Vulnerability Name CVE Severity
Arbitrary local file read via file upload
ColdFusion 8 FCKEditor file upload vulnerability CVE-2009-2265
ColdFusion Arbitrary File Upload CVE-2018-15961
Cross-site Scripting via File Upload
DotCMS unrestricted file upload (CVE-2022-26352) CVE-2022-26352
Dragonfly Arbitrary File Read/Write (CVE-2021-33564) CVE-2021-33564
Ektron CMS multiple vulnerabilities
FCKeditor arbitrary file upload CVE-2009-2265
File upload XSS (Java applet)
Fortinet FortiNAC RCE via arbitrary file upload CVE-2022-39952
Joomla! Core 1.5.12 Arbitrary File Upload (1.5.12) CVE-2011-4906 CVE-2011-4908
Joomla! Core 1.5.x Arbitrary File Upload (1.5.0 - 1.5.15) CVE-2010-1433
Joomla! Core 2.5.x Arbitrary File Upload (2.5.0 - 2.5.13) CVE-2013-5576
Joomla! Core 3.x.x Arbitrary File Upload (3.0.0 - 3.1.4) CVE-2013-5576
Joomla! Core Arbitrary File Upload (2.5.0 - 3.8.7) CVE-2018-11322
jQuery File Upload unauthenticated arbitrary file upload CVE-2018-9206
PHP unspecified remote arbitrary file upload vulnerability CVE-2004-0959
Telerik Web UI Insecure Direct Object Reference CVE-2017-11357
Telerik Web UI Unrestricted File Upload (CVE-2014-2217) CVE-2014-2217
Telerik Web UI Unrestricted File Upload (CVE-2017-11317) CVE-2017-11317
Unrestricted File Upload
WordPress MailPoet Newsletters (wysija-newsletters) unauthenticated file upload
WordPress OptimizePress unrestricted file upload CVE-2013-7102
WordPress Plugin 1 Flash Gallery 'upload.php' Arbitrary File Upload (1.5.7)
WordPress Plugin 3D Banner Rotator 'upload.php' Arbitrary File Upload (2.1)
WordPress Plugin 3D Flick Slideshow 'upload.php' Arbitrary File Upload (2.1)
WordPress Plugin 3DPrint Lite Arbitrary File Upload (1.9.1.4)
WordPress Plugin 3D Product configurator for WooCommerce Arbitrary File Upload (1.5.531)
WordPress Plugin 360 Product Rotation Arbitrary File Upload (1.2.4)
WordPress Plugin A. Gallery TimThumb Arbitrary File Upload (0.9rev378511) CVE-2011-4106
WordPress Plugin Access Demo Importer Arbitrary File Upload (1.0.6) CVE-2021-39317
WordPress Plugin AccessPress Anonymous Post Pro Arbitrary File Upload (3.1.9) CVE-2017-16949
WordPress Plugin ACF Frontend display Arbitrary File Upload (2.0.5) CVE-2015-9479
WordPress Plugin Adblock Blocker Arbitrary File Upload (0.0.1)
WordPress Plugin Adning Advertising-Professional, All In One Ad Manager for Wordpress Arbitrary File Upload (1.5.5)
WordPress Plugin AdSanity Arbitrary File Upload (1.8.1)
WordPress Plugin Advanced AJAX Page Loader Arbitrary File Upload (2.7.6)
WordPress Plugin Advanced Contact form 7 DB Arbitrary File Upload (1.4.4)
WordPress Plugin Advanced Custom Fields (ACF) Arbitrary File Upload (5.12.2) CVE-2022-2594
WordPress Plugin Advanced Custom Fields PRO Arbitrary File Upload (5.12.2) CVE-2022-2594
WordPress Plugin AIT Themes-CSV Import/Export Arbitrary File Upload (3.0.3)
WordPress Plugin Ajax Multi Upload 'upload.php' Arbitrary File Upload (1.1)
WordPress Plugin Akeeba Backup CORE for WordPress Arbitrary File Upload (1.1.3) CVE-2014-7228
WordPress Plugin All-in-One WP Migration Arbitrary File Upload (7.40) CVE-2021-24216
WordPress Plugin All Post Contact Form Arbitrary File Upload (1.1.4)
WordPress Plugin AllWebMenus WordPress Menu 'actions.php' Arbitrary File Upload (1.1.8) CVE-2012-1010 CVE-2012-1011
WordPress Plugin Analytics-Gtag Restricted File Upload (1.8.1)
WordPress Plugin Annonces 'theme.php' Arbitrary File Upload (1.2.0.1)
WordPress Plugin Another WordPress Classifieds Arbitrary File Upload (3.3.2)
WordPress Plugin ArcadePress 'upload.php' Arbitrary File Upload (0.65)
WordPress Plugin Art-Picture-Gallery Arbitrary File Upload (1.2.9) CVE-2018-9206
WordPress Plugin Asset Manager 'upload.php' Arbitrary File Upload (0.3)
WordPress Plugin Attachment Manager Arbitrary File Upload (2.1.1)
WordPress Plugin Auctions 'upload.php' Arbitrary File Upload (2.0.1.3)
WordPress Plugin Audio Record Arbitrary File Upload (1.0)
WordPress Plugin Auto Attachments TimThumb Arbitrary File Upload (0.3) CVE-2011-4106
WordPress Plugin Aviary Image Editor Add-on For Gravity Forms Arbitrary File Upload (3.0) CVE-2015-4455
WordPress Plugin Baggage Freight Shipping Australia Arbitrary File Upload (0.1.0)
WordPress Plugin BePro Listings Arbitrary File Upload (2.2.0020)
WordPress Plugin Blaze Slideshow 'upload.php' Arbitrary File Upload (2.4)
WordPress Plugin Blaze Slideshow Arbitrary File Upload (2.7)
WordPress Plugin Bliss Gallery 'upload.php' Arbitrary File Upload (2.1)
WordPress Plugin Bliss Gallery Arbitrary File Upload (2.3)
WordPress Plugin Buddy Share It Allusers FB YR Arbitrary File Upload (3.2.8)
WordPress Plugin Business Hours Pro Arbitrary File Upload (5.5.0) CVE-2021-24240
WordPress Plugin CAC Featured Content TimThumb Arbitrary File Upload (0.8) CVE-2011-4106
WordPress Plugin Carousel slideshow 'upload.php' Arbitrary File Upload (3.9)
WordPress Plugin Carousel slideshow Arbitrary File Upload (3.11)
WordPress Plugin Catch Themes Demo Import Arbitrary File Upload (1.7) CVE-2021-39352
WordPress Plugin Category Grid View Gallery TimThumb Arbitrary File Upload (0.1.1) CVE-2011-4106
WordPress Plugin Category List Portfolio Page TimThumb Arbitrary File Upload (1.2.3) CVE-2011-4106
WordPress Plugin Catpro Gallery Arbitrary File Upload (3.8)
WordPress Plugin cformsII Arbitrary File Upload (14.7) CVE-2014-9473
WordPress Plugin ChenPress Arbitrary File Upload (3.0)
WordPress Plugin ChikunCount Arbitrary File Upload (1.3)
WordPress Plugin Church Admin Arbitrary File Upload (1.2530)
WordPress Plugin Cimy User Extra Fields Arbitrary File Upload (2.3.7)
WordPress Plugin classyfrieds Arbitrary File Upload (3.8) CVE-2021-24253
WordPress Plugin Clipboard Images Arbitrary File Upload (0.3)
WordPress Plugin CM Download Manager Arbitrary File Upload (2.8.5) CVE-2022-3076
WordPress Plugin Cms Pack TimThumb Arbitrary File Upload (1.3) CVE-2011-4106
WordPress Plugin College publisher Import Arbitrary File Upload (0.1) CVE-2021-24254
WordPress Plugin Comment Extra Fields 'cef-upload.php' Arbitrary File Upload (1.7)
WordPress Plugin Comments-wpDiscuz Arbitrary File Upload (7.0.4) CVE-2020-24186
WordPress Plugin Complete Gallery Manager for WordPress Arbitrary File Upload (3.3.3) CVE-2013-5962
WordPress Plugin Contact Form 7 Arbitrary File Upload (3.5.2)
WordPress Plugin Contact Form 7 Arbitrary File Upload (3.5.3)
WordPress Plugin Contact Form 7 Arbitrary File Upload (5.3.1) CVE-2020-35489
WordPress Plugin Contus HD FLV Player 'uploadVideo.php' Arbitrary File Upload (1.7)
WordPress Plugin CONTUS VBLOG-Video Blogging 'save.php' Arbitrary File Upload (1.0)
WordPress Plugin Convert Docx2post Arbitrary File Upload (1.4)
WordPress Plugin CopySafe PDF Protection Arbitrary File Upload (0.6)
WordPress Plugin Creative Contact Form-The Best WordPress Contact Form Builder Arbitrary File Upload (0.9.7) CVE-2014-7969
WordPress Plugin Crelly Slider Arbitrary File Upload (1.3.4) CVE-2019-15866
WordPress Plugin Csv2WPeC Coupon Arbitrary File Upload (1.1) CVE-2015-1000013
WordPress Plugin Custom Background 'uploadify.php' Arbitrary File Upload (1.01)
WordPress Plugin Custom Content Type Manager 'upload_form.php' Arbitrary File Upload (0.9.5.13)
WordPress Plugin DB Toolkit 'uploadify.php' Arbitrary File Upload (0.1.10)
WordPress Plugin Dean's FCKEditor with pwwang's code Arbitrary File Upload (1.0.0)
WordPress Plugin Delete All Comments Arbitrary File Upload (2.0)
WordPress Plugin Developer Tools Arbitrary File Upload (1.1.4)
WordPress Plugin Divi Builder Arbitrary File Upload (4.5.2) CVE-2020-35945
WordPress Plugin DOP Slider Arbitrary File Upload (1.0)
WordPress Plugin Download from files Arbitrary File Upload (1.48)
WordPress Plugin Downloads Manager 'upload.php' Arbitrary File Upload (0.2) CVE-2008-3362
WordPress Plugin Downloads Manager Arbitrary File Upload (1.0)
WordPress Plugin DP Thumbnail TimThumb Arbitrary File Upload (1.0) CVE-2011-4106
WordPress Plugin Drag & Drop File Uploader 'dnd-upload.php' Arbitrary File Upload (0.1)
WordPress Plugin Drag and Drop Multiple File Upload-Contact Form 7 Arbitrary File Upload (1.3.3.2) CVE-2020-12800
WordPress Plugin Drag and Drop Multiple File Upload-Contact Form 7 Arbitrary File Upload (1.3.5.4) CVE-2020-24389
WordPress Plugin Drag and Drop Multiple File Upload-Contact Form 7 Cross-Site Scripting (1.3.6.2) CVE-2022-0595
WordPress Plugin Drag and Drop Multiple File Upload-Contact Form 7 Security Bypass (1.3.6.4) CVE-2022-3282
WordPress Plugin DukaPress TimThumb Arbitrary File Upload (2.3.2) CVE-2011-4106
WordPress Plugin Easy Comment Uploads 'upload.php' Arbitrary File Upload (0.61)
WordPress Plugin Easy Form Builder Arbitrary File Upload (1.0) CVE-2021-24224
WordPress Plugin ecSTATic Arbitrary File Upload (0.9933)
WordPress Plugin EditorMonkey Remote File Upload (2.5)
WordPress Plugin Elementor Pro Arbitrary File Upload (2.9.3) CVE-2020-13126
WordPress Plugin Elementor Website Builder Arbitrary File Upload (2.7.4) CVE-2020-7055
WordPress Plugin Elementor Website Builder Arbitrary File Upload (3.6.2) CVE-2022-1329
WordPress Plugin Enable Media Replace Arbitrary File Upload (4.0.1) CVE-2023-0255
WordPress Plugin Enable Media Replace SQL Injection and Arbitrary File Upload Vulnerabilities (2.3)
WordPress Plugin Estatik Real Estate Arbitrary File Upload (2.2.5)
WordPress Plugin Estatik Real Estate Arbitrary File Upload (2.3.0)
WordPress Plugin Evarisk 'uploadPhotoApres.php' Arbitrary File Upload (5.1.5.4)
WordPress Plugin Event Banner Arbitrary File Upload (1.3) CVE-2021-24252
WordPress Plugin Events Made Easy Arbitrary File Upload (2.1.1)
WordPress Plugin Export any WordPress data to XML/CSV Arbitrary File Upload (0.9)
WordPress Plugin Extend WordPress-Various Shortcodes & Widgets TimThumb Arbitrary File Upload (2.1.01) CVE-2011-4106
WordPress Plugin External Media Arbitrary File Upload (1.0.33) CVE-2021-24311
WordPress Plugin Fancy Gallery 'image-upload.php' Arbitrary File Upload (1.2.4)
WordPress Plugin Fancy Product Designer-WooCommerce Arbitrary File Upload (4.5.1)
WordPress Plugin Fancy Product Designer-WooCommerce Arbitrary File Upload (4.6.8) CVE-2021-24370
WordPress Plugin Fast Image Adder Arbitrary File Upload (1.1) CVE-2015-1000001
WordPress Plugin FCChat Widget 'Upload.php' Arbitrary File Upload (2.2.13.1) CVE-2012-3578
WordPress Plugin File Manager Arbitrary File Upload (6.8) CVE-2020-25213
WordPress Plugin File Uploader Arbitrary File Upload (1.1)
WordPress Plugin flickr picture backup Arbitrary File Upload (0.7) CVE-2017-1002016
WordPress Plugin Flip Book 'php.php' Arbitrary File Upload (1.0)
WordPress Plugin Font Uploader 'font-upload.php' Arbitrary File Upload (1.2.4) CVE-2012-3814
WordPress Plugin Football Pool Arbitrary File Upload (2.6.3)
WordPress Plugin Formidable Forms-Contact Form, Survey, Quiz, Calculator & Custom Form Builder Arbitrary File Upload (1.06.02)
WordPress Plugin FoxyPress 'uploadify.php' Arbitrary File Upload (0.4.2.1)
WordPress Plugin Free Booking for Hotels, Restaurant and Car Rental-eaSYNC Arbitrary File Upload (1.1.15) CVE-2022-1952
WordPress Plugin Front-end Editor 'upload.php' Arbitrary File Upload (2.2.1)
WordPress Plugin Frontend File Manager Arbitrary File Upload (1.8)
WordPress Plugin Frontend File Manager Arbitrary File Upload (3.3) CVE-2014-5324
WordPress Plugin Frontend File Manager Arbitrary File Upload (3.7)
WordPress Plugin Frontend File Manager Arbitrary File Upload (3.9)
WordPress Plugin Front End Upload 'upload.php' Arbitrary File Upload (0.5.3)
WordPress Plugin Front End Upload Arbitrary File Upload (0.5.4.4)
WordPress Plugin Front File Manager 'upload.php' Arbitrary File Upload (0.1)
WordPress Plugin Gallery by BestWebSoft 'php.php' Arbitrary File Upload (3.06)
WordPress Plugin Genesis Simple Defaults Arbitrary File Upload (1.0.0)
WordPress Plugin Gmedia Photo Gallery Arbitrary File Upload (1.2.1)
WordPress Plugin GoUrl Bitcoin Payment Gateway & Paid Downloads & Membership Arbitrary File Upload (1.4.14)
WordPress Plugin Grapefile File Sharing 'grapeupload.php' Arbitrary File Upload (1.1)
WordPress Plugin Gravity Forms Advanced File Uploader Unspecified Vulnerability (1.18)
WordPress Plugin Gravity Forms Arbitrary File Upload (1.8.19)
WordPress Plugin Gravity Upload Ajax Arbitrary File Upload (1.1) CVE-2014-4972
WordPress Plugin HDInvoice-Create Invoices Arbitrary File Upload (0.1)
WordPress Plugin Helios Solutions Brand Logo Slider Arbitrary File Upload (2.1)
WordPress Plugin Homepage SlideShow 'upload.php' Arbitrary File Upload (2.0)
WordPress Plugin Homepage SlideShow Arbitrary File Upload (2.3)
WordPress Plugin How to Create an App for Android iPhone Easytouch Arbitrary File Upload (3.0) CVE-2017-1002000
WordPress Plugin HTML5 AV Manager for WordPress 'custom.php' Arbitrary File Upload (0.2.7)
WordPress Plugin Hungred Post Thumbnail 'hpt_file_upload.php' Arbitrary File Upload (2.1.9)
WordPress Plugin IGIT Posts Slider Widget TimThumb Arbitrary File Upload (1.1) CVE-2011-4106
WordPress Plugin IGIT Related Posts With Thumb Image After Posts TimThumb Arbitrary File Upload (3.9.7) CVE-2011-4106
WordPress Plugin Image Gallery with Slideshow 'upload-file.php' Arbitrary File Upload (1.5)
WordPress Plugin Imagements Arbitrary File Upload (1.2.5) CVE-2021-24236
WordPress Plugin Image News slider 'upload.php' Arbitrary File Upload (3.3) CVE-2012-4327
WordPress Plugin Image News slider Arbitrary File Upload (3.5)
WordPress Plugin Import all XML, CSV & TXT into WordPress Arbitrary File Upload (6.4)
WordPress Plugin Import any XML or CSV File to WordPress Arbitrary File Upload (3.2.3)
WordPress Plugin Import any XML or CSV File to WordPress Arbitrary File Upload (3.6.7) CVE-2022-1565
WordPress Plugin Import any XML or CSV File to WordPress Pro Arbitrary File Upload (4.1.0)
WordPress Plugin InBoundio Marketing Arbitrary File Upload (2.0.3)
WordPress Plugin Infusionsoft Gravity Forms Add-on Arbitrary File Upload (1.5.10) CVE-2014-6446
WordPress Plugin Instinct e-Commerce Arbitrary File Upload (3.4) CVE-2008-6811
WordPress Plugin Invit0r 'ofc_upload_image.php' Arbitrary File Upload (0.22)
WordPress Plugin IP Logger Arbitrary File Upload (3.1)
WordPress Plugin iSlidex TimThumb Arbitrary File Upload (2.7) CVE-2011-4106
WordPress Plugin Jssor Slider Arbitrary File Upload (1.3)
WordPress Plugin Katalyst TimThumb 'timthumb.php' Arbitrary File Upload (1.0)
WordPress Plugin Kino Gallery TimThumb Arbitrary File Upload (1.0) CVE-2011-4106
WordPress Plugin Kish Guest Posting 'uploadify.php' Arbitrary File Upload (1.2) CVE-2012-1125 CVE-2012-5318
WordPress Plugin Lazy SEO Arbitrary File Upload (1.3.2) CVE-2013-5961
WordPress Plugin LB Mixed Slideshow 'upload.php' Arbitrary File Upload (1.0)
WordPress Plugin LearnDash LMS Arbitrary File Upload (2.5.3) CVE-2018-25019
WordPress Plugin Lim4wp 'upload.php' Arbitrary File Upload (1.1.1)
WordPress Plugin LISL Last-Image Slider TimThumb Arbitrary File Upload (1.0) CVE-2011-4106
WordPress Plugin Listing, Classified Ads & Business Directory-uListing Arbitrary File Upload (1.2.1)
WordPress Plugin LOGOSWARE SUITE Uploader Arbitrary File Upload (1.1.6)
WordPress Plugin MAC PHOTO GALLERY 'upload-file.php' Arbitrary File Upload (2.7)
WordPress Plugin Magic Fields Arbitrary File Upload (1.6.3.2)
WordPress Plugin Magn WP Drag and Drop Upload Arbitrary File Upload (1.1.4)
WordPress Plugin MailCWP Arbitrary File Upload (1.99) CVE-2015-1000000
WordPress Plugin MailCWP Arbitrary File Upload (1.100) CVE-2016-1000156
WordPress Plugin MailPoet Newsletters (Previous) Arbitrary File Upload (2.6.7) CVE-2014-4725 CVE-2014-4726
WordPress Plugin MapSVG Lite Arbitrary File Upload (4.0.5)
WordPress Plugin MapSVG Lite Arbitrary File Upload (4.2.4)
WordPress Plugin Matrix Gallery 'upload.php' Arbitrary File Upload (2.1)
WordPress Plugin MediaRSS external gallery TimThumb Arbitrary File Upload (0.1) CVE-2011-4106
WordPress Plugin Membership For WooCommerce-Add Simple Membership Plans, Recurring Revenue, Product Tags & Send Emails To Members with WooCommerce Membership Arbitrary File Upload (2.1.6) CVE-2022-4395
WordPress Plugin Meta Box-WordPress Custom Fields Framework Arbitrary File Upload (4.16.1) CVE-2019-14794
WordPress Plugin MiniMax-Page Layout Builder Arbitrary File Upload (1.7.1)
WordPress Plugin MM Forms Community 'doajaxfileupload.php' Arbitrary File Upload (2.2.6) CVE-2012-3574
WordPress Plugin Mobile App Native (Make a mobile app-Native iPhone & Android Mobile App FREE) Arbitrary File Upload (3.0) CVE-2017-6104
WordPress Plugin Modern WPBakery Page Builder Addons (formerly Visual Composer)-Add-ons Arbitrary File Upload (3.0.1) CVE-2021-24284
WordPress Plugin Monsters Editor for WP Super Edit Arbitrary File Upload (1.1)
WordPress Plugin MStore API Arbitrary File Upload (3.4.4)
WordPress Plugin N-Media Post Front-end Form Arbitrary File Upload (1.0)
WordPress Plugin N-Media Website Contact Form with File Upload Arbitrary File Upload (1.3.4)
WordPress Plugin N-Media Website Contact Form with File Upload Arbitrary File Upload (2.1)
WordPress Plugin N-Media Website Contact Form with File Upload Local File Inclusion (1.5)
WordPress Plugin N5 Upload Form Arbitrary File Upload (1.0) CVE-2021-24223
WordPress Plugin NextGEN Gallery-WordPress Gallery Arbitrary File Upload (1.9.12) CVE-2013-3684
WordPress Plugin NextGEN Gallery-WordPress Gallery Arbitrary File Upload (2.1.10)
WordPress Plugin Ninja Forms with File Uploads Extension Arbitrary File Upload (3.3.0) CVE-2022-0888
WordPress Plugin Ninja Forms with File Uploads Extension Cross-Site Scripting (3.3.12) CVE-2022-0889
WordPress Plugin Ninja Forms with File Uploads Extension Multiple Vulnerabilities (3.0.22) CVE-2019-10869
WordPress Plugin Nmedia WordPress Member Conversation 'doupload.php' Arbitrary File Upload (1.3) CVE-2012-3577
WordPress Plugin Omni Secure Files 'upload.php' Arbitrary File Upload (0.1.13)
WordPress Plugin Page Builder:KingComposer-Free Drag and Drop page builder by King-Theme Arbitrary File Upload (2.7.4)
WordPress Plugin PDW Media File Browser 'upload.php' Arbitrary File Upload (1.1)
WordPress Plugin Peugeot Music Arbitrary File Upload (1.0)
WordPress Plugin Photo Gallery by 10Web-Mobile-Friendly Image Gallery Arbitrary File Upload (1.2.5) CVE-2014-9312
WordPress Plugin PhotoSmash Galleries Arbitrary File Upload (1.0.7)
WordPress Plugin PHP Analytics Arbitrary File Upload (1.0.0.2)
WordPress Plugin PHP Event Calendar for WordPress Arbitrary File Upload (1.6)
WordPress Plugin PICA Photo Gallery 'picaPhotosResize.php' Arbitrary File Upload (1.0)
WordPress Plugin Picturesurf Gallery 'upload.php' Arbitrary File Upload (1.2)
WordPress Plugin PitchPrint Arbitrary File Upload (7.1.1)
WordPress Plugin PitchPrint Arbitrary File Upload (7.2.1)
WordPress Plugin PollDeep Arbitrary File Upload (1.2)
WordPress Plugin PostmagThemes Demo Import Arbitrary File Upload (1.0.7) CVE-2022-1540
WordPress Plugin Powerplay Gallery 'upload.php' Arbitrary File Upload (3.2)
WordPress Plugin PowerPress Podcasting by Blubrry Arbitrary File Upload (8.3.7) CVE-2021-24123
WordPress Plugin Power Zoomer Arbitrary File Upload (1.2)
WordPress Plugin Product Addons & Fields for WooCommerce Arbitrary File Upload (1.1)
WordPress Plugin Product Catalog Arbitrary File Upload (3.1.1)
WordPress Plugin Product Catalog Arbitrary File Upload (3.8.6)
WordPress Plugin RBX Gallery 'uploader.php' Arbitrary File Upload (2.1) CVE-2012-3575
WordPress Plugin Really Easy Slider TimThumb Arbitrary File Upload (0.1) CVE-2011-4106
WordPress Plugin Real WYSIWYG 'insert_file.php' Arbitrary File Upload (0.0.2)
WordPress Plugin Recip.ly 'uploadImage.php' Arbitrary File Upload (1.1.7)
WordPress Plugin ReFlex Gallery 'php.php' Arbitrary File Upload (1.4.6)
WordPress Plugin ReFlex Gallery Arbitrary File Upload (3.1.3) CVE-2015-4133
WordPress Plugin Rekt Slideshow TimThumb Arbitrary File Upload (1.0.5) CVE-2011-4106
WordPress Plugin Remote Upload Arbitrary File Upload (1.2.1)
WordPress Plugin Rent-A-Car TimThumb Arbitrary File Upload (1.0) CVE-2011-4106
WordPress Plugin Resume Submissions & Job Postings Arbitrary File Upload (2.5.1)
WordPress Plugin Resume Submissions & Job Postings Arbitrary File Upload (2.5.3)
WordPress Plugin Rich Widget Arbitrary File Upload (0.2.4)
WordPress Plugin Royal Gallery 'upload.php' Arbitrary File Upload (2.1)
WordPress Plugin SB Uploader Arbitrary File Upload (3.2)
WordPress Plugin SB Uploader Arbitrary File Upload (4.1)
WordPress Plugin Secure File Manager Arbitrary File Upload (2.9.3)
WordPress Plugin Seo Spy Arbitrary File Upload (2.6)
WordPress Plugin SFBrowser 'sfbrowser.php' Arbitrary File Upload (1.4.5)
WordPress Plugin Shared Files-Easy Download Manager and File Sharing with Frontend File Upload Cross-Site Scripting (1.6.56) CVE-2021-24736
WordPress Plugin Shared Files-Easy Download Manager and File Sharing with Frontend File Upload Cross-Site Scripting (1.6.60) CVE-2021-24856
WordPress Plugin Shipping Servientrega Woocommerce Arbitrary File Upload (2.0.3)
WordPress Plugin Shopp Arbitrary File Upload (1.4) CVE-2021-24493
WordPress Plugin Shopping Cart & eCommerce Store Arbitrary File Upload (3.0.8) CVE-2014-9308
WordPress Plugin Shopping Cart Multiple SQL Injection and Arbitrary File Upload Vulnerabilities (8.1.14)
WordPress Plugin Showbiz Pro Responsive Teaser Arbitrary File Upload (1.7.1)
WordPress Plugin Simple:Press-WordPress Forum Arbitrary File Upload (6.6.0)
WordPress Plugin Simple:Press Security Bypass and Arbitrary File Upload Vulnerabilities (4.1.2)
WordPress Plugin Simple Ads Manager Arbitrary File Upload (2.5.94) CVE-2015-2825
WordPress Plugin Simple Dropbox Upload Arbitrary File Upload (1.8.8) CVE-2013-5963
WordPress Plugin Simple File List Arbitrary File Upload (4.2.2)
WordPress Plugin Simple Schools Staff Directory Arbitrary File Upload (1.1) CVE-2021-24663
WordPress Plugin Simple Slide Show TimThumb Arbitrary File Upload (1.0)
WordPress Plugin Slider Revolution Responsive Arbitrary File Upload (3.0.95)
WordPress Plugin Slideshow Gallery LITE Arbitrary File Upload (1.4.6) CVE-2014-5460
WordPress Plugin Slideshow Pro 'upload.php' Arbitrary File Upload (2.1)
WordPress Plugin Slideshow Pro Arbitrary File Upload (2.4)
WordPress Plugin Smart Slideshow 'upload.php' Arbitrary File Upload (2.1)
WordPress Plugin Smart Slideshow Arbitrary File Upload (2.4)
WordPress Plugin Social Networking & E-commerce Arbitrary File Upload (0.0.32)
WordPress Plugin Sooqr Search Restricted File Upload (1.1.4)
WordPress Plugin SpamTask Arbitrary File Upload (1.3.6)
WordPress Plugin Special Text Boxes Arbitrary File Upload (5.1.90)
WordPress Plugin SP Project & Document Manager Arbitrary File Upload (4.21) CVE-2021-24347
WordPress Plugin SP Project & Document Manager Arbitrary File Upload (4.22)
WordPress Plugin Super Forms-Drag & Drop Form Builder Arbitrary File Upload (4.9.700)
WordPress Plugin Super Interactive Maps for WordPress Arbitrary File Upload (1.9)
WordPress Plugin Super Logos Showcase for WordPress Arbitrary File Upload (2.2)
WordPress Plugin Super Store Finder for WordPress (Google Maps Store Locator) Arbitrary File Upload (6.1)
WordPress Plugin SupportCandy Arbitrary File Upload (2.0.0) CVE-2019-11223
WordPress Plugin Tajer Arbitrary File Upload (1.0.5) CVE-2018-9206
WordPress Plugin Tatsu Arbitrary File Upload (3.3.11) CVE-2021-25094
WordPress Plugin TDO Mini Forms Arbitrary File Upload (0.13.9)
WordPress Plugin Templatic Tevolution Arbitrary File Upload (2.3.6)
WordPress Plugin Theme Demo Import Arbitrary File Upload (1.1.0) CVE-2022-1538
WordPress Plugin The Piecemaker 'php.php' Arbitrary File Upload (1.1)
WordPress Plugin Thumbnail carousel slider Arbitrary File Upload (1.0)
WordPress Plugin Top Quark Architecture 'script.php' Arbitrary File Upload (2.1.0)
WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Arbitrary File Upload (1.0.83)
WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Arbitrary File Upload (2.0.21)
WordPress Plugin Uploader 'uploadify.php' Arbitrary File Upload (1.0.4)
WordPress Plugin Uploader Cross-Site Scripting and Arbitrary File Upload Vulnerabilities (1.0.4) CVE-2013-2287 CVE-2013-2288
WordPress Plugin Uploadify Remote File Upload (1.0)
WordPress Plugin User Avatar TimThumb Arbitrary File Upload (1.3.7) CVE-2011-4106
WordPress Plugin user files Arbitrary File Upload (2.4.2)
WordPress Plugin User Meta 'uploader.php' Arbitrary File Upload (1.1.1)
WordPress Plugin User Photo 'user-photo.php' Arbitrary File Upload (0.9.4) CVE-2013-1916
WordPress Plugin User Registration-Custom Registration Form, Login Form And User Profile Arbitrary File Upload (3.0.2) CVE-2023-3342
WordPress Plugin User Submitted Posts Arbitrary File Upload (20190426)
WordPress Plugin Users Ultra Membership Arbitrary File Upload (1.5.58)
WordPress Plugin Vertical SlideShow 'upload.php' Arbitrary File Upload (2.1)
WordPress Plugin Vertical SlideShow Arbitrary File Upload (2.3)
WordPress Plugin Verve Meta Boxes TimThumb Arbitrary File Upload (1.2.8) CVE-2011-4106
WordPress Plugin VIDEO GALLERY 'upload1.php' Arbitrary File Upload (1.3)
WordPress Plugin Video Gallery /w YouTube, Vimeo Arbitrary File Upload (8.48)
WordPress Plugin VideoWhisper Video Conference Integration 'vw_upload.php' Arbitrary File Upload (4.51)
WordPress Plugin VideoWhisper Video Conference Integration Arbitrary File Upload (4.91.8) CVE-2015-9271
WordPress Plugin VideoWhisper Video Presentation 'vw_upload.php' Arbitrary File Upload (3.17)
WordPress Plugin VideoWhisper Video Presentation Arbitrary File Upload (3.31.17) CVE-2015-9272
WordPress Plugin VK Gallery TimThumb Arbitrary File Upload (1.1.0) CVE-2011-4106
WordPress Plugin Vmax Project Manager Arbitrary File Upload (1.1)
WordPress Plugin vSlider Multi Image Slider for WordPress Arbitrary File Upload (4.1.2)
WordPress Plugin Wallable-Social Networking Arbitrary File Upload (1.1)
WordPress Plugin Webapp builder (Free mobile apps native iPhone iOS & Android Winphone mobile apps) Arbitrary File Upload (2.0) CVE-2017-1002002
WordPress Plugin Web Tripwire Arbitrary File Upload (0.1.1)
WordPress Plugin Windows Desktop and iPhone Photo Uploader Arbitrary File Upload (1.8)
WordPress Plugin WooCommerce Catalog Enquiry Arbitrary File Upload (3.0.0)
WordPress Plugin WooCommerce Checkout Manager Arbitrary File Upload (4.2.6)
WordPress Plugin WooCommerce Help Scout Arbitrary File Upload (2.9) CVE-2021-24212
WordPress Plugin Woocommerce Product Designer Arbitrary File Upload (3.0.3)
WordPress Plugin WooCommerce Upload Files Arbitrary File Upload (59.3) CVE-2021-24171
WordPress Plugin Woopra Analytics Arbitrary File Upload (1.4.3.1) CVE-2009-4140
WordPress Plugin Word of the day Arbitrary File Upload (1.0)
WordPress Plugin WordPress Backup and Migrate-Backup Guard Arbitrary File Upload (1.0.2)
WordPress Plugin WordPress Backup and Migrate-Backup Guard Arbitrary File Upload (1.5.9) CVE-2021-24155
WordPress Plugin WordPress Book List Arbitrary File Upload (5.0.11)
WordPress Plugin WordPress Download Manager Arbitrary File Upload (2.8.97)
WordPress Plugin WordPress File Upload Arbitrary File Upload (3.4.0)
WordPress Plugin WordPress File Upload Arbitrary File Upload (3.8.5)
WordPress Plugin WordPress File Upload Cross-Site Request Forgery (2.4.1) CVE-2014-5199
WordPress Plugin WordPress File Upload Cross-Site Scripting (4.3.2) CVE-2018-9172
WordPress Plugin WordPress File Upload Cross-Site Scripting (4.3.3) CVE-2018-9844
WordPress Plugin WordPress File Upload Directory Traversal (4.12.2) CVE-2020-10564
WordPress Plugin WordPress File Upload Multiple Unspecified Vulnerabilities (3.10.0)
WordPress Plugin WordPress File Upload Multiple Vulnerabilities (2.7.6)
WordPress Plugin WordPress Infinite Scroll-Ajax Load More Arbitrary File Upload (2.8.1.1)
WordPress Plugin WordPress Mobile app Builder-Convert WordPress site to native mobile apps Arbitrary File Upload (1.05) CVE-2017-1002001
WordPress Plugin WordPress Popular Posts TimThumb Arbitrary File Upload (2.1.4)
WordPress Plugin WordPress Simple Ecommerce Shopping Cart-Sell products through Paypal Arbitrary File Upload (2.2.5) CVE-2021-24620
WordPress Plugin Work The Flow File Upload Arbitrary File Upload (2.3.1)
WordPress Plugin Work The Flow File Upload Arbitrary File Upload (2.5.2)
WordPress Plugin WP-Curriculo Vitae Free Arbitrary File Upload (6.3) CVE-2021-24222
WordPress Plugin Wp-FileManager 'ajaxfilemanager.php' Arbitrary File Upload (1.2) CVE-2008-0222
WordPress Plugin WP-Live Chat by 3CX Arbitrary File Upload (8.0.31) CVE-2019-11185
WordPress Plugin WP-Property-WordPress Powered Real Estate and Property Management Arbitrary File Upload (1.35.0)
WordPress Plugin Wp2android-webapp native mobile app builder free (android, IOs, Winphone mobile App) Arbitrary File Upload (1.1.4) CVE-2017-1002003
WordPress Plugin WP Business Intelligence Lite Arbitrary File Upload (1.0.6)
WordPress Plugin wpcu3er 'ajaxReq.php' Arbitrary File Upload (0.55)
WordPress Plugin wpDataTables-WordPress Tables & Table Charts Arbitrary File Upload (1.5.3)
WordPress Plugin wp Dreamwork Gallery 'upload.php' Arbitrary File Upload (2.1)
WordPress Plugin wp Dreamwork Gallery Arbitrary File Upload (2.3)
WordPress Plugin WP Easy Gallery 'add-gallery.php' Arbitrary File Upload (1.8)
WordPress Plugin WP Editor Arbitrary File Upload (1.2.5.3)
WordPress Plugin WP Front-End Repository Manager Arbitrary File Upload (1.1)
WordPress Plugin WP Githuber MD Arbitrary File Upload (1.4.1)
WordPress Plugin WP GPX Maps 'wp-gpx-maps_admin_tracks.php' Arbitrary File Upload (1.1.22) CVE-2012-6649
WordPress Plugin WP Live Chat Support Pro Arbitrary File Upload (8.0.06) CVE-2018-12426
WordPress Plugin WP Marketplace-Complete Shopping Cart/eCommerce Solution 'uploadify.php' Arbitrary File Upload (1.6.1)
WordPress Plugin WP Marketplace-Complete Shopping Cart/eCommerce Solution Arbitrary File Upload (1.2.1)
WordPress Plugin WP Marketplace-Complete Shopping Cart/eCommerce Solution Arbitrary File Upload (2.4.1)
WordPress Plugin WP Marketplace TimThumb Arbitrary File Upload (1.1.0) CVE-2011-4106
WordPress Plugin WP Mobile Detector Arbitrary File Upload (3.5)
WordPress Plugin WPshop-eCommerce Arbitrary File Upload (1.3.9.5)
WordPress Plugin wpShopGermany Free Arbitrary File Upload (4.0.10)
WordPress Plugin WP Simple Cart Arbitrary File Upload (1.0.15)
WordPress Plugin wpStoreCart 'upload.php' Arbitrary File Upload (2.5.29) CVE-2012-3576
WordPress Plugin wp superb Slideshow 'upload.php' Arbitrary File Upload (2.2)
WordPress Plugin wp superb Slideshow Arbitrary File Upload (2.4)
WordPress Plugin WP Symposium Arbitrary File Upload (14.11) CVE-2014-10021
WordPress Plugin WP Symposium Arbitrary File Upload Vulnerabilities (11.11.26) CVE-2011-5051
WordPress Plugin WPtouch Arbitrary File Upload (3.4.6)
WordPress Plugin WP User Frontend Arbitrary File Upload (2.3.10)
WordPress Plugin XData Toolkit Arbitrary File Upload (1.9)
WordPress Plugin Xerte Online 'save.php' Arbitrary File Upload (0.32)
WordPress Plugin YAS Slideshow Arbitrary File Upload (3.4)
WordPress Plugin YITH WooCommerce Gift Cards Premium Arbitrary File Upload (3.3.0) CVE-2021-3120
WordPress Plugin YITH WooCommerce Gift Cards Premium Arbitrary File Upload (3.19.0) CVE-2022-45359
WordPress Plugin Zedna Contact form Arbitrary File Upload (1.0)
WordPress Plugin Zielke Specialized Catalog Arbitrary File Upload (3.0.7)
WordPress Plugin Zingiri Web Shop 'uploadfilexd.php' Arbitrary File Upload (2.4.3)
WordPress Plugin ZoomSounds-WordPress Wave Audio Player with Playlist Arbitrary File Upload (2.0)