Known Plugin Vulnerabilities
Track known vulnerabilities from configured sources. Default view shows all open and closed vulnerabilities, ordered by most recently updated first.
Open Vulnerabilities
36406Across tracked plugins
Affected Plugins
91With open vulnerabilities
Critical / High
0Require immediate attention
Recently Updated
0In the last 30 days
Vulnerability List
Export CSV| Plugin | Slug | Score | Vulnerability | CVE ID | Severity | Affected Versions | Patched | Updated |
|---|---|---|---|---|---|---|---|---|
| WP Contact Slider – Contact Form Slider Widget | wp-contact-slider | N/A | WP Contact Slider <= 2.4.6 - Stored Cross-Site Scripting | LOW | *-2.4.6 | 2.4.7 | July 4, 2026 | |
| Ninja Forms – The Contact Form Builder That Grows With You | ninja-forms |
69
|
Ninja Forms Contact Form <= 3.6.9 - Cross-Site Scripting via field label | LOW | *-3.6.9 | 3.6.10 | July 4, 2026 | |
| gallery-album | gallery-album |
83
|
Gallery – Image and Video Gallery with Thumbnails <= 1.9.9 - Reflected Cross-Site Scripting | LOW | *-1.9.9 | 2.0.0 | July 4, 2026 | |
| Elementor Website Builder – more than just a page builder | elementor |
79
|
Elementor Website Builder <= 3.5.5 - Unauthenticated DOM-based Reflected Cross-Site Scripting | LOW | *-3.5.5 | 3.5.6 | July 4, 2026 | |
| easync-booking | easync-booking |
93
|
Free Booking Plugin for Hotels, Restaurant and Car Rental – eaSYNC <= 1.1.15 - Arbitrary File Upload | LOW | *-1.1.15 | 1.1.16 | July 4, 2026 | |
| age-gate | age-gate |
97
|
Age Gate <= 2.17.0 - Cross-Site Scripting via Data Import | LOW | *-2.17.0 | 2.17.1 | July 4, 2026 | |
| Ninja Forms – The Contact Form Builder That Grows With You | ninja-forms |
69
|
Ninja Ninja Forms Contact Form <= 3.6.10 - Authenticated (Admin+) Stored Cross-Site Scripting via import | LOW | *-3.6.10 | 3.6.11 | July 4, 2026 | |
| toolbar-to-share | toolbar-to-share | N/A | ToolBar to Share <= 2.0 - Cross-Site Request Forgery to Cross-Site Scripting | LOW | *-2.0 | July 4, 2026 | ||
| social-share-buttons-by-supsystic | social-share-buttons-by-supsystic | N/A | Social Share Buttons by Supsystic <= 2.2.3 - Authenticated (Subscriber+) SQL Injection | LOW | *-2.2.6 | 2.2.7 | July 4, 2026 | |
| social-share-buttons-by-supsystic | social-share-buttons-by-supsystic | N/A | Social Share Buttons by Supsystic <= 2.2.3 - Missing Authorization | LOW | *-2.2.3 | 2.2.4 | July 4, 2026 | |
| gallery-bank | gallery-bank |
89
|
Gallery Bank – WordPress Photo Gallery Plugin <= 4.0.50 - Stored Cross-Site Scripting via Media Upload | LOW | *-4.0.50 | July 4, 2026 | ||
| gallery-bank | gallery-bank |
89
|
Gallery Bank – WordPress Photo Gallery Plugin <= 4.0.50 - Stored Cross-Site Scripting via Gallery Description | LOW | *-4.0.50 | July 4, 2026 | ||
| api-key-for-google-maps | api-key-for-google-maps |
97
|
API KEY for Google Maps <= 1.2.1 - Cross-Site Request Forgery | LOW | *-1.2.1 | 1.2.2 | July 4, 2026 | |
| copify | copify |
91
|
Copify <= 1.3.0 - Cross-Site Request Forgery to Cross-Site Scripting | LOW | *-1.3.0 | July 4, 2026 | ||
| Ninja Forms – The Contact Form Builder That Grows With You | ninja-forms |
69
|
Ninja Forms Contact Form <= 3.6.9 - Authenticated (Admin+) Cross-Site Scripting via label | LOW | *-3.6.9 | 3.6.10 | July 4, 2026 | |
| wp-skitter-slideshow | wp-skitter-slideshow | N/A | Skitter Slideshow <= 2.5.2 - Unauthenticated Server-Side Request Forgery | LOW | *-2.5.2 | July 4, 2026 | ||
| wp-menu-cart | wp-menu-cart | N/A | WP Menu Cart <= 2.11.0 - Reflected Cross-Site Scripting | LOW | *-2.11.0 | 2.12.0 | July 4, 2026 | |
| wp-championship | wp-championship | N/A | wp-championship <= 9.2 - Multiple Cross-Site Request Forgery Vulnerabilities | LOW | *-9.2 | 9.3 | July 4, 2026 | |
| wp-all-export | wp-all-export | N/A | Export any WordPress data to XML/CSV <= 1.3.5 - Reflected Cross-Site Scripting | LOW | *-1.3.5 | 1.3.6 | July 4, 2026 | |
| woocommerce-pdf-invoices-packing-slips | woocommerce-pdf-invoices-packing-slips | N/A | WooCommerce PDF Invoices & Packing Slips <= 2.14.5 - Cross-Site Scripting | LOW | 2.14.5 | 2.15 | July 4, 2026 | |
| woocommerce-menu-bar-cart | woocommerce-menu-bar-cart | N/A | WooCommerce Menu Cart <= 2.11.0 - Reflected Cross-Site Scripting | LOW | *-2.11.0 | 2.12.0 | July 4, 2026 | |
| Ninja Forms – The Contact Form Builder That Grows With You | ninja-forms |
69
|
Ninja Forms Contact Form – The Drag and Drop Form Builder for WordPress <= 3.6.9 - Cross-Site Request Forgery to Field Import and PHP Object Injection | LOW | *-3.6.9 | 3.6.10 | July 4, 2026 | |
| co-authors-plus | co-authors-plus |
93
|
Co-Authors Plus 3.5 - 3.5.1 - Sensitive Information Disclosure | LOW | 3.5-3.5.1 | 3.5.2 | July 4, 2026 | |
| 404-to-301 | 404-to-301 |
97
|
404 to 301 – Redirect, Log and Notify 404 Errors <= 3.1.1 - Reflected Cross-Site Scripting | LOW | *-3.1.1 | 3.1.2 | July 4, 2026 | |
| xcloner-backup-and-restore | xcloner-backup-and-restore | N/A | Backup, Restore and Migrate WordPress Sites With the XCloner Plugin <= 4.2.16 - Unauthenticated Plugin Settings Reset | LOW | *-4.2.16 | 4.3.6 | July 4, 2026 | |
| wp-security-pro | wp-security-pro | N/A | WordPress Security <= 4.2 - Admin+ Stored Cross-Site Scripting | LOW | *-4.2 | 4.2.1 | July 4, 2026 | |
| wp-nested-pages | wp-nested-pages | N/A | Nested Pages <= 3.1.20 - Stored Cross-Site Scripting | LOW | [*, 3.1.21) | 3.1.21 | July 4, 2026 | |
| site-is-offline-plugin | site-is-offline-plugin | N/A | Site Offline or Coming Soon <= 1.6.6 - Cross-Site Request Forgery to Settings Update and Cross-Site Scripting | LOW | *-1.6.6 | July 4, 2026 | ||
| qubely | qubely | N/A | Qubely <= 1.7.8 - Missing Authorization | LOW | *-1.7.8 | 1.7.9 | July 4, 2026 | |
| nextcellent-gallery-nextgen-legacy | nextcellent-gallery-nextgen-legacy |
91
|
NextCellent Gallery <= 1.9.35 - Authenticated (Admin+) Cross-Site Scripting | LOW | *-1.9.35 | July 4, 2026 | ||
| mycss | mycss |
91
|
MyCSS <= 1.1 - Cross-Site Request Forgery to Settings Update | LOW | *-1.1 | July 4, 2026 | ||
| modula-best-grid-gallery | modula-best-grid-gallery |
93
|
Modula Image Gallery <= 2.6.6 - Reflected Cross-Site Scripting | LOW | *-2.6.6 | 2.6.7 | July 4, 2026 | |
| miniorange-wp-as-saml-idp | miniorange-wp-as-saml-idp |
93
|
Login using WordPress Users (WP as SAML IDP) <= 1.13.2 - Authenticated (Admin+) Cross-Site Scripting | LOW | *-1.13.3 | 1.13.4 | July 4, 2026 | |
| miniorange-saml-20-single-sign-on | miniorange-saml-20-single-sign-on |
93
|
SAML Single Sign On – SAML SSO Login <= 4.9.20 - Reflected Cross-Site Scripting | LOW | *-4.9.20 | 4.9.21 | July 4, 2026 | |
| miniorange-malware-protection | miniorange-malware-protection |
93
|
miniOrange’s Malware Scanner <= 4.5.5 - Cross-Site Scripting | LOW | *-4.5.1 | 4.5.2 | July 4, 2026 | |
| miniorange-limit-login-attempts | miniorange-limit-login-attempts |
93
|
MiniOrange Limit Login Attempts <= 4.0.72 - Administrator+ Cross-Site Scripting | LOW | *-4.0.71 | 4.0.72 | July 4, 2026 | |
| miniorange-google-authenticator | miniorange-google-authenticator |
93
|
Login With OTP Over SMS, Email, WhatsApp and Google Authenticator <= 1.0.4 - Cross-Site Request Forgery to Cross-Site Scripting | LOW | *-1.0.4 | 1.0.5 | July 4, 2026 | |
| miniorange-google-authenticator | miniorange-google-authenticator |
93
|
Login With OTP Over SMS, Email, WhatsApp and Google Authenticator <= 1.0.7 - Cross-Site Scripting | LOW | *-1.0.7 | 1.0.8 | July 4, 2026 | |
| miniorange-2-factor-authentication | miniorange-2-factor-authentication |
93
|
miniOrange's Google Authenticator <= 5.5.5 - Authenticated (Admin+) Cross-Site Scripting | LOW | *-5.5.5 | 5.5.6 | July 4, 2026 | |
| armember-membership | armember-membership |
95
|
ARMember – Membership Plugin, Content Restriction, Member Levels, User Profile & User signup <= 3.4.7 -Authentication Bypass via Password Reset Weakness | LOW | *-3.4.7 | 3.4.8 | July 4, 2026 | |
| single-sign-on-client | single-sign-on-client | N/A | Simple Single Sign On <= 4.1.1 - Insecure OAuth Implementation to Authentication Bypass | LOW | *-4.1.1 | July 4, 2026 | ||
| gallery-image-gallery-photo | gallery-image-gallery-photo |
93
|
Image Gallery – Grid Gallery <= 1.1.1 - Stored Cross-Site Scripting | LOW | *-1.1.2 | 1.1.3 | July 4, 2026 | |
| easy-pricing-tables | easy-pricing-tables |
93
|
Easy Pricing Tables <= 3.2.0 - Reflected Cross-Site Scripting | LOW | *-3.2.0 | 3.2.1 | July 4, 2026 | |
| advanced-currency-switcher | advanced-currency-switcher |
97
|
Currency Switcher for WordPress <= 1.0.3 - Reflected Cross-Site Scripting | LOW | *-1.0.3 | 1.0.4 | July 4, 2026 | |
| wp-ultimate-csv-importer | wp-ultimate-csv-importer | N/A | WP Ultimate CSV Importer <= 6.5.2 - Server-Side Request Forgery | LOW | *-6.5.2 | 6.5.3 | July 4, 2026 | |
| WP All Import – Drag & Drop Import for CSV, XML, Excel & Google Sheets | wp-all-import |
66
|
Import any XML or CSV File to WordPress <= 3.6.6 - Reflected Cross-Site Scripting | LOW | *-3.6.6 | 3.6.7 | July 4, 2026 | |
| traderunner | traderunner | N/A | Trade Runner <= 3.9 - Authenticated (Admin+) Stored Cross-Site Scripting | LOW | *-3.9 | 3.10 | July 4, 2026 | |
| simple-woocommerce-csv-loader | simple-woocommerce-csv-loader | N/A | Ultimate WooCommerce CSV Importer <= 2.0 - Reflected Cross-Site Scripting | LOW | *-2.0 | July 4, 2026 | ||
| shortpixel-image-optimiser | shortpixel-image-optimiser | N/A | ShortPixel Image Optimizer <= 4.22.9 - Reflected Cross-Site Scripting | LOW | *-4.22.9 | 4.22.10 | July 4, 2026 | |
| my-content-management | my-content-management |
93
|
My Content Management <= 1.7.1 - Cross-Site Scripting | LOW | 1.7.1 | 1.7.2 | July 4, 2026 | |
| kitestudio-core | kitestudio-core |
93
|
core plugin for kitestudio themes <= 2.2.1 - Reflected Cross-Site Scripting | LOW | [*, 2.3.1) | 2.3.1 | July 4, 2026 | |
| insert-php | insert-php |
93
|
Woody code snippets <= 2.4.5 - Reflected Cross-Site Scripting | LOW | *-2.4.5 | 2.4.6 | July 4, 2026 | |
| html2wp | html2wp |
87
|
HTML2WP <= 1.0.0 - Cross-Site Request Forgery | LOW | *-1.0.0 | July 4, 2026 | ||
| html2wp | html2wp |
87
|
HTML2WP <= 1.0.0 - Arbitrary File Deletion | LOW | *-1.0.0 | July 4, 2026 | ||
| html2wp | html2wp |
87
|
HTML2WP <= 1.0.0 - Arbitrary File Upload | LOW | *-1.0.0 | July 4, 2026 | ||
| Download Manager | download-manager |
63
|
Download Manager <= 3.2.42 - Reflected Cross-Site Scripting | LOW | *-3.2.42 | 3.2.43 | July 4, 2026 | |
| browser-and-operating-system-finder | browser-and-operating-system-finder |
91
|
Browser and Operating System Finder <= 1.2 - Missing Authorization | LOW | *-1.2 | July 4, 2026 | ||
| wp-posturl | wp-posturl | N/A | Add Post URL <= 2.1.0 - Cross-Site Request Forgery | LOW | *-2.1.0 | July 4, 2026 | ||
| social-share-buttons-by-supsystic | social-share-buttons-by-supsystic | N/A | Social Share Buttons by Supsystic <= 2.2.3 - Cross-Site Request Forgery to Settings Update | LOW | *-2.2.3 | 2.2.4 | July 4, 2026 | |
| sb-elementor-contact-form-db | sb-elementor-contact-form-db | N/A | Elementor Contact Form DB <= 1.5 - Sensitive Information Disclosure | LOW | *-1.5 | 1.6 | July 4, 2026 | |
| profit-products-tables-for-woocommerce | profit-products-tables-for-woocommerce | N/A | Active Products Tables for WooCommerce <= 1.0.4 - Reflected Cross-Site Scripting | LOW | *-1.0.4 | 1.0.5 | July 4, 2026 | |
| new-user-approve | new-user-approve |
93
|
New User Approve <= 2.4 - Cross-Site Request Forgery | LOW | *-2.4 | 2.4.1 | July 4, 2026 | |
| modern-events-calendar-lite | modern-events-calendar-lite |
93
|
Modern Events Calendar Lite <= 6.2.9 - Authenticated (Contributor+) Cross-Site Scripting | LOW | *-6.2.9 | 6.3.0 | July 4, 2026 | |
| expivi | expivi |
93
|
Product Configurator for WooCommerce <= 1.2.31 - Arbitrary File Deletion | LOW | *-1.0.5 | 1.0.6 | July 4, 2026 | |
| easy-svg | easy-svg |
93
|
Easy SVG Support <= 3.2.0 - Cross-Site Scripting via SVG Upload | LOW | *-3.2.0 | 3.3.0 | July 4, 2026 | |
| contest-gallery | contest-gallery |
93
|
Contest Gallery – Files Upload and Contest Plugin for WordPress <= 17.0.4 - Admin+ SQL Injection | LOW | *-17.0.4 | 17.0.5 | July 4, 2026 | |
| cimy-header-image-rotator | cimy-header-image-rotator |
91
|
Cimy Header Image Rotator <= 6.1.1 - Cross-Site Request Forgery | LOW | *-6.1.1 | July 4, 2026 | ||
| zengo-custom-thumbnail-image | zengo-custom-thumbnail-image | N/A | Zengo Custom Thumbnail Image Gallery <= 1.0.4 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-1.0.4 | July 4, 2026 | ||
| wpsid-shortcode | wpsid-shortcode | N/A | WPSID Shortcode <= 1.0.9.2 - Open Redirect | LOW | *-1.0.9.2 | July 4, 2026 | ||
| wp-sentry | wp-sentry | N/A | WP Sentry <= 1.0 - Cross-Site Request Forgery | LOW | *-1.0 | July 4, 2026 | ||
| wp-post-styling | wp-post-styling | N/A | WP Post Styling <= 1.3.0 - Cross-Site Request Forgery | LOW | *-1.3.0 | 1.3.2 | July 4, 2026 | |
| Booster for WooCommerce – PDF Invoices, Abandoned Cart, Variation Swatches & 100+ Tools | woocommerce-jetpack |
65
|
Booster for WooCommerce <= 5.5.8 - Reflected Cross-Site Scripting | LOW | *-5.5.8 | 5.5.9 | July 4, 2026 | |
| woocommerce-germanized | woocommerce-germanized | N/A | Germanized for WooCommerce <= 3.9.4 - Reflected Cross-Site Scripting | LOW | *-3.9.4 | 3.9.5 | July 4, 2026 | |
| woo-multi-currency | woo-multi-currency | N/A | CURCY <= 2.1.17 - Reflected Cross-Site Scripting | LOW | *-2.1.17 | 2.1.18 | July 4, 2026 | |
| weberino-timed-quiz-creator | weberino-timed-quiz-creator | N/A | Weberino Timed Quiz <= 0.6.0 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-0.6.0 | July 4, 2026 | ||
| visualizer | visualizer | N/A | Visualizer <= 3.7.6 - Reflected Cross-Site Scripting | LOW | *-3.7.6 | 3.7.7 | July 4, 2026 | |
| video-conferencing-with-zoom-api | video-conferencing-with-zoom-api | N/A | Video Conferencing with Zoom <= 3.9.2 - Reflected Cross-Site Scripting | LOW | *-3.9.2 | 3.9.3 | July 4, 2026 | |
| Spectra Gutenberg Blocks – Website Builder for the Block Editor | ultimate-addons-for-gutenberg | N/A | Spectra – WordPress Gutenberg Blocks <= 1.25.5 - Reflected Cross-Site Scripting | LOW | *-1.25.5 | 1.25.6 | July 4, 2026 | |
| tiny-contact-form | tiny-contact-form | N/A | Tiny Contact Form <= 0.7 - Cross-Site Request Forgery | LOW | *-0.7 | July 4, 2026 | ||
| smartkit | smartkit | N/A | Smartkit <= 1.0 - Cross-Site Request Forgery to Cross-Site Scripting | LOW | *-1.0 | July 4, 2026 | ||
| running-line | running-line | N/A | Running Line <= 1.2 - Cross-Site Request Forgery to Settings Update | LOW | *-1.2 | July 4, 2026 | ||
| rotating-posts | rotating-posts | N/A | Rotating Posts <= 1.11 - Cross-Site Request Forgery to Settings Update | LOW | *-1.11 | July 4, 2026 | ||
| ppc-fraud-detctor | ppc-fraud-detctor | N/A | PPC Tracker WordPress <= 2.0 - Stored Cross-Site Scripting via IP | LOW | *-2.0 | July 4, 2026 | ||
| ping-list-pro | ping-list-pro | N/A | Ping List Pro <= 1.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting | LOW | *-1.1 | July 4, 2026 | ||
| openbook-book-data | openbook-book-data |
91
|
OpenBook Book Data <= 3.5.2 - Cross-Site Request Forgery | LOW | *-3.5.2 | July 4, 2026 | ||
| nd-restaurant-reservations | nd-restaurant-reservations |
91
|
Restaurant Reservations <= 1.7 - SQL Injection | LOW | *-1.7 | 1.8 | July 4, 2026 | |
| more-featured-images | more-featured-images |
91
|
More Featured Images <= 1.0.0 - Authenticated (Contributor+) Stored Cross-Site Scripting | LOW | *-1.0.0 | July 4, 2026 | ||
| mobile-browser-color-select | mobile-browser-color-select |
91
|
Mobile browser color select <= 1.0.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting | LOW | *-1.0.1 | July 4, 2026 | ||
| mailpress | mailpress |
91
|
MailPress <= 7.2.1 - Cross-Site Request Forgery | LOW | *-7.2.1 | July 4, 2026 | ||
| find-any-think | find-any-think |
91
|
WPMK Ajax Finder <= 1.0.1 - Cross-Site Request Forgery to Cross-Site Scripting | LOW | *-1.0.1 | July 4, 2026 | ||
| exports-and-reports | exports-and-reports |
93
|
Exports and Reports <= 0.9.1 - CSV Injection | LOW | *-0.9.1 | 0.9.2 | July 4, 2026 | |
| GTM4WP – A Google Tag Manager (GTM) plugin for WordPress | duracelltomi-google-tag-manager |
94
|
Google Tag Manager for WordPress (GTM4WP) <= 1.15.1 - Stored Cross-Site Scripting via Content Element ID | LOW | *-1.15.1 | 1.15.2 | July 4, 2026 | |
| custom-colors-for-real-estate-manager | custom-colors-for-real-estate-manager |
91
|
Custom Colors for Real Estate Manager <= 1.0 - Authenticated (Subscriber+) Stored Cross-Site Scripting | LOW | *-1.0 | July 4, 2026 | ||
| cookie-params | cookie-params |
91
|
Cookie Params <= 0.2 - Reflected Cross-Site Scripting and Cross-Site Request Forgery | LOW | *-0.2 | July 4, 2026 | ||
| co2ok-for-woocommerce | co2ok-for-woocommerce |
93
|
CO2ok: carbon offsetting for e-commerce <= 1.0.9.21 - Cross-Site Scripting | LOW | *-1.0.9.21 | 1.0.9.22 | July 4, 2026 | |
| clean-contact | clean-contact |
91
|
Clean-Contact <= 1.6 - Cross-Site Request Forgery | LOW | *-1.6 | July 4, 2026 | ||
| buddyforms-members | buddyforms-members |
93
|
BuddyForms Members <= 1.4.21 - Cross-Site Scripting | LOW | *-1.4.21 | 1.4.22 | July 4, 2026 | |
| automatic-domain-changer | automatic-domain-changer |
93
|
Automatic Domain Changer <= 2.0.2 - Reflected Cross-Site Scripting | LOW | *-2.0.2 | 2.0.3 | July 4, 2026 | |
| wplite | wplite | N/A | WPlite <= 1.3.1 - Cross-Site Request Forgery | LOW | *-1.3.1 | July 4, 2026 | ||
| wp-zillow-review-slider | wp-zillow-review-slider | N/A | WP Zillow Review Slider <= 2.3 - Authenticated (Admin+) Stored Cross-Site Scripting | LOW | [*, 2.4) | 2.4 | July 4, 2026 |
WP Contact Slider – Contact Form Slider Widget
wp-contact-slider
Ninja Forms – The Contact Form Builder That Grows With You
ninja-forms
gallery-album
gallery-album
Elementor Website Builder – more than just a page builder
elementor
easync-booking
easync-booking
age-gate
age-gate
Ninja Forms – The Contact Form Builder That Grows With You
ninja-forms
toolbar-to-share
toolbar-to-share
social-share-buttons-by-supsystic
social-share-buttons-by-supsystic
social-share-buttons-by-supsystic
social-share-buttons-by-supsystic
gallery-bank
gallery-bank
gallery-bank
gallery-bank
api-key-for-google-maps
api-key-for-google-maps
copify
copify
Ninja Forms – The Contact Form Builder That Grows With You
ninja-forms
wp-skitter-slideshow
wp-skitter-slideshow
wp-menu-cart
wp-menu-cart
wp-championship
wp-championship
wp-all-export
wp-all-export
woocommerce-pdf-invoices-packing-slips
woocommerce-pdf-invoices-packing-slips
woocommerce-menu-bar-cart
woocommerce-menu-bar-cart
Ninja Forms – The Contact Form Builder That Grows With You
ninja-forms
co-authors-plus
co-authors-plus
404-to-301
404-to-301
xcloner-backup-and-restore
xcloner-backup-and-restore
wp-security-pro
wp-security-pro
wp-nested-pages
wp-nested-pages
site-is-offline-plugin
site-is-offline-plugin
qubely
qubely
nextcellent-gallery-nextgen-legacy
nextcellent-gallery-nextgen-legacy
mycss
mycss
modula-best-grid-gallery
modula-best-grid-gallery
miniorange-wp-as-saml-idp
miniorange-wp-as-saml-idp
miniorange-saml-20-single-sign-on
miniorange-saml-20-single-sign-on
miniorange-malware-protection
miniorange-malware-protection
miniorange-limit-login-attempts
miniorange-limit-login-attempts
miniorange-google-authenticator
miniorange-google-authenticator
miniorange-google-authenticator
miniorange-google-authenticator
miniorange-2-factor-authentication
miniorange-2-factor-authentication
armember-membership
armember-membership
single-sign-on-client
single-sign-on-client
gallery-image-gallery-photo
gallery-image-gallery-photo
easy-pricing-tables
easy-pricing-tables
advanced-currency-switcher
advanced-currency-switcher
wp-ultimate-csv-importer
wp-ultimate-csv-importer
WP All Import – Drag & Drop Import for CSV, XML, Excel & Google Sheets
wp-all-import
traderunner
traderunner
simple-woocommerce-csv-loader
simple-woocommerce-csv-loader
shortpixel-image-optimiser
shortpixel-image-optimiser
my-content-management
my-content-management
kitestudio-core
kitestudio-core
insert-php
insert-php
html2wp
html2wp
html2wp
html2wp
html2wp
html2wp
Download Manager
download-manager
browser-and-operating-system-finder
browser-and-operating-system-finder
wp-posturl
wp-posturl
social-share-buttons-by-supsystic
social-share-buttons-by-supsystic
sb-elementor-contact-form-db
sb-elementor-contact-form-db
profit-products-tables-for-woocommerce
profit-products-tables-for-woocommerce
new-user-approve
new-user-approve
modern-events-calendar-lite
modern-events-calendar-lite
expivi
expivi
easy-svg
easy-svg
contest-gallery
contest-gallery
cimy-header-image-rotator
cimy-header-image-rotator
zengo-custom-thumbnail-image
zengo-custom-thumbnail-image
wpsid-shortcode
wpsid-shortcode
wp-sentry
wp-sentry
wp-post-styling
wp-post-styling
Booster for WooCommerce – PDF Invoices, Abandoned Cart, Variation Swatches & 100+ Tools
woocommerce-jetpack
woocommerce-germanized
woocommerce-germanized
woo-multi-currency
woo-multi-currency
weberino-timed-quiz-creator
weberino-timed-quiz-creator
visualizer
visualizer
video-conferencing-with-zoom-api
video-conferencing-with-zoom-api
Spectra Gutenberg Blocks – Website Builder for the Block Editor
ultimate-addons-for-gutenberg
tiny-contact-form
tiny-contact-form
smartkit
smartkit
running-line
running-line
rotating-posts
rotating-posts
ppc-fraud-detctor
ppc-fraud-detctor
ping-list-pro
ping-list-pro
openbook-book-data
openbook-book-data
nd-restaurant-reservations
nd-restaurant-reservations
more-featured-images
more-featured-images
mobile-browser-color-select
mobile-browser-color-select
mailpress
mailpress
find-any-think
find-any-think
exports-and-reports
exports-and-reports
GTM4WP – A Google Tag Manager (GTM) plugin for WordPress
duracelltomi-google-tag-manager
custom-colors-for-real-estate-manager
custom-colors-for-real-estate-manager
cookie-params
cookie-params
co2ok-for-woocommerce
co2ok-for-woocommerce
clean-contact
clean-contact
buddyforms-members
buddyforms-members
automatic-domain-changer
automatic-domain-changer
wplite
wplite
wp-zillow-review-slider
wp-zillow-review-slider
Showing 28901 to 29000 of 36406 results
Vulnerability data is aggregated from automated feeds and public sources. Results may include false positives or outdated information. Always verify details and apply updates in a staging environment before deploying to production.
Data updated daily from trusted sources. Last updated: July 4, 2026 at 02:25 UTC.