Vulnerabilities and security researches forwordpress-connect wordpress-connect

Jun 16, 2026

CVE, Research URL: feaf7c04-4991-4c34-bfbf-d849a9e38599
Home page URL: Security reports for WordPress Connect
Application: WordPress Connect
Date: -
Research Description: WordPress Connect [wordpress-connect] <= 2.0.3 (unfixed + closed) WordPress Connect 2.0.3 - Editor Pages Unspecified XSS The WordPress Connect WordPress plugin was affected by an Editor Pages Unspecified XSS security vulnerability.
Affected versions: max 2.0.3.
Status: vulnerable

CVE, Research URL: 5b2d1beeae1454c4c4f60eac4f084fd504540b28
Home page URL: Security reports for WordPress Connect
Application: WordPress Connect
Date: Aug 01, 2023
Research Description: WordPress Connect [wordpress-connect] < 2.0.4 (closed) WordPress Connect Plugin <= 2.0.3 is vulnerable to Cross Site Scripting (XSS) Update the plugin. An unknown person discovered and reported this Cross Site Scripting (XSS) vulnerability in WordPress Connect Plugin. This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site. This vulnerability has been fixed in version 2.0.4.
Affected versions: max 2.0.4.
Status: vulnerable

Jun 06, 2024

CVE, Research URL: b326cdbf2040aa8eeb688f951965600d9b290062
Home page URL: Security reports for WordPress Connect
Application: WordPress Connect
Date: Aug 01, 2014
Research Description: WordPress Connect [wordpress-connect] < 2.0.4 (closed) WordPress Connect Plugin <= 2.0.3 - Cross Site Scripting This plugin is prone to a cross site scripting vulnerability in editor pages. Update the plugin.
Affected versions: max 2.0.4.
Status: vulnerable