Exploits found on the INTERNET

This is live excerpt from our database. Available also using API

Edit Date Name Status
2021-01-20Wordpress superstorefinder plugins Security misconfigurations bugPublished
2021-01-17Wordpress-newsletter * wordpress plugin * SQL InjectionPublished
2021-01-15WordPress Easy Contact Form 1.1.7 Cross Site ScriptingPublished
2021-01-13WordPress AIT CSV Import/Export 3.0.3 Shell UploadPublished
2021-01-13Wp-ticket - wordpress plugin - Cross-Site-ScriptingPublished
2021-01-11Wordpress hashtagger plugin - 3.2 -Cross-Site-ScriptingPublished
2021-01-11WordPress Custom Global Variables 1.0.5 Cross Site ScriptingPublished
2021-01-11Encyclopedia / Glossary / Wiki - wordpress plugin - Cross-Site-ScriptingPublished
2021-01-10WordPress Plugin Autoptimize 2.7.6 Authenticated Arbitrary File Upload MetasploitPublished
2021-01-07WordPress WP24 Domain Check 1.6.2 Cross Site ScriptingPublished
2021-01-07WordPress Litespeed Cache 3.6 Cross Site ScriptingPublished
2021-01-06WordPress Plugin litespeed cache 3.6 server_ip Cross-Site ScriptingPublished
2021-01-06WordPress Plugin W3 Total Cache Unauthenticated Arbitrary File Read MetasploitPublished
2021-01-05WordPress WP-Paginate 2.1.3 Cross Site ScriptingPublished
2021-01-05WordPress Stripe Payments 2.0.39 Cross Site ScriptingPublished
2021-01-03WordPress Duplicator 1.3.26 Directory Traversal / File ReadPublished
2020-12-28WordPress Plugin Adning Advertising 1.5.5 - Arbitrary File UploadPublished
2020-12-25WordPress Adning Advertising 1.5.5 Shell UploadPublished
2020-12-25WordPress WP-PostRatings 1.86 Cross Site ScriptingPublished
2020-12-24WordPress Epsilon Framework SSRF / Denial of ServicePublished
2020-12-23WordPress Plugin W3 Total Cache - Unauthenticated Arbitrary File Read MetasploitPublished
2020-12-20WordPress Yet Another Stars Rating PHP Object InjectionPublished
2020-12-18Wordpress Plugin Duplicator 1.3.26 Unauthenticated Arbitrary File Read MetasploitPublished
2020-12-15WordPress Total Upkeep 1.14.9 Backup DisclosurePublished
2020-12-14WordPress Plugin Popup Builder 3.69.6 Multiple Stored Cross Site ScriptingPublished
2020-12-12Wordpress Plugin Canto 1.3.0 Blind SSRF UnauthenticatedPublished
2020-12-12WordPress DirectoriesPro 1.3.45 Cross Site ScriptingPublished
2020-12-10WordPress Popup Builder 3.69.6 Cross Site ScriptingPublished
2020-12-07WordPress Canto 1.3.0 Server-Side Request ForgeryPublished
2020-12-01Wordpress Plugin EventON Calendar 3.0.5 Reflected Cross-Site ScriptingPublished
2020-11-30WordPress Age Gate 2.13.4 Open RedirectPublished
2020-11-30WordPress Wibar Theme 1.1.8 Cross Site ScriptingPublished
2020-11-28Wordpress Theme Accesspress Social Icons 1.7.9 SQL injection AuthenticatedPublished
2020-11-25WordPress Simple File List Unauthenticated Remote Code ExecutionPublished
2020-11-22WordPress Fancy Product Designer For WooCommerce 4.5.1 File UploadPublished
2020-11-19WordPress WP Forms Cross SIte ScriptingPublished
2020-11-16WordPress Buddypress 6.2.0 Cross Site ScriptingPublished

Copyright © 2021 Exploitalert v1 BETA.
About us & Partners This information is provided for TESTING and LEGAL RESEARCH purposes only.
All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use and Privacy Policy