These submissions have been marked as vulnerable due to potential security issues with the plugin. This list contains the name of the plugin, the author and a short description regarding its vulnerability. Please bear in mind that the sole purpose of this page is to inform users to avoid these plugins and to help authors address these issues.

Vulnerable Submissions

Trash Bin

by 0xB9 Version: 1.1.4 38 Downloads 09-16-2019, 07:53 PM

Staff Notes:

CSRF vulnerable

Conversations System v1.0

by AmazOuz Version: 1 231 Downloads 01-05-2019, 01:11 PM

Staff Notes:

Surprisily, its true.. - Omar

Thread Redirect

by Jamie S Version: 0.2.1 273 Downloads 01-05-2019, 12:31 AM

Staff Notes:

Ban List

by Paul H. Version: 1.0 1659 Downloads 12-10-2018, 05:31 PM

Staff Notes:

Database output is not cleaned. Serpius reported a separate issue and I found this while looking at that. Simply needs to use htmlspecialchars_uni() on user info...

Latest Posts on Profile

by fizz Version: 1.1 791 Downloads 05-12-2018, 03:21 PM

Staff Notes:

XSS Vulnerability.