Is your site up to date?
Outdate plugins & themes are the #1 reason sites get hacked. Don’t leave your WooCommerce store vulnerable!
Simple Banner
Plugin:Â Simple Banner
Vulnerability: Authenticated Stored XSS
Patched in Version: 2.10.4
Severity Score: Low
HD Quiz
Plugin:Â HD Quiz
Vulnerability: Authenticated Stored XSS
Patched in Version: 1.8.4
Severity Score: Low
Contact Form 7 Captcha
Plugin:Â Contact Form 7 Captcha
Vulnerability: CSRF to Stored XSS
Patched in Version: 0.0.9
Severity Score: High
WPFront Scroll Top
Plugin:Â WPFront Scroll Top
Vulnerability: Authenticated Stored XSS
Patched in Version: 2.0.6.07225
Severity Score: Medium
WP SMS
Plugin:Â WP SMS
Vulnerability: Authenticated Stored Cross-Site Scripting
Patched in Version: 5.4.13
Severity Score: Low
Qyrr
Plugin:Â Qyrr
Vulnerability: Authenticated (contributor+) Stored XSS
Patched in Version: 0.7
Severity Score: Medium
Paid Member Subscriptions
Plugin:Â Paid Member Subscriptions
Vulnerability: Reflected Cross-Site Scripting (XSS)
Patched in Version: 2.4.2
Severity Score: High
GiveWP
Plugin:Â GiveWP
Vulnerability: Authenticated Stored XSS
Patched in Version: 2.12.0
Severity Score: Medium
Slider Hero
Plugin:Â Slider Hero
Vulnerability: CSRF to Stored XSS
Patched in Version: 8.2.7
Severity Score: Critical
Simple Social Media Share Buttons
Plugin:Â Simple Social Media Share ButtonsÂ
Vulnerability: Contributor+ Stored XSS
Patched in Version: 3.2.3
Severity Score: Medium
Advanced Shipment Tracking
Plugin:Â Advanced Shipment Tracking for WooCommerceÂ
Vulnerability: Authenticated Options Change
Patched in Version: 3.2.7
Severity Score: Critical
WP LMS
Plugin:Â WP LMS
Vulnerability: Unauthenticated Stored Cross-Site Scripting (XSS)
Patched in Version: 1.1.3
Severity Score: High
Custom Login Redirect
Plugin:Â Custom Login Redirect
Vulnerability: CSRF to Stored XSS
Patched in Version:Â no known fix
Severity Score: High
Blue Admin
Plugin:Â Blue Admin
Vulnerability: CSRF to Stored Cross-Site Scripting (XSS)
Patched in Version:Â No known fix
Severity Score: High
Favicon by RealFaviconGenerator
Plugin:Â Favicon by RealFaviconGeneratorÂ
Vulnerability: Reflected Cross-Site Scripting (XSS)
Patched in Version:Â No known fix
Severity Score: High
uListing
Plugin:Â uListing
Vulnerability: Unauthenticated SQL Injection
Patched in Version: 2.0.4
Severity Score: High
WooCommerce Blocks
Plugin:Â WooCommerce Blocks 2.5 to 5.5
Vulnerability: Unauthenticated SQL Injection
Patched in Version: 5.5.1
Severity Score: Critical
WooCommerce
Plugin:Â Woocommerce 3.3 to 5.5
Vulnerability: Authenticated Blind SQL Injection
Patched in Version: 5.5.1
Severity Score: High
Admin Custom Login
Plugin:Â Admin Custom Login
Vulnerability: CSRF to Stored XSS
Patched in Version: 3.2.8
Severity Score: High
SEO Backlinks
Plugin:Â SEO BacklinksÂ
Vulnerability: CSRF to Stored XSS
Patched in Version:Â No known fix
Severity Score: High
Poll Maker
Plugin:Â Poll Maker
Vulnerability: Reflected Cross-Site Scripting
Patched in Version: 3.2.9
Severity Score: High
Â
Post Index
Plugin:Â Post IndexÂ
Vulnerability: CSRF to Stored XSS
Patched in Version:Â No known fix
Severity Score: High
Â
Side Menu Lite
Plugin:Â Side Menu Lite
Vulnerability: Authenticated SQL Injection
Patched in Version: 2.2.6
Severity Score: High
Â
WordPress Download Manager
Plugin:Â WordPress Download Manager
Vulnerability: Authenticated Directory Traversal
Patched in Version: 3.1.25
Severity Score: Medium
Â
FluentSMTP
Plugin:Â FluentSMTP
Vulnerability: Authenticated Stored XSS
Patched in Version: 2.0.1
Severity Score: Low
Â
YouTube Feeder
Plugin:Â Youtube Feeder
Vulnerability: CSRF to Stored XSS
Patched in Version:Â No known fix
Severity Score: High
Â
Nifty Newsletter
Plugin:Â Nifty Newsletters
Vulnerability: CSRF to Stored XSS
Patched in Version:Â No known fix
Severity Score: High
Â