Exploits found on the INTERNET

This is live excerpt from our database. Available also using API

Edit Date Name Status
2021-07-23WordPress Simple Post 1.1 Cross Site ScriptingPublished
2021-07-21WordPress KN Fix Your Title 1.0.1 Cross Site ScriptingPublished
2021-07-19WordPress Mimetic Books 0.2.13 Cross Site ScriptingPublished
2021-07-15WordPress Popular Posts 5.3.2 Shell UploadPublished
2021-07-14WordPress WPFront Notification Bar 1.9.1.04012 Cross Site ScriptingPublished
2021-07-14WordPress Current Book 1.0.1 Cross Site ScriptingPublished
2021-07-08WordPress SP Project And Document Manager 4.21 Shell UploadPublished
2021-07-07WordPress Plugin Anti-Malware Security and Bruteforce Firewall 4.20.59 Directory TraversalPublished
2021-07-07Wordpress Plugin XCloner 4.2.12 Remote Code Execution AuthenticatedPublished
2021-07-07WordPress Plainview Activity Monitor 20161228 Remote Code ExecutionPublished
2021-07-05Real Estate 7 WordPress Theme < 3.1.1 - Unauthenticated Reflected XSSPublished
2021-07-02WordPress Modern Events Calendar 5.16.2 Shell UploadPublished
2021-07-02WordPress Modern Events Calendar 5.16.2 Information DisclosurePublished
2021-07-02WordPress XCloner 4.2.12 Remote Code ExecutionPublished
2021-06-28WordPress YOP Polls 6.2.7 Cross Site ScriptingPublished
2021-06-28WordPress Poll, Survey, Questionnaire And Voting System 1.5.2 SQL InjectionPublished
2021-06-25WordPress WP Google Maps 8.1.11 Cross Site ScriptingPublished
2021-06-19WordPress Plugin Database Backups 1.2.2.6 Database Backup Download CSRFPublished
2021-06-09WordPress Visitors-App 0.3 Cross Site ScriptingPublished
2021-06-08WordPress wpDiscuz 7.0.4 Remote Code ExecutionPublished
2021-06-07Wordpress Plugin wpDiscuz 7.0.4 - Arbitrary File Upload UnauthenticatedPublished
2021-06-01WordPress WP Prayer 1.6.1 Cross Site ScriptingPublished
2021-05-28WordPress LifterLMS 4.21.0 Cross Site ScriptingPublished
2021-05-25WordPress WP Statistics 13.0.7 SQL InjectionPublished
2021-05-25WordPress ReDi Restaurant Reservation 21.0307 Cross Site ScriptingPublished
2021-05-25WordPress Cookie Law Bar 1.2.1 Cross Site ScriptingPublished
2021-05-23WordPress Plugin Stop Spammers 2021.8 log Reflected Cross-site Scripting XSSPublished
2021-05-17Goto WordPress Theme 2.0 - Unauthenticated Blind SQL InjectionPublished
2021-05-17Mediumish WordPress Theme < = 1.0.47 - Unauthenticated Reflected XSS & XFSPublished
2021-05-17Listeo WordPress Theme < = 1.6.10 - Multiple XSS & XFS vulnerabilitiesPublished
2021-05-17Bello WordPress Theme < = 1.5.9 - Unauthenticated Reflected XSS & XFSPublished
2021-05-17WP-DB-Backup WordPress Plugin < = 2.3.3 - Authenticated Persistent XSSPublished
2021-05-17Listeo WordPress Theme < = 1.6.10 - Multiple Authenticated IDOR VulnerabilitiesPublished
2021-05-17GiveWP WordPress Plugin < = 2.10.3 - Authenticated Persistent XSSPublished
2021-05-17Bello WordPress Theme < = 1.5.9 - Authenticated XFSPublished
2021-05-17Bello WordPress Theme < = 1.5.9 - Unauthenticated Blind SQL InjectionPublished
2021-05-17GA Google Analytics WordPress Plugin < = 20210211 - Multiple Authenticated Persistent XSSPublished
2021-05-06WordPress WP Super Edit 2.5.4 Arbitrary File UploadPublished
2021-04-28WordPress Plugin WPGraphQL 1.3.5 Denial of ServicePublished




Copyright © 2021 Exploitalert v1 BETA.
About us & Partners This information is provided for TESTING and LEGAL RESEARCH purposes only.
All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use and Privacy Policy