These submissions have been marked as vulnerable due to potential security issues with the plugin. This list contains the name of the plugin, the author and a short description regarding its vulnerability. Please bear in mind that the sole purpose of this page is to inform users to avoid these plugins and to help authors address these issues.

Vulnerable Submissions

Trash Bin

by 0xB9 Version: 1.1.4 38 Downloads 2019-09-16, 07:53 PM

Staff Notes:

CSRF vulnerable

Conversations System v1.0

by AmazOuz Version: 1 231 Downloads 2019-01-05, 01:11 PM

Staff Notes:

Surprisily, its true.. - Omar

Thread Redirect

by Jamie S Version: 0.2.1 273 Downloads 2019-01-05, 12:31 AM

Staff Notes:

Latest Posts on Profile

by fizz Version: 1.1 791 Downloads 2018-05-12, 03:21 PM

Staff Notes:

XSS Vulnerability.

Ban List

by Paul H. Version: 1.0 1659 Downloads 2018-12-10, 05:31 PM

Staff Notes:

Database output is not cleaned. Serpius reported a separate issue and I found this while looking at that. Simply needs to use htmlspecialchars_uni() on user info...

Related Threads

by User 12076 Version: 1.0.1 2559 Downloads 2020-01-21, 10:53 PM

Staff Notes:

Thread name XSS