| 2021-04-12 | Wordpress Websites Remote File Upload Exploit | Published |
| 2021-04-02 | Realteo WordPress Plugin < = 1.2.3 - Improper Access Control | Published |
| 2021-04-02 | Realteo WordPress Plugin < = 1.2.3 - Unauthenticated Reflected XSS | Published |
| 2021-04-01 | Goto WordPress Theme < = 1.9 - Unauthenticated Reflected XSS | Published |
| 2021-03-24 | WordPress GiveWP 2.9.7 Cross Site Scripting | Published |
| 2021-03-23 | Controlled Admin Access WordPress Plugin < = 1.4.0 - Improper Access Control & Privilege Esca | Published |
| 2021-03-22 | WordPress Delightful Downloads Jquery File Tree 1.6.6 Path Traversal | Published |
| 2021-03-19 | WP Super Cache WordPress Plugin < = 1.7.1 - Authenticated RCE / XSS -> RCE | Published |
| 2021-02-24 | WordPress Plugin Supsystic Data Tables Generator 1.9.96 Multiple Vulnerabilities | Published |
| 2021-02-24 | WordPress Plugin SuperForms 4.9 - Arbitrary File Upload to Remote Code | Published |
| 2021-02-21 | WordPress Plugin Supsystic Ultimate Maps 1.1.12 sidx SQL injection | Published |
| 2021-02-18 | WordPress Plugin Supsystic Digital Publications 1.6.9 Multiple Vulnerabilities | Published |
| 2021-02-13 | WordPress Plugin Supsystic Contact Form 1.7.5 Multiple Vulnerabilities | Published |
| 2021-02-08 | WordPress Supsystic Data Tables Generator 1.9.96 XSS / SQL Injection | Published |
| 2021-01-28 | WordPress Plugin SuperForms 4.9 Arbitrary File Upload to Remote Code Execution | Published |
| 2021-01-20 | Wordpress superstorefinder plugins Security misconfigurations bug | Published |
| 2021-01-17 | Wordpress-newsletter * wordpress plugin * SQL Injection | Published |
| 2021-01-15 | WordPress Easy Contact Form 1.1.7 Cross Site Scripting | Published |
| 2021-01-13 | WordPress AIT CSV Import/Export 3.0.3 Shell Upload | Published |
| 2021-01-13 | Wp-ticket - wordpress plugin - Cross-Site-Scripting | Published |
| 2021-01-11 | Wordpress hashtagger plugin - 3.2 -Cross-Site-Scripting | Published |
| 2021-01-11 | WordPress Custom Global Variables 1.0.5 Cross Site Scripting | Published |
| 2021-01-11 | Encyclopedia / Glossary / Wiki - wordpress plugin - Cross-Site-Scripting | Published |
| 2021-01-10 | WordPress Plugin Autoptimize 2.7.6 Authenticated Arbitrary File Upload Metasploit | Published |
| 2021-01-07 | WordPress WP24 Domain Check 1.6.2 Cross Site Scripting | Published |
| 2021-01-07 | WordPress Litespeed Cache 3.6 Cross Site Scripting | Published |
| 2021-01-06 | WordPress Plugin litespeed cache 3.6 server_ip Cross-Site Scripting | Published |
| 2021-01-06 | WordPress Plugin W3 Total Cache Unauthenticated Arbitrary File Read Metasploit | Published |
| 2021-01-05 | WordPress WP-Paginate 2.1.3 Cross Site Scripting | Published |
| 2021-01-05 | WordPress Stripe Payments 2.0.39 Cross Site Scripting | Published |
| 2021-01-03 | WordPress Duplicator 1.3.26 Directory Traversal / File Read | Published |
| 2020-12-28 | WordPress Plugin Adning Advertising 1.5.5 - Arbitrary File Upload | Published |
| 2020-12-25 | WordPress Adning Advertising 1.5.5 Shell Upload | Published |
| 2020-12-25 | WordPress WP-PostRatings 1.86 Cross Site Scripting | Published |
| 2020-12-24 | WordPress Epsilon Framework SSRF / Denial of Service | Published |
| 2020-12-23 | WordPress Plugin W3 Total Cache - Unauthenticated Arbitrary File Read Metasploit | Published |