WordPress Plugin Vulnerabilities

🦸 🧭 Calling all superheroes and explorers! Introducing the WordPress Superhero Challenge and WordPress XSSplorer Challenge for the Wordfence Bug Bounty Program: Earn up to $31,200 for High Impact Vulnerabilities AND XSS vulnerabilities are in scope for all researchers in plugins/themes >= 1,000 Active Installs!

Through October 7th, 2024 all Cross-Site Scripting (XSS) vulnerabilities in plugins/themes with >= 1,000 Active Installs will be in scope for all researchers regardless of researcher tier. In addition, through October 14th, 2024, all vulnerabilities reported in plugins or themes with >= 5,000,000 active installs will be 3x our highest bounty rewards making our top reward $31,200.

Check out the updated bounties here!

Wordfence Intelligence > Vulnerability Database > WordPress Plugins

Showing 4901-4920 of 8677 plugins with known vulnerabilities

Search all WordPress Plugins with known vulnerabilities

WritersBlok AI Content Generator for WordPress

1 Vulnerability

Jul 18, 2023

WZ Followed Posts – Display what visitors are reading

1 Vulnerability

Jul 18, 2023

XT Points & Rewards for WooCommerce

2 Vulnerabilities

Jul 18, 2023

XT Variation Swatches for WooCommerce

2 Vulnerabilities

Jul 18, 2023

Yatri Tools

2 Vulnerabilities

Jul 18, 2023

YouTube Embed – YouTube Gallery, Vimeo Gallery – WordPress Plugin

1 Vulnerability

Jul 18, 2023

Yummy Recipes

1 Vulnerability

Jul 18, 2023

Zip Code Redirect

2 Vulnerabilities

Jul 18, 2023

Кнопка ЮMoney

3 Vulnerabilities

Jul 18, 2023

Art Decoration Shortcode

1 Vulnerability

Jul 19, 2023

GTmetrix for WordPress

3 Vulnerabilities

Jul 19, 2023

Post List With Featured Image

1 Vulnerability

Jul 19, 2023

WP Brutal AI

3 Vulnerabilities

Jul 19, 2023

WP Emoji One

1 Vulnerability

Jul 19, 2023

WP-CopyProtect [Protect your blog posts]

2 Vulnerabilities

Jul 19, 2023

wpShopGermany IT-RECHT KANZLEI

1 Vulnerability

Jul 19, 2023

Audio Player with Playlist Ultimate

1 Vulnerability

Jul 20, 2023

Client Portal : SuiteDash Direct Login

1 Vulnerability

Jul 20, 2023

Disabler

1 Vulnerability

Jul 20, 2023

Elastic Email Sender

1 Vulnerability

Jul 20, 2023

Title	Number of Vulnerabilities	Last Vulnerability
WritersBlok AI Content Generator for WordPress	1	July 18, 2023
WZ Followed Posts – Display what visitors are reading	1	July 18, 2023
XT Points & Rewards for WooCommerce	2	July 18, 2023
XT Variation Swatches for WooCommerce	2	July 18, 2023
Yatri Tools	2	July 18, 2023
YouTube Embed – YouTube Gallery, Vimeo Gallery – WordPress Plugin	1	July 18, 2023
Yummy Recipes	1	July 18, 2023
Zip Code Redirect	2	July 18, 2023
Кнопка ЮMoney	3	July 18, 2023
Art Decoration Shortcode	1	July 19, 2023
GTmetrix for WordPress	3	July 19, 2023
Post List With Featured Image	1	July 19, 2023
WP Brutal AI	3	July 19, 2023
WP Emoji One	1	July 19, 2023
WP-CopyProtect [Protect your blog posts]	2	July 19, 2023
wpShopGermany IT-RECHT KANZLEI	1	July 19, 2023
Audio Player with Playlist Ultimate	1	July 20, 2023
Client Portal : SuiteDash Direct Login	1	July 20, 2023
Disabler	1	July 20, 2023
Elastic Email Sender	1	July 20, 2023

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation