Submit a Vulnerability

By submitting a WordPress core, plugin or theme vulnerability to us you ensure it gets out to as many of the right people as possible. Our data gets distributed to millions of WordPress users. If you want to submit a vulnerability to us anonymously we recommend using TOR to do so. Please take the time to read our vulnerability disclosure policy.

🎁 Win rewards! 🎁

Win rewards from your submissions! Once a month we pick a security reseacher at random who has submitted a vulnerability to us and send them a reward as a thank you. In the past these have included Amazon gift vouchers, WPScan hoodies, stickers and more.

Your Details

Get recognition for your submission!

These details, except for your email address, if filled, will be made public on our website along with the vulnerability you submit. Feel free to leave any of these fields blank. If you decide to supply an email address we may use it to contact you for additional information regarding the vulnerability you submitted. Your email address will not be used for any other purpose and will not be displayed publicly.

Researcher name

Submitter name

Submitter email

Receive email updates

Submitter Website

Submitter twitter

Are you the original researcher?

Vulnerability Details

Please fill in this information as accurately and as thoroughly as possible. This will ensure it is published by us as fast as possible. If any of the fields are not applicable please leave them blank.

Required fields

Title

Vulnerability type

Please select

Published date

Description

By ticking this box you agree to our terms of service.

Optional fields

PoC

Has the vendor been notified?

References

URL

CVE

ExploitDB

Metasploit

PacketStorm

Security Focus

YouTube Video

Would you like to request a CVE?