WordPress Plugin Vulnerabilities

💥 Time to wrap up this year and kick-off the new year with a bang! We’re wrapping up the year with our End of Year Holiday Extravaganza, High-Risk Bonus Blitz Challenge, and Superhero Challenge for the Wordfence Bug Bounty Program.

Through January 6th, 2025, our program has an expanded scope for all researchers with a new lower active install count threshold, automatic bonuses for in-scope submissions, an extra bonus for those focusing on high-risk vulnerabilities, a minimum bounty for all submissions, increased pending report limits, and our rewards remain as high as $31,200.

Review what's in scope for your tier and updated bounties with bonuses here!

Wordfence Intelligence > Vulnerability Database > WordPress Plugins

Showing 8701-8720 of 9967 plugins with known vulnerabilities

Search all WordPress Plugins with known vulnerabilities

Disable Json API, Login Lockdown, XMLRPC, Pingback, Stop User Enumeration Anti Hacker Scan

4 Vulnerabilities

Feb 27, 2024

Discount Rules for WooCommerce – Create Smart WooCommerce Coupons & Discounts, Bulk Discount, BOGO Coupons

4 Vulnerabilities

Oct 15, 2024

Display custom fields in the frontend – Post and User Profile Fields

4 Vulnerabilities

Jan 16, 2024

DMSGuestbook

4 Vulnerabilities

Feb 2, 2008

DoLogin Security

4 Vulnerabilities

Oct 24, 2023

DOOFINDER Search and Discovery for WP & WooCommerce

4 Vulnerabilities

Feb 12, 2024

Download Plugin

4 Vulnerabilities

Oct 22, 2024

Download Plugins and Themes in ZIP from Dashboard

4 Vulnerabilities

Oct 10, 2024

DSGVO All in one for WP

4 Vulnerabilities

Aug 26, 2024

DTracker

4 Vulnerabilities

Mar 13, 2017

EAN Barcode Generator for WooCommerce: UPC, ISBN & GTIN Inventory

4 Vulnerabilities

May 3, 2024

Easy Table of Contents

4 Vulnerabilities

Jul 16, 2024

Easy2Map

4 Vulnerabilities

Oct 5, 2015

EELV Newsletter

4 Vulnerabilities

Dec 12, 2024

Email Artillery (MASS EMAIL)

4 Vulnerabilities

Aug 16, 2021

Email Log

4 Vulnerabilities

May 23, 2024

Email Template Designer – WP HTML Mail

4 Vulnerabilities

Aug 11, 2023

Email Tracker – Email Tracking Plugin to track Emails for Open and Email Links Click (Compatible with WooCommerce)

4 Vulnerabilities

Jul 18, 2023

Email Users

4 Vulnerabilities

May 18, 2022

Enable Media Replace

4 Vulnerabilities

Dec 18, 2023

Title	Number of Vulnerabilities	Last Vulnerability
Disable Json API, Login Lockdown, XMLRPC, Pingback, Stop User Enumeration Anti Hacker Scan	4	February 27, 2024
Discount Rules for WooCommerce – Create Smart WooCommerce Coupons & Discounts, Bulk Discount, BOGO Coupons	4	October 15, 2024
Display custom fields in the frontend – Post and User Profile Fields	4	January 16, 2024
DMSGuestbook	4	February 2, 2008
DoLogin Security	4	October 24, 2023
DOOFINDER Search and Discovery for WP & WooCommerce	4	February 12, 2024
Download Plugin	4	October 22, 2024
Download Plugins and Themes in ZIP from Dashboard	4	October 10, 2024
DSGVO All in one for WP	4	August 26, 2024
DTracker	4	March 13, 2017
EAN Barcode Generator for WooCommerce: UPC, ISBN & GTIN Inventory	4	May 3, 2024
Easy Table of Contents	4	July 16, 2024
Easy2Map	4	October 5, 2015
EELV Newsletter	4	December 12, 2024
Email Artillery (MASS EMAIL)	4	August 16, 2021
Email Log	4	May 23, 2024
Email Template Designer – WP HTML Mail	4	August 11, 2023
Email Tracker – Email Tracking Plugin to track Emails for Open and Email Links Click (Compatible with WooCommerce)	4	July 18, 2023
Email Users	4	May 18, 2022
Enable Media Replace	4	December 18, 2023

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation