WordPress Plugin Vulnerabilities

💥 Time to wrap up this year and kick-off the new year with a bang! We’re wrapping up the year with our End of Year Holiday Extravaganza, High-Risk Bonus Blitz Challenge, and Superhero Challenge for the Wordfence Bug Bounty Program.

Through January 6th, 2025, our program has an expanded scope for all researchers with a new lower active install count threshold, automatic bonuses for in-scope submissions, an extra bonus for those focusing on high-risk vulnerabilities, a minimum bounty for all submissions, increased pending report limits, and our rewards remain as high as $31,200.

Review what's in scope for your tier and updated bounties with bonuses here!

Wordfence Intelligence > Vulnerability Database > WordPress Plugins

Showing 8761-8780 of 9967 plugins with known vulnerabilities

Search all WordPress Plugins with known vulnerabilities

WordPress Shortcodes

1 Vulnerability

Feb 13, 2023

WordPress Shout Box Widget

1 Vulnerability

Jan 31, 2013

WordPress Simple HTML Sitemap

5 Vulnerabilities

Sep 24, 2024

WordPress Simple Shop

1 Vulnerability

Sep 9, 2021

WordPress Simple Shopping Cart

4 Vulnerabilities

Jan 26, 2024

WordPress Slider Block Gutenslider

3 Vulnerabilities

Jul 18, 2023

WordPress Social Comments Plugin for Vkontakte Comments and Disqus Comments

1 Vulnerability

Jan 20, 2023

WordPress Social Invitations – Lite

1 Vulnerability

May 28, 2014

WordPress Social Login

4 Vulnerabilities

Sep 5, 2023

WordPress Social Share Buttons

1 Vulnerability

Oct 18, 2024

WordPress Spreadsheet

3 Vulnerabilities

Aug 6, 2014

WordPress Survey & Poll – Quiz, Survey and Poll Plugin for WordPress

1 Vulnerability

May 28, 2015

WordPress Table Builder – TableGenie

1 Vulnerability

Jul 18, 2023

WordPress Tables

1 Vulnerability

Jun 5, 2023

WordPress Tag, Category, and Taxonomy Manager – AI Autotagger

6 Vulnerabilities

Apr 3, 2024

WordPress Testimonial Plugin – HmTestimonial

1 Vulnerability

Jul 18, 2023

WordPress to Freshsales Integration

1 Vulnerability

May 25, 2022

WordPress Toolbar

1 Vulnerability

Jan 31, 2024

WordPress Tooltips

3 Vulnerabilities

Apr 5, 2024

WordPress Tour & Travel Booking Plugin for WooCommerce – WpTravelly

3 Vulnerabilities

Aug 9, 2024

Title	Number of Vulnerabilities	Last Vulnerability
WordPress Shortcodes	1	February 13, 2023
WordPress Shout Box Widget	1	January 31, 2013
WordPress Simple HTML Sitemap	5	September 24, 2024
WordPress Simple Shop	1	September 9, 2021
WordPress Simple Shopping Cart	4	January 26, 2024
WordPress Slider Block Gutenslider	3	July 18, 2023
WordPress Social Comments Plugin for Vkontakte Comments and Disqus Comments	1	January 20, 2023
WordPress Social Invitations – Lite	1	May 28, 2014
WordPress Social Login	4	September 5, 2023
WordPress Social Share Buttons	1	October 18, 2024
WordPress Spreadsheet	3	August 6, 2014
WordPress Survey & Poll – Quiz, Survey and Poll Plugin for WordPress	1	May 28, 2015
WordPress Table Builder – TableGenie	1	July 18, 2023
WordPress Tables	1	June 5, 2023
WordPress Tag, Category, and Taxonomy Manager – AI Autotagger	6	April 3, 2024
WordPress Testimonial Plugin – HmTestimonial	1	July 18, 2023
WordPress to Freshsales Integration	1	May 25, 2022
WordPress Toolbar	1	January 31, 2024
WordPress Tooltips	3	April 5, 2024
WordPress Tour & Travel Booking Plugin for WooCommerce – WpTravelly	3	August 9, 2024

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation