🦸 👻 Calling all superheroes and haunters! Introducing the Cybersecurity Month Spooktacular Haunt and the WordPress Superhero Challenge for the Wordfence Bug Bounty Program! Through November 11th, 2024, all in-scope vulnerability types for WordPress plugins/themes with >= 1,000 active installations are in-scope for ALL researchers, top-tier researchers earn automatic bonuses of between 10% to 120% for valid submissions, pending report limits are increased for all, and it's possible to earn up to $31,200 for high impact vulnerabilities!
Review what's in scope for your tier and updated bounties with bonuses here!
Title | Number of Vulnerabilities | Last Vulnerability |
---|---|---|
Popup4Phone | 2 | April 26, 2024 |
Portfolio – WordPress Portfolio Plugin | 2 | February 13, 2023 |
Portfolio and Projects | 2 | August 16, 2023 |
Portfolio Gallery – Responsive Image Gallery | 2 | August 17, 2023 |
Portfolio Plugin | 2 | July 20, 2015 |
Portfolio Responsive Gallery | 2 | June 29, 2021 |
Post Indexer | 2 | November 17, 2016 |
Post Status Notifier Lite | 2 | November 14, 2023 |
Post Teaser | 2 | December 5, 2022 |
Post to Google My Business (Google Business Profile) | 2 | July 24, 2023 |
Post Type Builder | 2 | April 9, 2024 |
Post Views Counter | 2 | April 5, 2024 |
Postcode Redirect | 2 | July 18, 2023 |
PostmagThemes Demo Import | 2 | November 11, 2022 |
postMash – custom post order | 2 | February 26, 2024 |
Power BI Embedded for WordPress | 2 | July 10, 2024 |
Power Zoomer | 2 | January 29, 2013 |
Powerkit – Supercharge your WordPress Site | 2 | April 5, 2024 |
PowerPack for Beaver Builder | 2 | August 16, 2024 |
PPWP – Password Protect Pages | 2 | February 7, 2024 |
Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!
Learn moreWant to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.
The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.
Documentation