WordPress Plugin Vulnerabilities

🦸 🧭 Calling all superheroes and explorers! Introducing the WordPress Superhero Challenge and WordPress XSSplorer Challenge for the Wordfence Bug Bounty Program: Earn up to $31,200 for High Impact Vulnerabilities AND XSS vulnerabilities are in scope for all researchers in plugins/themes >= 1,000 Active Installs!

Through October 7th, 2024 all Cross-Site Scripting (XSS) vulnerabilities in plugins/themes with >= 1,000 Active Installs will be in scope for all researchers regardless of researcher tier. In addition, through October 14th, 2024, all vulnerabilities reported in plugins or themes with >= 5,000,000 active installs will be 3x our highest bounty rewards making our top reward $31,200.

Check out the updated bounties here!

Wordfence Intelligence > Vulnerability Database > WordPress Plugins

Showing 4001-4020 of 8654 plugins with known vulnerabilities

Search all WordPress Plugins with known vulnerabilities

Media File Organizer

1 Vulnerability

Apr 13, 2021

Media File Renamer: Rename for better SEO (AI-Powered)

5 Vulnerabilities

Dec 26, 2023

Media from FTP

3 Vulnerabilities

Aug 14, 2023

Media Hygiene: Remove or Delete Unused Images and More!

1 Vulnerability

Jul 8, 2024

Media Library Assistant

17 Vulnerabilities

Aug 12, 2024

Media Library Categories

1 Vulnerability

Aug 1, 2014

Media Library Categories

2 Vulnerabilities

Jul 20, 2023

Media Library File Download

2 Vulnerabilities

Jul 18, 2023

Media Library Folders

6 Vulnerabilities

Aug 29, 2024

Media Mirror

1 Vulnerability

Aug 9, 2021

Media Slider – Photo Slider, Video Slider, Link Slider, Carousal Slideshow

1 Vulnerability

Jun 6, 2024

Media Tags

1 Vulnerability

Oct 25, 2021

Media Usage

1 Vulnerability

Aug 13, 2021

Media.net Ads Manager

1 Vulnerability

Jul 26, 2024

Mediabay – Media Library Folders

2 Vulnerabilities

Oct 24, 2023

MediaElement.js – HTML5 Video & Audio Player

1 Vulnerability

Jan 3, 2023

Medialist

2 Vulnerabilities

Nov 3, 2023

Mediamatic – Media Library Folders

4 Vulnerabilities

Jan 13, 2023

Mediavine Control Panel

2 Vulnerabilities

Aug 9, 2024

Medibazar Core

1 Vulnerability

Dec 7, 2023

Title	Number of Vulnerabilities	Last Vulnerability
Media File Organizer	1	April 13, 2021
Media File Renamer: Rename for better SEO (AI-Powered)	5	December 26, 2023
Media from FTP	3	August 14, 2023
Media Hygiene: Remove or Delete Unused Images and More!	1	July 8, 2024
Media Library Assistant	17	August 12, 2024
Media Library Categories	1	August 1, 2014
Media Library Categories	2	July 20, 2023
Media Library File Download	2	July 18, 2023
Media Library Folders	6	August 29, 2024
Media Mirror	1	August 9, 2021
Media Slider – Photo Slider, Video Slider, Link Slider, Carousal Slideshow	1	June 6, 2024
Media Tags	1	October 25, 2021
Media Usage	1	August 13, 2021
Media.net Ads Manager	1	July 26, 2024
Mediabay – Media Library Folders	2	October 24, 2023
MediaElement.js – HTML5 Video & Audio Player	1	January 3, 2023
Medialist	2	November 3, 2023
Mediamatic – Media Library Folders	4	January 13, 2023
Mediavine Control Panel	2	August 9, 2024
Medibazar Core	1	December 7, 2023

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation