Is your site up to date?
Outdate plugins & themes are the #1 reason sites get hacked. Don’t leave your WooCommerce store vulnerable!
Clean Login
Plugin:Â Clean Login
Vulnerability: Reflected Cross-Site Scripting
Patched in Version: 1.12.6.4
Severity Score: Medium
Business Hours Indicator
Plugin:Â Business Hours IndicatorÂ
Vulnerability: Authenticated Stored XSS
Patched in Version: 2.3.5
Severity Score: Low
SliceWP
Plugin:Â SliceWP
Vulnerability: Reflected Cross-Site Scripting (XSS)
Patched in Version: 1.0.46
Severity Score: High
WordPress Download Manager
Plugin:Â WordPress Download Manager
Vulnerability: Email Template Setting Update via CSRF
Patched in Version: 3.2.13
Severity Score: Medium
SpeakOut! Email Petitions
Plugin:Â SpeakOut! Email Petitions
Vulnerability: Reflected Cross-Site Scripting
Patched in Version: 2.13.3
Severity Score: High
Site Reviews
Plugin:Â Site Reviews
Vulnerability: Authenticated Stored XSS
Patched in Version: 5.13.1
Severity Score: Low
Tutor LMS
Plugin:Â Tutor LMS
Vulnerability: Reflected Cross-Site Scripting
Patched in Version: 1.9.6
Severity Score: High
WPFront Notification Bar
Plugin:Â WPFront Notification Bar
Vulnerability: Authenticated Stored XSS
Patched in Version: 2.1.08087
Severity Score: Low
Form Builder
Plugin:Â Form Builder
Vulnerability: Reflected Cross-Site Scripting (XSS)
Patched in Version: 1.9.8.5
Severity Score: High
WPvivid Backup
Plugin:Â WPvivid Backup
Vulnerability: Reflected Cross-Site Scripting
Patched in Version: 0.9.56
Severity Score: High
AddToAny
Plugin:Â AddToAny
Vulnerability: Authenticated Stored XSS
Patched in Version: 1.7.46
Severity Score: Low
Stop Spammers Security
Plugin:Â Stop Spammers Security
Vulnerability: Authenticated Stored XSS
Patched in Version: 2021.18
Severity Score: Low
Keywords & Meta
Plugin:Â Keywords & Meta
Vulnerability: CSRF to Stored Cross-Site Scripting (XSS)
Patched in Version:Â No known fix
Severity Score: High
Titan Framework
Plugin:Â Titan FrameworkÂ
Vulnerability: Reflected Cross-Site Scripting (XSS)
Patched in Version:Â No known fix
Severity Score: High
WP Fusion Lite
Plugin:Â WP Fusion Lite
Vulnerability: CSRF to Data Deletion
Patched in Version: 3.37.30
Severity Score: Medium
Block and Stop Bad Bots
Plugin:Â Block and Stop Bad BotsÂ
Vulnerability: Authenticated SQL Injections
Patched in Version: 6.60
Severity Score: Medium
WP Simple Booking Calendar
Plugin:Â WP Simple Booking Calendar
Vulnerability: Authenticated SQL Injections
Patched in Version: 2.0.6
Severity Score: Medium
Paid Member Subscriptions
Plugin:Â Paid Member Subscriptions
Vulnerability: Authenticated SQL Injections
Patched in Version: 2.4.2
Severity Score: Medium
Favicon by RealFaviconGenerator
Plugin:Â Favicon by RealFaviconGenerator
Vulnerability: Reflected Cross-Site Scripting (XSS)
Patched in Version: 1.3.22
Severity Score: High
Alipay
Plugin:Â AlipayÂ
Vulnerability: Authenticated SQL Injection
Patched in Version:Â No known fix
Severity Score: Medium
Cashtomer
Plugin:Â Cashtomer
Vulnerability: Authenticated SQL Injection
Patched in Version:Â No known fix
Severity Score: Medium
WordPress Membership SwiftCloud.io
Plugin:Â WordPress Membership SwiftCloud.io
Vulnerability: Authenticated SQL Injection
Patched in Version:Â No known fix
Severity Score: Medium
Easy Testimonial Manager
Plugin:Â Easy Testimonial Manager
Vulnerability: Authenticated SQL Injection
Patched in Version:Â No known fix
Severity Score: Medium
Embed Youtube Manager
Plugin:Â Embed Youtube VideoÂ
Vulnerability: Authenticated SQL Injection
Patched in Version:Â No known fix
Severity Score: Medium
Quiz and Survey Master
Plugin:Â Quiz And Survey MasterÂ
Vulnerability: Reflected Cross-Site Scripting
Patched in Version: 7.1.14
Severity Score: High
Book Appointment Online
Plugin:Â Book appointment Online
Vulnerability: Authenticated Stored Cross-Site Scripting (XSS)
Patched in Version: 1.39
Severity Score: Low
miniOrange's Google Authenticator
Plugin: miniOrange’s Google Authenticator
Vulnerability: Reflected Cross-Site Scripting
Patched in Version: 5.4.40
Severity Score: High
Two Factor Authentication
Plugin:Â Two Factor Authentication
Vulnerability: Reflected Cross-Site Scripting
Patched in Version: 1.0.8
Severity Score: High
Custom Post View Generator
Plugin:Â Custom Post View GeneratorÂ
Vulnerability: Reflected Cross-Site Scripting
Patched in Version:Â No known fix
Severity Score: High
FV Flowplayer Video Player
Plugin:Â FV Flowplayer Video PlayerÂ
Vulnerability: Reflected Cross-Site Scripting
Patched in Version: 7.5.3.727
Severity Score: High
Picture Gallery
Plugin: Picture Gallery Â
Vulnerability: Authenticated Stored XSS
Patched in Version:Â No known fix
Severity Score: Low
Software License Manager
Plugin:Â Software License ManagerÂ
Vulnerability: Reflected Cross-Site Scripting
Patched in Version: 4.4.8 (Plugin Closed)
Severity Score: High
Per Page Add to Head
Plugin:Â Per Page Add to Head
Vulnerability: Authenticated Stored XSS
Patched in Version:Â No known fix
Severity Score: Low
Securimage-WP-Fixed
Plugin:Â Securimage-WP-Fixed
Vulnerability: Reflected Cross-Site Scripting (XSS)
Patched in Version:Â No known fix
Severity Score: High
Image Export
Plugin:Â Image Export
Vulnerability: Directory Traversal
Patched in Version:Â No known fix
Severity Score: Critical
Content text slider on post
Plugin:Â Content text slider on postÂ
Vulnerability: Authenticated Stored Cross-Site Scripting (XSS)
Patched in Version: 6.9
Severity Score: Medium
Contact Form Generator
Plugin:Â Contact Form GeneratorÂ
Vulnerability: Multiple Cross-Site Request Forgery (CSRF)
Patched in Version:Â No known fix
Severity Score: High
Calendar_plugin
Plugin:Â Calendar_pluginÂ
Vulnerability: Reflected Cross-Site Scripting
Patched in Version:Â No known fix
Severity Score: High
Add Sidebar
Plugin:Â Add SidebarÂ
Vulnerability: Reflected Cross-Site Scripting
Patched in Version:Â No known fix
Severity Score: High
WP SEO Tags
Plugin: WP SEO Tags Â
Vulnerability: Reflected Cross-Site Scripting
Patched in Version:Â No known fix
Severity Score: High
Moova for WooCommerce
Plugin:Â Moova for WooCommerceÂ
Vulnerability: Reflected Cross-Site Scripting
Patched in Version:Â No known fix
Severity Score: High
jQuery Tagline Rotator
Plugin:Â jQuery Tagline Rotator
Vulnerability: Reflected Cross-Site Scripting
Patched in Version:Â No known fix
Severity Score: High
Plugmatter Pricing Table Lite
Plugin:Â Plugmatter Pricing Table Lite
Vulnerability: Reflected Cross-Site Scripting
Patched in Version:Â No known fix
Severity Score: High
Simple Popup Newsletter
Plugin:Â Simple Popup Newsletter
Vulnerability: Reflected Cross-Site Scripting
Patched in Version:Â No known fix
Severity Score: High
TypoFR
Plugin:Â TypoFRÂ
Vulnerability: Reflected Cross-Site Scripting
Patched in Version:Â No known fix
Severity Score: High
WP Songbook
Plugin:Â WP SongbookÂ
Vulnerability: Reflected Cross-Site Scripting
Patched in Version:Â No known fix
Severity Score: High
Custom Post Type Relations
Plugin:Â Custom Post Type Relations
Vulnerability: Reflected Cross-Site Scripting
Patched in Version:Â No known fix
Severity Score: High
2Way VideoCalls and Random Chat
Plugin:Â 2Way VideoCalls and Random Chat
Vulnerability: Reflected Cross-Site Scripting
Patched in Version:Â No known fix
Severity Score: High
WP Fountain
Plugin:Â WP FountainÂ
Vulnerability: Reflected Cross-Site Scripting
Patched in Version:Â No known fix
Severity Score: High
Media Usage
Plugin:Â Media UsageÂ
Vulnerability: Reflected Cross-Site Scripting
Patched in Version:Â No known fix
Severity Score: High
Scribble Maps
Plugin:Â Scribble Maps
Vulnerability: Reflected Cross-Site Scripting
Patched in Version:Â No known fix
Severity Score: High
Multiplayer Games
Plugin:Â Multiplayer Games
Vulnerability: Reflected Cross-Site Scripting
Patched in Version:Â No known fix
Severity Score: High
Skaut Bazar
Plugin:Â Skaut bazar
Vulnerability: Reflected Cross-Site Scripting
Patched in Version:Â No known fix
Severity Score: High
Smart Email Alerts
Plugin:Â Smart Email Alerts
Vulnerability: Reflected Cross-Site Scripting
Patched in Version:Â No known fix
Severity Score: High
Simple Behance Portfolio
Plugin:Â Simple Behance Portfolio
Vulnerability: Reflected Cross-Site Scripting
Patched in Version:Â No known fix
Severity Score: High