Known Plugin Vulnerabilities
Track known vulnerabilities from configured sources. Default view shows all open and closed vulnerabilities, ordered by most recently updated first.
Open Vulnerabilities
36320Across tracked plugins
Affected Plugins
82With open vulnerabilities
Critical / High
0Require immediate attention
Recently Updated
0In the last 30 days
Vulnerability List
Export CSV| Plugin | Slug | Score | Vulnerability | CVE ID | Severity | Affected Versions | Patched | Updated |
|---|---|---|---|---|---|---|---|---|
| instagram-slider-widget | instagram-slider-widget |
93
|
Social Slider Feed <= 2.0.6 - Authenticated (Admin+) Stored Cross-Site Scripting | LOW | *-2.0.6 | 2.0.7 | July 1, 2026 | |
| floating-action-button | floating-action-button |
93
|
Floating Action Button <= 1.2 - Missing Authorization | LOW | *-1.2 | 1.2.1 | July 1, 2026 | |
| contest-gallery | contest-gallery |
93
|
Contest Gallery <= 17.0.4 - Authenticated (Author+) SQL Injection | LOW | *-17.0.4 | 17.0.5 | July 1, 2026 | |
| amcharts-charts-and-maps | amcharts-charts-and-maps |
97
|
amCharts: Charts and Maps <= 1.4 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-1.4 | 1.5 | July 1, 2026 | |
| wp-taxonomy-import | wp-taxonomy-import | N/A | WP Taxonomy Import <= 1.0.5 - Reflected Cross-Site Scripting | LOW | *-1.0.5 | July 1, 2026 | ||
| wp-hide-security-enhancer | wp-hide-security-enhancer | N/A | WP Hide & Security Enhancer <= 1.7.9.2 - Reflected Cross-Site Scripting | LOW | *-1.7.9.2 | 1.8 | July 1, 2026 | |
| string-locator | string-locator | N/A | String Locator <= 2.5.0 - Cross-Site Request Forgery to PHAR Deserialization | LOW | *-2.5.0 | 2.6.0 | July 1, 2026 | |
| stop-spam-comments | stop-spam-comments | N/A | Stop Spam Comments <= 0.2.1.2 - Protection Mechanism Bypass | LOW | *-0.2.1.2 | July 1, 2026 | ||
| Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin | simply-schedule-appointments | N/A | Simply Schedule Appointments <= 1.5.7.5 - Authenticated (Admin+) Stored Cross-Site Scripting | LOW | *-1.5.7.5 | 1.5.7.7 | July 1, 2026 | |
| Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin | simply-schedule-appointments | N/A | Simply Schedule Appointments <= 1.5.7.5 - Unauthenticated Sensitive Information Exposure | LOW | *-1.5.7.5 | 1.5.7.7 | July 1, 2026 | |
| resize-image-after-upload | resize-image-after-upload | N/A | Resize Image After Upload <= 1.8.5 - Cross-Site Request Forgery | LOW | *-1.8.5 | 1.8.6 | July 1, 2026 | |
| pop-up-pop-up | pop-up-pop-up | N/A | Pop-up <= 1.1.1 - Missing authorization to Settings Change | LOW | *-1.1.1 | 1.1.2 | July 1, 2026 | |
| netroics-blog-posts-grid | netroics-blog-posts-grid | N/A | Netroics Blog Posts Grid <= 1.0 - Authenticated (Subscriber+) Stored Cross-Site Scripting | LOW | *-1.0 | July 1, 2026 | ||
| leaflet-maps-marker | leaflet-maps-marker |
93
|
Leaflet Maps Marker (Google Maps, OpenStreetMap, Bing Maps) <= 3.12.4 - Authenticated (Admin+) SQL Injection | LOW | *-3.12.4 | 3.12.5 | July 1, 2026 | |
| jupiterx-core | jupiterx-core |
93
|
Jupiter X Core <= 2.0.9 - Missing Authorization Checks | LOW | *-2.0.9 | 2.1.0 | July 1, 2026 | |
| joomsport-sports-league-results-management | joomsport-sports-league-results-management |
93
|
JoomSport – for Sports: Team & League, Football, Hockey & more <= 5.2.5 - Authentciated (Admin+) SQL Injection via orderby | LOW | *-5.2.5 | 5.2.6 | July 1, 2026 | |
| joomsport-sports-league-results-management | joomsport-sports-league-results-management |
93
|
JoomSport – for Sports: Team & League, Football, Hockey & more <= 5.2.5 - Authenticated (Admin+) SQL Injection via orderby | LOW | *-5.2.5 | 5.2.6 | July 1, 2026 | |
| export-all-urls | export-all-urls |
93
|
Export All URLs <= 4.3 - Arbitrary File Deletion | LOW | *-4.3 | 4.4 | July 1, 2026 | |
| bulletin-announcements | bulletin-announcements |
93
|
Announcement & Notification Banner – Bulletin <= 3.5.1 - Authenticated (Subscriber+) Stored Cross-Site Scripting | LOW | *-3.5.2 | 3.5.3 | July 1, 2026 | |
| buddyforms-acf | buddyforms-acf |
93
|
BuddyForms ACF <= 1.3.8 - Authenticated (Contributor+) Cross-Site Scripting | LOW | *-1.3.8 | 1.3.9 | July 1, 2026 | |
| Custom Product Tabs Lite for WooCommerce | woocommerce-custom-product-tabs-lite |
97
|
Custom Product Tabs Lite for WooCommerce <= 1.7.6 - Authenticated (Store Manager+) Stored Cross-Site Scripting | LOW | *-1.7.6 | 1.7.7 | July 1, 2026 | |
| mobile-assistant-connector | mobile-assistant-connector |
93
|
Mobile Assistant Connector <= 2.2.2 - SQL Injection | LOW | 2.2.2 | 2.2.3 | July 1, 2026 | |
| wp-cafe | wp-cafe | N/A | WPCafe – Food Menu, WooCommerce Food Ordering, Food Delivery, Pickup and Restaurant Reservation <= 2.1.4 - Cross-Site Scripting | LOW | *-2.1.4 | 2.2.0 | July 1, 2026 | |
| wordpress-https | wordpress-https | N/A | WordPress HTTPS (SSL) <= 3.4.0 - Missing Authorization to Settings Change | LOW | *-3.4.0 | July 1, 2026 | ||
| File Sharing & Download Manager – User Private Files | user-private-files |
96
|
Frontend File Manager & Sharing – User Private Files <= 1.1.1 - Missing Authorization | LOW | *-1.1.1 | 1.1.2 | July 1, 2026 | |
| File Sharing & Download Manager – User Private Files | user-private-files |
96
|
Frontend File Manager & Sharing – User Private Files <= 1.1.0 - Sensitive Information Disclosure | LOW | *-1.1.0 | 1.1.1 | July 1, 2026 | |
| wp-to-hootsuite | wp-to-hootsuite | N/A | WordPress to Hootsuite <= 1.4.5 - Authenticated (Admin+) Cross-Site Scripting | LOW | *-1.4.5 | 1.4.6 | July 1, 2026 | |
| wp-to-buffer | wp-to-buffer | N/A | WordPress to Buffer <= 3.8.1 - Authenticated (Admin+) Cross-Site Scripting | LOW | *-3.8.1 | 3.8.2 | July 1, 2026 | |
| wp-mui-mass-user-input | wp-mui-mass-user-input | N/A | WP-MUI – Mass User Input – Add and Export WP Users Quickly <= 1.8 - Missing Authorization | LOW | *-1.8 | July 1, 2026 | ||
| woo-product-carousel-slider-and-grid-ultimate | woo-product-carousel-slider-and-grid-ultimate | N/A | WooCommerce Product Carousel, Slider & Grid Ultimate <= 1.8.6 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-1.8.6 | 1.8.7 | July 1, 2026 | |
| twitter-bootstrap-slider | twitter-bootstrap-slider | N/A | Twitter Bootstrap Slider <= 1.1.3 - Authenticated (Admin+) Cross-Site Scripting | LOW | *-1.1.3 | July 1, 2026 | ||
| testimonial-slider-and-showcase | testimonial-slider-and-showcase | N/A | Testimonial Slider <= 2.2.6 - Stored Cross-Site Scripting | LOW | *-2.2.6 | 2.2.7 | July 1, 2026 | |
| simple-telegram-for-wp | simple-telegram-for-wp | N/A | Simple Telegram <= 0.9.3 - Authenticated (Admin+) Stored Cross-Site Scripting | LOW | *-0.9.3 | July 1, 2026 | ||
| protect-wp-admin | protect-wp-admin | N/A | Protect WP Admin <= 3.7 - Cross-Site Scripting | LOW | *-3.7 | 3.8 | July 1, 2026 | |
| postmagthemes-demo-import | postmagthemes-demo-import | N/A | PostmagThemes Demo Import <= 1.0.6 - Authenticated (Admin+) Arbitrary File Upload | LOW | *-1.0.6 | 1.0.7 | July 1, 2026 | |
| minimal-coming-soon-maintenance-mode | minimal-coming-soon-maintenance-mode |
93
|
Minimal Coming Soon – Coming Soon Page <= 2.33 - Authenticated (Admin+) Stored Cross-Site Scripting | LOW | *-2.34 | 2.35 | July 1, 2026 | |
| cyclone-slider | cyclone-slider |
91
|
Cyclone Slider <= 3.2.0 - Authenticated (Admin+) Arbitrary File Upload | LOW | *-3.2.0 | July 1, 2026 | ||
| contempo-real-estate-custom-posts | contempo-real-estate-custom-posts |
93
|
Contempo Real Estate Custom Posts <= 3.2.6 - Unauthorized File Upload | LOW | *-3.2.6 | 3.2.7 | July 1, 2026 | |
| sensei-lms | sensei-lms | N/A | Sensei LMS <= 4.4.3 - Information Disclosure | LOW | *-4.4.3 | 4.5.0 | July 1, 2026 | |
| sensei-lms | sensei-lms | N/A | Sensei LMS <= 4.5.1 - Missing Authorization | LOW | *-4.5.1 | 4.5.2 | July 1, 2026 | |
| Download Manager | download-manager |
63
|
Download Manager <= 3.2.53 - Reflected Cross-Site Scripting | LOW | *-3.2.53 | 3.2.54 | July 1, 2026 | |
| dc-woocommerce-multi-vendor | dc-woocommerce-multi-vendor |
93
|
Multivendor Marketplace Solution for WooCommerce – WC Marketplace <= 3.8.11.8 - Cross-Site Request Forgery | LOW | *-3.8.11.8 | 3.8.12 | July 1, 2026 | |
| WPIDE – File Manager & Code Editor | wpide |
92
|
WPIDE – File Manager & Code Editor <= 2.6 - Authenticated (Admininstrator+) Local File Inclusion | LOW | *-2.6 | 3.0 | July 1, 2026 | |
| woocommerce-pdf-invoices-packing-slips | woocommerce-pdf-invoices-packing-slips | N/A | WooCommerce PDF Invoices & Packing Slips 2.14.0 - 3.0.0 - Reflected Cross-Site Scripting | LOW | 2.14.0-3.0.0 | 3.0.1 | July 1, 2026 | |
| mailchimp-for-woocommerce | mailchimp-for-woocommerce |
93
|
Mailchimp for WooCommerce <= 2.7.1 - Authenticated (Admin+) Server-Side Request Forgery | LOW | *-2.7.1 | 2.7.2 | July 1, 2026 | |
| mailchimp-for-woocommerce | mailchimp-for-woocommerce |
93
|
Mailchimp for WooCommerce <= 2.7 - Authenticated (Subscriber+) Server-Side Request Forgery | LOW | *-2.7 | 2.7.1 | July 1, 2026 | |
| WP Hotel Booking | wp-hotel-booking | N/A | WP Hotel Booking <= 1.10.5 - Cross-Site Request Forgery | LOW | *-1.10.5 | 1.10.6 | July 1, 2026 | |
| rich-reviews | rich-reviews | N/A | Rich Reviews by Starfish <= 1.9.14 - Cross-Site Request Forgery | LOW | *-1.9.14 | 1.9.15 | July 1, 2026 | |
| my-calendar | my-calendar |
93
|
My Calendar <= 3.3.16 - Open Redirect | LOW | *-3.3.16 | 3.3.17 | July 1, 2026 | |
| miniorange-oauth-20-server | miniorange-oauth-20-server |
93
|
WP OAuth Server <= 3.0.4 - Authentication Bypass | LOW | *-3.0.4 | 4.0.1 | July 1, 2026 | |
| maxbuttons | maxbuttons |
93
|
WordPress Button Plugin MaxButtons <= 9.2 - Cross-Site Request Forgery | LOW | *-9.2 | 9.3 | July 1, 2026 | |
| maxbuttons | maxbuttons |
93
|
MaxButtons <= 9.2 - Authenticated (Administrator+) Stored Cross-Site Scripting | LOW | *-9.2 | 9.3 | July 1, 2026 | |
| instagram-slider-widget | instagram-slider-widget |
93
|
Social Slider Feed <= 2.0.5 - Authenticated (Administrator+) Stored Cross-Site Scripting | LOW | *-2.0.5 | 2.0.6 | July 1, 2026 | |
| Fluent Support – Helpdesk & Customer Support Ticket System | fluent-support |
79
|
Fluent Support <= 1.5.7 - Authenticated (Administrator+) SQL Injection | LOW | *-1.5.7 | 1.5.8 | July 1, 2026 | |
| Download Manager | download-manager |
63
|
Download Manager <= 3.2.48 - Cross-Site Request Forgery to Plugin Settings Update | LOW | *-3.2.48 | 3.2.49 | July 1, 2026 | |
| Download Manager | download-manager |
63
|
Download Manager <= 3.2.48 - Cross-Site Request Forgery | LOW | *-3.2.48 | 3.2.49 | July 1, 2026 | |
| banner-cycler | banner-cycler |
91
|
Banner Cycler <= 1.4 - Cross-Site Request Forgery to Cross-Site Scripting | LOW | *-1.4 | July 1, 2026 | ||
| activedemand | activedemand |
97
|
ActiveDEMAND <= 0.2.27 - Missing Authorization Checks | LOW | *-0.2.27 | 0.2.28 | July 1, 2026 | |
| yotpo-reviews-for-woocommerce | yotpo-reviews-for-woocommerce | N/A | Yotpo Reviews for WooCommerce (Unofficial) <= 2.0.4 - Cross-Site Request Forgery to Plugin Settings Update | LOW | 2.0.4 | July 1, 2026 | ||
| wpqa | wpqa | N/A | WPQA - Builder forms Addon For WordPress < 5.7 - Information Disclosure | LOW | [*, 5.7) | 5.7 | July 1, 2026 | |
| wp-phpmyadmin-extension | wp-phpmyadmin-extension | N/A | WP phpMyAdmin <= 5.2.0.3 - Reflected Cross-Site Scripting | LOW | *-5.2.0.3 | 5.2.0.4 | July 1, 2026 | |
| wp-phpmyadmin-extension | wp-phpmyadmin-extension | N/A | WP phpMyAdmin <= 5.2.0.3 - Authenticated (Administrator+) Stored Cross-Site Scripting | LOW | *-5.2.0.3 | 5.2.0.4 | July 1, 2026 | |
| wp-edit-menu | wp-edit-menu | N/A | WP Edit Menu < 1.5.0 - Missing Authorization to Post Deletion | LOW | [*, 1.5.0) | 1.5.0 | July 1, 2026 | |
| wp-edit-menu | wp-edit-menu | N/A | WP Edit Menu <= 1.5.0 - Cross-Site Request Forgery | LOW | *-1.5.0 | July 1, 2026 | ||
| widget-extend-builtin-query | widget-extend-builtin-query | N/A | Built-in Widgets Query extend <= 1.05 - Reflected Cross-Site Scripting | LOW | *-1.05 | 1.06 | July 1, 2026 | |
| wc-remove-tabs-and-fields | wc-remove-tabs-and-fields | N/A | Remove tabs and fields from WooCommerce <= 1.68 - Reflected Cross-Site Scripting | LOW | *-1.68 | 1.69 | July 1, 2026 | |
| wa-sticky-button | wa-sticky-button | N/A | WP Sticky Button <= 1.4 - Missing Authorization to Arbitrary Settings Update | LOW | *-1.4 | 1.4.1 | July 1, 2026 | |
| simple-student-result | simple-student-result | N/A | Student Result or Employee Database <= 1.7.4 - Cross-Site Request Forgery to Stored Cross-Site Scripting | LOW | *-1.7.4 | 1.7.5 | July 1, 2026 | |
| simple-student-result | simple-student-result | N/A | Student Result or Employee Database <= 1.7.9 - Missing Authorization | LOW | *-1.7.9 | 1.8.0 | July 1, 2026 | |
| simple-job-board | simple-job-board | N/A | Simple Job Board <= 2.9.6 - Information Disclosure | LOW | *-2.9.6 | 2.9.10 | July 1, 2026 | |
| seo-redirection | seo-redirection | N/A | SEO Redirection Plugin – 301 Redirect Manager <= 8.9 - Cross-Site Request Forgery | LOW | *-8.9 | 9.1 | July 1, 2026 | |
| require-taxonomy-image-category-tag | require-taxonomy-image-category-tag | N/A | Require & Limit Categories, Tags, Featured Image and taxonomies <= 1.26 - Reflected Cross-Site Scripting | LOW | *-1.26 | 1.27 | July 1, 2026 | |
| redirect-by-cookie | redirect-by-cookie | N/A | Redirect By Cookie <= 1.06 - Reflected Cross-Site Scripting | LOW | *-1.06 | 1.07 | July 1, 2026 | |
| post-type-modifier-simple | post-type-modifier-simple | N/A | Add Custom Post Type into Post Query <= 1.03 - Reflected Cross-Site Scripting | LOW | *-1.03 | 1.04 | July 1, 2026 | |
| official-mailerlite-sign-up-forms | official-mailerlite-sign-up-forms | N/A | MailerLite – Signup forms (official) <= 1.5.7 - Cross-Site Request Forgery | LOW | *-1.5.7 | 1.5.8 | July 1, 2026 | |
| ninja-job-board | ninja-job-board | N/A | Ninja Job Board <= 1.3.2 - Information Disclosure | LOW | *-1.3.2 | 1.3.3 | July 1, 2026 | |
| nex-forms-express-wp-form-builder | nex-forms-express-wp-form-builder | N/A | NEX-Forms <= 7.9.6 - Authenticated (Administrator+) SQL Injection | LOW | *-7.9.6 | 7.9.7 | July 1, 2026 | |
| modify-profile-fields-dashboard-menu-buttons | modify-profile-fields-dashboard-menu-buttons |
93
|
Profile & Dashboard fields <= 1.03 - Reflected Cross-Site Scripting | LOW | *-1.03 | 1.04 | July 1, 2026 | |
| modify-comment-fields | modify-comment-fields |
93
|
Comment Fields <= 1.03 - Reflected Cross-Site Scripting | LOW | *-1.03 | 1.04 | July 1, 2026 | |
| linkworth-wp-plugin | linkworth-wp-plugin |
93
|
LinkWorth plugin <= 3.3.3 - Cross-Site Request Forgery to Plugin Setting Update | LOW | *-3.3.3 | 3.3.4 | July 1, 2026 | |
| Lana Downloads Manager | lana-downloads-manager |
91
|
Lana Downloads Manager <= 1.7.1 - Authenticated (Contributor+) Arbitrary File Download | LOW | *-1.7.1 | 1.8.0 | July 1, 2026 | |
| instagram-slider-widget | instagram-slider-widget |
93
|
Social Slider Feed <= 2.0.4 - Reflected Cross-Site Scripting | LOW | *-2.0.4 | 2.0.5 | July 1, 2026 | |
| instagram-slider-widget | instagram-slider-widget |
93
|
Social Slider Feed <= 2.0.4 - Missing Authorization to Cross-Site Scripting | LOW | *-2.0.4 | 2.0.5 | July 1, 2026 | |
| instagram-slider-widget | instagram-slider-widget |
93
|
Social Slider Feed <= 2.0.4 - Authenticated (Scubscriber+) Stored Cross-Site Scripting | LOW | *-2.0.4 | 2.0.5 | July 1, 2026 | |
| instagram-slider-widget | instagram-slider-widget |
93
|
Social Slider Feed <= 2.0.4 - Missing Authorization | LOW | *-2.0.4 | 2.0.5 | July 1, 2026 | |
| images-asynchronous-load | images-asynchronous-load |
93
|
Images Asynchronous Load <= 1.05 - Reflected Cross-Site Scripting | LOW | *-1.05 | 1.06 | July 1, 2026 | |
| highlight-search-terms-results | highlight-search-terms-results |
93
|
Highlight Searched Terms in Results <= 1.03 - Reflected Cross-Site Scripting | LOW | *-1.03 | 1.04 | July 1, 2026 | |
| external-url-as-post-featured-image-thumbnail | external-url-as-post-featured-image-thumbnail |
93
|
External url as post Featured Image <= 2.02 - Reflected Cross-Site Scripting | LOW | *-2.02 | 2.03 | July 1, 2026 | |
| enable-wp-debug-from-admin-dashboard | enable-wp-debug-from-admin-dashboard |
93
|
Debug Bar <= 1.85 - Reflected Cross-Site Scripting | LOW | *-1.85 | 1.86 | July 1, 2026 | |
| enable-svg-webp-ico-upload | enable-svg-webp-ico-upload |
93
|
Enable SVG, WebP & ICO Upload <= 1.0.2 - Authenticated (Author+) Stored Cross-Site Scripting | LOW | *-1.0.2 | 1.0.3 | July 1, 2026 | |
| enable-svg-webp-ico-upload | enable-svg-webp-ico-upload |
93
|
Enable SVG, WebP & ICO Upload <= 1.1.0 - Arbitrary File Upload | LOW | *-1.1.0 | 1.1.1 | July 1, 2026 | |
| Download Manager | download-manager |
63
|
Download Manager <= 3.2.49 - IP Blocking Bypass | LOW | *-3.2.49 | 3.2.50 | July 1, 2026 | |
| debug-functions-time | debug-functions-time |
93
|
Find Slow Functions & Actions & Filters & Hooks <= 1.40 - Reflected Cross-Site Scripting | LOW | *-1.40 | 1.41 | July 1, 2026 | |
| breadcrumbs-shortcode | breadcrumbs-shortcode |
93
|
Breadcrumbs Shortcode <= 1.44 - Reflected Cross-Site Scripting | LOW | *-1.44 | 1.45 | July 1, 2026 | |
| better-search-replace | better-search-replace |
93
|
Better Search Replace <= 1.4 - Authenticated (Administrator+) SQL Injection | LOW | *-1.4 | 1.4.1 | July 1, 2026 | |
| automatic-pages-for-privacy-policy-terms-about-and-contact | automatic-pages-for-privacy-policy-terms-about-and-contact |
93
|
Automatic pages for Privacy Policy, Terms, About, Contact us <= 1.41 - Reflected Cross-Site Scripting | LOW | *-1.41 | 1.42 | July 1, 2026 | |
| auto-hyperlink-urls | auto-hyperlink-urls |
91
|
Auto-hyperlink URLs <= 5.4.1 - Tab Nabbing | LOW | *-5.4.1 | July 1, 2026 | ||
| audio-video-download-buttons-for-youtube | audio-video-download-buttons-for-youtube |
93
|
Download buttons for Youtube videos <= 1.03 - Reflected Cross-Site Scripting | LOW | *-1.03 | 1.04 | July 1, 2026 | |
| api-info-themes-plugins-wp-org | api-info-themes-plugins-wp-org |
97
|
API info for Plugins & Themes from WP.ORG <= 1.04 - Reflected Cross-Site Scripting | LOW | *-1.04 | 1.05 | July 1, 2026 | |
| all-custom-fields-groups | all-custom-fields-groups |
97
|
All custom fields & groups <= 1.04 - Reflected Cross-Site Scripting | LOW | *-1.04 | 1.05 | July 1, 2026 |
instagram-slider-widget
instagram-slider-widget
floating-action-button
floating-action-button
contest-gallery
contest-gallery
amcharts-charts-and-maps
amcharts-charts-and-maps
wp-taxonomy-import
wp-taxonomy-import
wp-hide-security-enhancer
wp-hide-security-enhancer
string-locator
string-locator
stop-spam-comments
stop-spam-comments
Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin
simply-schedule-appointments
Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin
simply-schedule-appointments
resize-image-after-upload
resize-image-after-upload
pop-up-pop-up
pop-up-pop-up
netroics-blog-posts-grid
netroics-blog-posts-grid
leaflet-maps-marker
leaflet-maps-marker
jupiterx-core
jupiterx-core
joomsport-sports-league-results-management
joomsport-sports-league-results-management
joomsport-sports-league-results-management
joomsport-sports-league-results-management
export-all-urls
export-all-urls
bulletin-announcements
bulletin-announcements
buddyforms-acf
buddyforms-acf
Custom Product Tabs Lite for WooCommerce
woocommerce-custom-product-tabs-lite
mobile-assistant-connector
mobile-assistant-connector
wp-cafe
wp-cafe
wordpress-https
wordpress-https
File Sharing & Download Manager – User Private Files
user-private-files
File Sharing & Download Manager – User Private Files
user-private-files
wp-to-hootsuite
wp-to-hootsuite
wp-to-buffer
wp-to-buffer
wp-mui-mass-user-input
wp-mui-mass-user-input
woo-product-carousel-slider-and-grid-ultimate
woo-product-carousel-slider-and-grid-ultimate
twitter-bootstrap-slider
twitter-bootstrap-slider
testimonial-slider-and-showcase
testimonial-slider-and-showcase
simple-telegram-for-wp
simple-telegram-for-wp
protect-wp-admin
protect-wp-admin
postmagthemes-demo-import
postmagthemes-demo-import
minimal-coming-soon-maintenance-mode
minimal-coming-soon-maintenance-mode
cyclone-slider
cyclone-slider
contempo-real-estate-custom-posts
contempo-real-estate-custom-posts
sensei-lms
sensei-lms
sensei-lms
sensei-lms
Download Manager
download-manager
dc-woocommerce-multi-vendor
dc-woocommerce-multi-vendor
WPIDE – File Manager & Code Editor
wpide
woocommerce-pdf-invoices-packing-slips
woocommerce-pdf-invoices-packing-slips
mailchimp-for-woocommerce
mailchimp-for-woocommerce
mailchimp-for-woocommerce
mailchimp-for-woocommerce
WP Hotel Booking
wp-hotel-booking
rich-reviews
rich-reviews
my-calendar
my-calendar
miniorange-oauth-20-server
miniorange-oauth-20-server
maxbuttons
maxbuttons
maxbuttons
maxbuttons
instagram-slider-widget
instagram-slider-widget
Fluent Support – Helpdesk & Customer Support Ticket System
fluent-support
Download Manager
download-manager
Download Manager
download-manager
banner-cycler
banner-cycler
activedemand
activedemand
yotpo-reviews-for-woocommerce
yotpo-reviews-for-woocommerce
wpqa
wpqa
wp-phpmyadmin-extension
wp-phpmyadmin-extension
wp-phpmyadmin-extension
wp-phpmyadmin-extension
wp-edit-menu
wp-edit-menu
wp-edit-menu
wp-edit-menu
widget-extend-builtin-query
widget-extend-builtin-query
wc-remove-tabs-and-fields
wc-remove-tabs-and-fields
wa-sticky-button
wa-sticky-button
simple-student-result
simple-student-result
simple-student-result
simple-student-result
simple-job-board
simple-job-board
seo-redirection
seo-redirection
require-taxonomy-image-category-tag
require-taxonomy-image-category-tag
redirect-by-cookie
redirect-by-cookie
post-type-modifier-simple
post-type-modifier-simple
official-mailerlite-sign-up-forms
official-mailerlite-sign-up-forms
ninja-job-board
ninja-job-board
nex-forms-express-wp-form-builder
nex-forms-express-wp-form-builder
modify-profile-fields-dashboard-menu-buttons
modify-profile-fields-dashboard-menu-buttons
modify-comment-fields
modify-comment-fields
linkworth-wp-plugin
linkworth-wp-plugin
Lana Downloads Manager
lana-downloads-manager
instagram-slider-widget
instagram-slider-widget
instagram-slider-widget
instagram-slider-widget
instagram-slider-widget
instagram-slider-widget
instagram-slider-widget
instagram-slider-widget
images-asynchronous-load
images-asynchronous-load
highlight-search-terms-results
highlight-search-terms-results
external-url-as-post-featured-image-thumbnail
external-url-as-post-featured-image-thumbnail
enable-wp-debug-from-admin-dashboard
enable-wp-debug-from-admin-dashboard
enable-svg-webp-ico-upload
enable-svg-webp-ico-upload
enable-svg-webp-ico-upload
enable-svg-webp-ico-upload
Download Manager
download-manager
debug-functions-time
debug-functions-time
breadcrumbs-shortcode
breadcrumbs-shortcode
better-search-replace
better-search-replace
automatic-pages-for-privacy-policy-terms-about-and-contact
automatic-pages-for-privacy-policy-terms-about-and-contact
auto-hyperlink-urls
auto-hyperlink-urls
audio-video-download-buttons-for-youtube
audio-video-download-buttons-for-youtube
api-info-themes-plugins-wp-org
api-info-themes-plugins-wp-org
all-custom-fields-groups
all-custom-fields-groups
Showing 28401 to 28500 of 36320 results
Vulnerability data is aggregated from automated feeds and public sources. Results may include false positives or outdated information. Always verify details and apply updates in a staging environment before deploying to production.
Data updated daily from trusted sources. Last updated: July 1, 2026 at 17:34 UTC.