Exploits found on the INTERNET

This is live excerpt from our database. Available also using API

Edit Date Name Status
2018-02-16WordPress UltimateMember 2.0 Cross Site ScriptingPublished
2018-02-16Wordpress 4.9.4 Username Enumeration perl versionPublished
2018-01-31WordPress Propertyhive 1.4.14 Cross Site ScriptingPublished
2018-01-30WordPress Splashing Images 2.1 Cross Site Scripting / PHP Object InjectionPublished
2018-01-22Wordpress Tips Wp-Config Setup VulnerablePublished
2018-01-22Wordpress linenity theme - Arbitrary file downloadPublished
2018-01-21Wordpress newspro2891 theme - Arbitrary file downloadPublished
2018-01-21Wordpress endlesshorizon theme - Arbitrary file downloadPublished
2018-01-21Wordpress duena theme - Arbitrary file downloadPublished
2018-01-21Wordpress cafesalivation theme - Arbitrary file downloadPublished
2018-01-21Wordpress File Manager plugin Version 5.0.1 SSRF/XSPA VulnerabilityPublished
2018-01-21Wordpress liberator theme - Arbitrary file downloadPublished
2018-01-21Wordpress oxygen theme - Arbitrary file downloadPublished
2018-01-20Wordpress kap theme arbitrary file downloadPublished
2018-01-15Wordpress wp-File-Manager plugin Version 1.9 SSRF/XSPA VulnerabilityPublished
2018-01-11WordPress Smooth Slider 2.8.6 SQL InjectionPublished
2018-01-11WordPress Dbox 3D Slider Lite 1.2.2 SQL InjectionPublished
2018-01-11WordPress MQ ReLinks 1.8 XSS / Open RedirectionPublished
2018-01-11WordPress Download Manager 2.9.60 Cross Site Request ForgeryPublished
2018-01-11WordPress Testimonial Slider 1.2.4 SQL InjectionPublished
2018-01-10WordPress Social Media Widget By Acurax 3.2.5 Cross Site Request ForgeryPublished
2018-01-10WordPress Plugin Events Calendar event_id SQL InjectionPublished
2018-01-09WordPress CMS Tree Page View 1.4 CSRF / Privilege EscalationPublished
2018-01-08WordPress Plugin LearnDash 2.5.3 Arbitrary File UploadPublished
2018-01-04WordPress Smart Google Code Inserter SQL InjectionPublished
2018-01-03WordPress Plugin Smart Google Code Inserter < 3.5 Authentication Bypass / SQL InjectionPublished
2017-12-22WordPress Grifus 4.0.1 Cross Site ScriptingPublished
2017-12-22WordPress mgl-instagram-gallery Plugin Cross Site ScriptingPublished
2017-12-21WordPress feed-statistics Plugin Open Redirect VulnerabilityPublished
2017-12-21WordPress WebConnex Form Management 1.6.3 Cross Site ScriptingPublished
2017-12-21WordPress Itinerary 1.0.0 Cross Site ScriptingPublished
2017-12-20WordPress Concours 1.1 Cross Site ScriptingPublished
2017-12-20WordPress Clean Up Optimizer 4.0.0 SQL InjectionPublished
2017-12-20WordPress Custom Map 1.1 Cross Site ScriptingPublished
2017-12-20WordPress Booking Calendar 7.0 / 7.1 SQL Injection / Local File InclusionPublished
2017-12-20WordPress CSV Import-Export 1.1 Cross Site ScriptingPublished
2017-12-19WordPress Yakadanda Google+ Hangout Events 0.3.7 XSSPublished




Copyright © 2018 Exploitalert v1 BETA.
About us & Partners This information is provided for TESTING and LEGAL RESEARCH purposes only.
All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use.