🦸 🧭 Calling all superheroes and explorers! Introducing the WordPress Superhero Challenge and WordPress XSSplorer Challenge for the Wordfence Bug Bounty Program: Earn up to $31,200 for High Impact Vulnerabilities AND XSS vulnerabilities are in scope for all researchers in plugins/themes >= 1,000 Active Installs!
Through October 7th, 2024 all Cross-Site Scripting (XSS) vulnerabilities in plugins/themes with >= 1,000 Active Installs will be in scope for all researchers regardless of researcher tier. In addition, through October 14th, 2024, all vulnerabilities reported in plugins or themes with >= 5,000,000 active installs will be 3x our highest bounty rewards making our top reward $31,200.
Check out the updated bounties here!
Title | Number of Vulnerabilities | Last Vulnerability |
---|---|---|
Void Elementor WHMCS Elements For Elementor Page Builder | 1 | April 16, 2024 |
Vospari Forms | 1 | November 21, 2016 |
Votecount For Balatarin | 1 | May 25, 2014 |
VRView | 1 | April 23, 2018 |
Vuukle Comments, Reactions, Share Bar, Revenue | 1 | July 5, 2021 |
W-DALIL | 1 | June 27, 2022 |
W3SPEEDSTER | 1 | January 31, 2024 |
WA Form Builder | 1 | December 5, 2016 |
Wadi Addons for Elementor | 1 | July 18, 2023 |
Wadi Survey | 1 | March 4, 2022 |
Walk Score Plugin | 1 | June 12, 2014 |
Walker Core | 1 | March 4, 2022 |
WANotifier – Send Message Notifications Using Cloud API | 1 | July 10, 2024 |
Warranties and Returns for WooCommerce | 1 | September 7, 2021 |
Watcheezy Live chat plugin for WordPress | 1 | May 5, 2021 |
Watermark RELOADED | 1 | February 26, 2024 |
Wbcom Designs – BuddyPress Activity Filter | 1 | April 13, 2022 |
Wbcom Designs – BuddyPress Ads | 1 | April 13, 2022 |
Wbcom Designs – BuddyPress Create Group Type | 1 | April 13, 2022 |
Wbcom Designs – BuddyPress Member Reviews | 1 | April 13, 2022 |
Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!
Learn moreWant to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.
The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.
Documentation