Public Disclosure Vulnerabilities:
On Exploit-DB:
WordPress Best Web Soft Captcha Plugin <= 4.1.5
WordPress Beauty & Clean Theme 1.0.8 – Arbitrary File Upload Vulnerability
WordPress DZS Videogallery Plugin <=8.60 – Multiple Vulnerabilities
CVE-2017-16562 – Userpro WP Plugin – Authentication Bypass
CVE-2017-16949 Accesspress Anonymous Post Pro < 3.2.0 - Unauthenticated Arbitrary File Upload
CVE-2018-8719 WordPress Plugin WP Security Audit Log 3.1.1 – Sensitive Information Disclosure
CVE-2018-9118 WordPress Background Takeover < 4.1.4 - Directory Traversal
For a more up to date list, Author: Colette Chamberland
Non WordPress CVE’s:
CVE-2014-3117 OpenCart Reflective XSS
Google Dorks:
ClamAV file info
Others (too basic for exploit-db/CVE’s)
formtoemail – XSS
1999 – Old MS Peer Web Service Vulnerability