Exploits found on the INTERNET

This is live excerpt from our database. Available also using API

Edit Date Name Status
2021-04-12Wordpress Websites Remote File Upload ExploitPublished
2021-04-02Realteo WordPress Plugin < = 1.2.3 - Improper Access ControlPublished
2021-04-02Realteo WordPress Plugin < = 1.2.3 - Unauthenticated Reflected XSSPublished
2021-04-01Goto WordPress Theme < = 1.9 - Unauthenticated Reflected XSSPublished
2021-03-24WordPress GiveWP 2.9.7 Cross Site ScriptingPublished
2021-03-23Controlled Admin Access WordPress Plugin < = 1.4.0 - Improper Access Control & Privilege EscaPublished
2021-03-22WordPress Delightful Downloads Jquery File Tree 1.6.6 Path TraversalPublished
2021-03-19WP Super Cache WordPress Plugin < = 1.7.1 - Authenticated RCE / XSS -> RCEPublished
2021-02-24WordPress Plugin Supsystic Data Tables Generator 1.9.96 Multiple VulnerabilitiesPublished
2021-02-24WordPress Plugin SuperForms 4.9 - Arbitrary File Upload to Remote CodePublished
2021-02-21WordPress Plugin Supsystic Ultimate Maps 1.1.12 sidx SQL injectionPublished
2021-02-18WordPress Plugin Supsystic Digital Publications 1.6.9 Multiple VulnerabilitiesPublished
2021-02-13WordPress Plugin Supsystic Contact Form 1.7.5 Multiple VulnerabilitiesPublished
2021-02-08WordPress Supsystic Data Tables Generator 1.9.96 XSS / SQL InjectionPublished
2021-01-28WordPress Plugin SuperForms 4.9 Arbitrary File Upload to Remote Code ExecutionPublished
2021-01-20Wordpress superstorefinder plugins Security misconfigurations bugPublished
2021-01-17Wordpress-newsletter * wordpress plugin * SQL InjectionPublished
2021-01-15WordPress Easy Contact Form 1.1.7 Cross Site ScriptingPublished
2021-01-13WordPress AIT CSV Import/Export 3.0.3 Shell UploadPublished
2021-01-13Wp-ticket - wordpress plugin - Cross-Site-ScriptingPublished
2021-01-11Wordpress hashtagger plugin - 3.2 -Cross-Site-ScriptingPublished
2021-01-11WordPress Custom Global Variables 1.0.5 Cross Site ScriptingPublished
2021-01-11Encyclopedia / Glossary / Wiki - wordpress plugin - Cross-Site-ScriptingPublished
2021-01-10WordPress Plugin Autoptimize 2.7.6 Authenticated Arbitrary File Upload MetasploitPublished
2021-01-07WordPress WP24 Domain Check 1.6.2 Cross Site ScriptingPublished
2021-01-07WordPress Litespeed Cache 3.6 Cross Site ScriptingPublished
2021-01-06WordPress Plugin litespeed cache 3.6 server_ip Cross-Site ScriptingPublished
2021-01-06WordPress Plugin W3 Total Cache Unauthenticated Arbitrary File Read MetasploitPublished
2021-01-05WordPress WP-Paginate 2.1.3 Cross Site ScriptingPublished
2021-01-05WordPress Stripe Payments 2.0.39 Cross Site ScriptingPublished
2021-01-03WordPress Duplicator 1.3.26 Directory Traversal / File ReadPublished
2020-12-28WordPress Plugin Adning Advertising 1.5.5 - Arbitrary File UploadPublished
2020-12-25WordPress Adning Advertising 1.5.5 Shell UploadPublished
2020-12-25WordPress WP-PostRatings 1.86 Cross Site ScriptingPublished
2020-12-24WordPress Epsilon Framework SSRF / Denial of ServicePublished
2020-12-23WordPress Plugin W3 Total Cache - Unauthenticated Arbitrary File Read MetasploitPublished




Copyright © 2021 Exploitalert v1 BETA.
About us & Partners This information is provided for TESTING and LEGAL RESEARCH purposes only.
All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use and Privacy Policy