - Authenticated (Administrator+) Stored Cross-Site Scripting | LOW | *-3.2.1 | 3.2.2 | July 1, 2026 | |
| owm-weather | owm-weather | N/A | OWM Weather <= 5.6.8 - Authenticated (Contributor+) SQL Injection | LOW | *-5.6.8 | 5.6.9 | July 1, 2026 | |
| jeeng-push-notifications | jeeng-push-notifications |
93
|
Jeeng Push Notifications <= 2.0.3 - Cross-Site Request Forgery | LOW | *-2.0.3 | 2.0.4 | July 1, 2026 | |
| jeeng-push-notifications | jeeng-push-notifications |
93
|
Jeeng Push Notifications <= 2.0.3 - Authenticated (Admin+) Stored Cross-Site Scripting | LOW | *-2.0.3 | 2.0.4 | July 1, 2026 | |
| font-awesome-4-menus | font-awesome-4-menus |
89
|
Font Awesome 4 Menus <= 4.7.0 - Authenticated (Admin+) Stored Cross-Site Scripting | LOW | *-4.7.0 | July 1, 2026 | ||
| find-and-replace-all | find-and-replace-all |
89
|
Find and Replace All <= 1.2 - Authenticated (Administrator+) Stored Cross-Site Scripting | LOW | 1.2 | 1.3 | July 1, 2026 | |
| download-plugin | download-plugin |
93
|
Download Plugin <= 1.6.2 - Missing Authorization and Sensitive Information Exposure | LOW | *-1.6.2 | 2.0.0 | July 1, 2026 | |
| contact-us-page-contact-people | contact-us-page-contact-people |
89
|
a3 Lazy Load <= 2.6.0 - Cross-Site Request Forgery to Settings Reset | LOW | *-3.6.1 | 3.6.2 | July 1, 2026 | |
| am-hili-affiliate-manager-for-publishers | am-hili-affiliate-manager-for-publishers |
95
|
AM-HiLi <= 1.0 - Authenticated (Administrator+) Stored Cross-Site Scripting | LOW | *-1.0 | July 1, 2026 | ||
| agenteasy-properties | agenteasy-properties |
95
|
AgentEasy Properties <= 1.0.4 - Authenticated (Administrator+) Stored Cross-Site Scripting | LOW | *-1.0.4 | July 1, 2026 | ||
| administrator-z | administrator-z |
95
|
Administrator Z <= 2022.9.28 - Unauthorized File Upload via ACF | LOW | *-2022.9.28 | 2022.9.29 | July 1, 2026 | |
| accessibility | accessibility |
97
|
Accessibility <= 1.0.2 - Authenticated (Administrator+) Stored Cross-Site Scritping | LOW | *-1.0.2 | 1.0.3 | July 1, 2026 | |
| a3-responsive-slider | a3-responsive-slider |
97
|
a3 Lazy Load <= 2.6.0 - Cross-Site Request Forgery to Settings Reset | LOW | *-2.2.0 | 2.2.1 | July 1, 2026 | |
| a3-portfolio | a3-portfolio |
97
|
a3 Lazy Load <= 2.6.0 - Cross-Site Request Forgery to Settings Reset | LOW | *-3.0.1 | 3.0.2 | July 1, 2026 | |
| a3 Lazy Load | a3-lazy-load |
95
|
a3 Lazy Load <= 2.6.0 - Cross-Site Request Forgery to Settings Reset | LOW | *-2.6.0 | 2.6.1 | July 1, 2026 | |
| 4ecps-webforms | 4ecps-webforms |
95
|
4ECPS Web Forms <= 0.2.17 - Authenticated (Administrator+) Stored Cross-Site Scripting | LOW | *-0.2.17 | 0.2.18 | July 1, 2026 | |
| watchtowerhq | watchtowerhq | N/A | WatchTowerHQ <= 3.6.15 - Unauthenticated Arbitrary File Download | LOW | *-3.6.15 | 3.6.16 | July 1, 2026 | |
| watchtowerhq | watchtowerhq | N/A | WatchTowerHQ <= 3.6.15 - Unauthenticated Arbitrary File Deletion | LOW | *-3.6.15 | 3.6.16 | July 1, 2026 | |
| permalink-manager | permalink-manager | N/A | Permalink Manager Lite <= 2.2.20 - Missing Authorization | LOW | *-2.2.20 | 2.2.20.1 | July 1, 2026 | |
| miniorange-2-factor-authentication | miniorange-2-factor-authentication |
93
|
miniOrange's Google Authenticator <= 5.6.1 - Cross-Site Request Forgery to Malware Scan Termination | LOW | *-5.6.1 | 5.6.2 | July 1, 2026 | |
| homepage-pop-up | homepage-pop-up |
89
|
Homepage Popup <= 1.2.5 - Authenticated (Administrator+) Stored Cross-Site Scripting | LOW | *-1.2.5 | July 1, 2026 | ||
| homepage-pop-up | homepage-pop-up |
89
|
Homepage PopUp <= 1.2.5 - Cross-Site Request Forgery | LOW | *-1.2.5 | July 1, 2026 | ||
| download-monitor | download-monitor |
93
|
Download Monitor <= 4.7.2 - Authenticated Directory Traversal to Sensitive Information Exposure | LOW | *-4.7.2 | 4.7.3 | July 1, 2026 | |
| contact-us-page-contact-people | contact-us-page-contact-people |
89
|
Contact Us Page – Contact People <= 3.6.1 - Cross-Site Request Forgery to Settings Reset | LOW | *-3.6.1 | 3.6.2 | July 1, 2026 | |
| authorizer | authorizer |
93
|
phpCAS authentication library < 1.6.0 - Service Hostname Discovery Exploitation | LOW | [*, 1.6.0) | 1.6.0 | July 1, 2026 | |
| mantenimiento-web | mantenimiento-web |
93
|
Mantenimiento web <= 0.8 - Cross-Site Request Forgery | LOW | *-0.8 | 0.9 | July 1, 2026 | |
| wpdeepl | wpdeepl | N/A | DeepL Pro API Translation <= 1.7.4 - Sensitive Information Disclosure | LOW | *-1.7.4 | 1.7.5 | July 1, 2026 | |
| User Frontend: AI Powered Frontend Posting, User Directory, Profile, Membership & User Registration | wp-user-frontend | N/A | WP User Frontend <= 3.5.28 - Privilege Escalation | LOW | *-3.5.28 | 3.5.29 | July 1, 2026 | |
| wp-polls | wp-polls | N/A | WP-Polls <= 2.75.6 - IP Validation Bypass | LOW | *-2.75.6 | 2.76.0 | July 1, 2026 | |
| Booster for WooCommerce – PDF Invoices, Abandoned Cart, Variation Swatches & 100+ Tools | woocommerce-jetpack |
65
|
Booster for WooCommerce (Free <= 5.6.6, Premium <= 5.6.4) - Cross-Site Request Forgery to File Deletion | LOW | *-5.6.6 | 5.6.7 | July 1, 2026 | |
| woo-wallet | woo-wallet | N/A | TeraWallet – For WooCommerce <= 1.4.3 - Insecure Direct Object Reference | LOW | *-1.4.3 | 1.4.4 | July 1, 2026 | |
| subscribe-to-category | subscribe-to-category | N/A | Subscribe to Category <= 2.7.3 - Missing Authorization | LOW | *-2.7.3 | July 1, 2026 | ||
| Five Star Restaurant Reservations – WordPress Booking Plugin | restaurant-reservations | N/A | Five Star Restaurant Reservations <= 2.4.11 - Missing Authorization to Stored Cross-Site Scripting | LOW | *-2.4.11 | 2.4.12 | July 1, 2026 | |
| Popup Maker – Boost Sales, Conversions, Optins, Subscribers with the Ultimate WP Popup Builder | popup-maker | N/A | Popup Maker <= 1.16.10 - Authenticated (Administrator+) Stored Cross-Site Scripting | LOW | *-1.16.10 | 1.16.11 | July 1, 2026 | |
| miniorange-2-factor-authentication | miniorange-2-factor-authentication |
93
|
miniOrange's Google Authenticator <= 5.6.1 - Missing Authorization to Plugin Settings Change | LOW | *-5.6.1 | 5.6.2 | July 1, 2026 | |
| menu-ordering-reservations | menu-ordering-reservations |
93
|
Restaurant Menu – Food Ordering System – Table Reservation <= 2.3.0 - Missing Authorization on AJAX Actions | LOW | *-2.3.0 | 2.3.1 | July 1, 2026 | |
| menu-ordering-reservations | menu-ordering-reservations |
93
|
Restaurant Menu – Food Ordering System – Table Reservation <= 2.3.1 - Cross-Site Request Forgery | LOW | *-2.3.1 | 2.3.2 | July 1, 2026 | |
| gallery-images-ape | gallery-images-ape |
87
|
Gallery Images Ape <= 2.2.8 - Authenticated (Contributor+) Cross-Site Scripting | LOW | *-2.2.8 | July 1, 2026 | ||
| gallery-images-ape | gallery-images-ape |
87
|
Gallery Images Ape <= 2.2.8 - Missing Authorization | LOW | *-2.2.8 | July 1, 2026 | ||
| event-monster | event-monster |
93
|
Event Monster <= 1.2.0 - Authenticated (Administrator+) SQL Injection | LOW | *-1.2.0 | 1.2.1 | July 1, 2026 | |
| content-egg | content-egg |
93
|
Content Egg <= 5.4.0 - Cross-Site Request Forgery | LOW | *-5.4.0 | 5.5.0 | July 1, 2026 | |
| booster-plus-for-woocommerce | booster-plus-for-woocommerce |
93
|
Booster for WooCommerce (Free <= 5.6.6, Premium <= 5.6.4) - Cross-Site Request Forgery to File Deletion | LOW | *-5.6.4 | 5.6.5 | July 1, 2026 | |
| booster-elite-for-woocommerce | booster-elite-for-woocommerce |
93
|
Booster Elite for WooCommerce < 1.1.7 - Cross-Site Request Forgery | LOW | [*, 1.1.7) | 1.1.7 | July 1, 2026 | |
| booster-elite-for-woocommerce | booster-elite-for-woocommerce |
93
|
Booster Elite for WooCommerce < 1.1.7 - Authenticated (Admin/Shop Manager+) Arbitrary File Download | LOW | [*, 1.1.7) | 1.1.7 | July 1, 2026 | |
| addfreestats | addfreestats |
97
|
AFS Analytics <= 4.15 - Authenticated (Administrator+) Stored Cross-Site Scripting | LOW | *-4.15 | 4.16 | July 1, 2026 | |
| yikes-inc-easy-custom-woocommerce-product-tabs | yikes-inc-easy-custom-woocommerce-product-tabs | N/A | Custom Product Tabs for WooCommerce <= 1.7.9 - Authenticated (Administrator+) Stored Cross-Site Scripting | LOW | *-1.7.9 | 1.8.0 | July 1, 2026 | |
| woo-wallet | woo-wallet | N/A | TeraWallet – For WooCommerce <= 1.3.24 - Cross-Site Request Forgery via lock_unlock_terawallet | LOW | *-1.3.24 | 1.4.0 | July 1, 2026 |
sitepress-multilingual-cms
sitepress-multilingual-cms
sitepress-multilingual-cms
sitepress-multilingual-cms
sitepress-multilingual-cms
sitepress-multilingual-cms
simple-video-embedder
simple-video-embedder
seed-social
seed-social
quick-restaurant-reservations
quick-restaurant-reservations
car-rental
car-rental
Better Messages – Live Chat, Chat Rooms, Real-Time Messaging & Private Messages
bp-better-messages
asgaros-forum
asgaros-forum
wp-affiliate-platform
wp-affiliate-platform
wp-affiliate-platform
wp-affiliate-platform
wp-affiliate-platform
wp-affiliate-platform
theme-demo-import
theme-demo-import
salon-booking-system
salon-booking-system
oauth2-provider
oauth2-provider
form-vibes
form-vibes
3dprint
3dprint
wp-user-merger
wp-user-merger
wp-user-merger
wp-user-merger
wp-user-merger
wp-user-merger
wp-smart-contracts
wp-smart-contracts
woo-checkout-field-editor-pro
woo-checkout-field-editor-pro
testimonial-slider
testimonial-slider
seed-social
seed-social
loginpress
loginpress
HTML Forms – Simple WordPress Forms Plugin
html-forms
cyklodev-wp-notify
cyklodev-wp-notify
awesome-support
awesome-support
wp-admin-ui-customize
wp-admin-ui-customize
responsive-lightbox
responsive-lightbox
paypal-donations
paypal-donations
jeg-elementor-kit
jeg-elementor-kit
jeg-elementor-kit
jeg-elementor-kit
find-and-replace-all
find-and-replace-all
find-and-replace-all
find-and-replace-all
wpgform
wpgform
vr-calendar-sync
vr-calendar-sync
photo-gallery
photo-gallery
login-form-recaptcha
login-form-recaptcha
image-hover-effects-css3
image-hover-effects-css3
get-site-to-phone-by-qr-code
get-site-to-phone-by-qr-code
fancier-author-box
fancier-author-box
export-woocommerce-customer-list
export-woocommerce-customer-list
Beautiful Cookie Consent Banner
beautiful-and-responsive-cookie-consent
analytics-for-wp
analytics-for-wp
001-prime-strategy-translate-accelerator
001-prime-strategy-translate-accelerator
wp-email-template
wp-email-template
woocommerce-products-quick-view
woocommerce-products-quick-view
woocommerce-product-sort-and-display
woocommerce-product-sort-and-display
woocommerce-dynamic-gallery
woocommerce-dynamic-gallery
woocommerce-compare-products
woocommerce-compare-products
woo-widget-product-slideshow
woo-widget-product-slideshow
video-thumbnails
video-thumbnails
salat-times
salat-times
owm-weather
owm-weather
jeeng-push-notifications
jeeng-push-notifications
jeeng-push-notifications
jeeng-push-notifications
font-awesome-4-menus
font-awesome-4-menus
find-and-replace-all
find-and-replace-all
download-plugin
download-plugin
contact-us-page-contact-people
contact-us-page-contact-people
am-hili-affiliate-manager-for-publishers
am-hili-affiliate-manager-for-publishers
agenteasy-properties
agenteasy-properties
administrator-z
administrator-z
accessibility
accessibility
a3-responsive-slider
a3-responsive-slider
a3-portfolio
a3-portfolio
a3 Lazy Load
a3-lazy-load
4ecps-webforms
4ecps-webforms
watchtowerhq
watchtowerhq
watchtowerhq
watchtowerhq
permalink-manager
permalink-manager
miniorange-2-factor-authentication
miniorange-2-factor-authentication
homepage-pop-up
homepage-pop-up
homepage-pop-up
homepage-pop-up
download-monitor
download-monitor
contact-us-page-contact-people
contact-us-page-contact-people
authorizer
authorizer
mantenimiento-web
mantenimiento-web
wpdeepl
wpdeepl
User Frontend: AI Powered Frontend Posting, User Directory, Profile, Membership & User Registration
wp-user-frontend
wp-polls
wp-polls
Booster for WooCommerce – PDF Invoices, Abandoned Cart, Variation Swatches & 100+ Tools
woocommerce-jetpack
woo-wallet
woo-wallet
subscribe-to-category
subscribe-to-category
Five Star Restaurant Reservations – WordPress Booking Plugin
restaurant-reservations
Popup Maker – Boost Sales, Conversions, Optins, Subscribers with the Ultimate WP Popup Builder
popup-maker
miniorange-2-factor-authentication
miniorange-2-factor-authentication
menu-ordering-reservations
menu-ordering-reservations
menu-ordering-reservations
menu-ordering-reservations
gallery-images-ape
gallery-images-ape
gallery-images-ape
gallery-images-ape
event-monster
event-monster
content-egg
content-egg
booster-plus-for-woocommerce
booster-plus-for-woocommerce
booster-elite-for-woocommerce
booster-elite-for-woocommerce
booster-elite-for-woocommerce
booster-elite-for-woocommerce
addfreestats
addfreestats
yikes-inc-easy-custom-woocommerce-product-tabs
yikes-inc-easy-custom-woocommerce-product-tabs
woo-wallet
woo-wallet
Showing 27801 to 27900 of 36319 results
Vulnerability data is aggregated from automated feeds and public sources. Results may include false positives or outdated information. Always verify details and apply updates in a staging environment before deploying to production.
Data updated daily from trusted sources. Last updated: July 1, 2026 at 10:31 UTC.