Vulnerability Name CVE Severity
WordPress Plugin WP Web Scraper Unspecified Vulnerability (2.4)
WordPress Plugin WP Whois Domain Cross-Site Scripting (1.0.0)
WordPress Plugin WP Widget Cache Cross-Site Scripting (0.26)
WordPress Plugin WP with Spritz Local/Remote File Inclusion (1.0)
WordPress Plugin WP Yelp Review Slider SQL Injection (7.0) CVE-2023-0263
WordPress Plugin WP YouTube Live Cross-Site Scripting (1.7.21) CVE-2022-1187
WordPress Plugin WP YouTube Live Cross-Site Scripting (1.8.2) CVE-2022-1334
WordPress Plugin WPZOOM Portfolio Cross-Site Scripting (1.2.1) CVE-2022-4789
WordPress Plugin WR ContactForm SQL Injection (1.1.9)
WordPress Plugin wSecure Lite Remote Code Execution (2.3)
WordPress Plugin WTI Like Post Cross-Site Scripting (1.4.4)
WordPress Plugin WTI Like Post SQL Injection (1.4.2)
WordPress Plugin Wu-Rating Cross-Site Scripting (1.0 12319) CVE-2014-4601
WordPress Plugin Wufoo Shortcode Cross-Site Scripting (1.47)
WordPress Plugin Wufoo Shortcode Cross-Site Scripting (1.50)
WordPress Plugin Wufoo Shortcode Cross-Site Scripting (1.51) CVE-2022-4679
WordPress Plugin Wunderbar Basic Cross-Site Scripting (1.1.3)
WordPress Plugin XCloner-Backup and Restore Multiple Vulnerabilities (3.1.2) CVE-2015-4336 CVE-2015-4337 CVE-2015-4338
WordPress Plugin XData Toolkit Arbitrary File Upload (1.9)
WordPress Plugin XEN Carousel Multiple Cross-Site Scripting Vulnerabilities (0.12.2) CVE-2014-4602
WordPress Plugin Xerte Online 'save.php' Arbitrary File Upload (0.32)
WordPress Plugin XforWooCommerce Security Bypass (1.6.4)
WordPress Plugin Xhanch-My Twitter Cross-Site Request Forgery (2.7.6) CVE-2013-3253
WordPress Plugin Xhanch-My Twitter Multiple Cross-Site Request Forgery Vulnerabilities (2.7.7)
WordPress Plugin xili-language Multiple Unspecified Vulnerabilities (2.17.0)
WordPress Plugin xili-tidy-tags Cross-Site Request Forgery (1.12.03) CVE-2022-47448
WordPress Plugin Xllentech English Islamic Calendar SQL Injection (2.6.7) CVE-2021-24341
WordPress Plugin XML File Export Import for Stamps.com and WooCommerce Cross-Site Request Forgery (1.1.8)
WordPress Plugin XML Sitemap & Google News feeds Cross-Site Scripting (3.9)
WordPress Plugin XML Sitemap & Google News feeds Cross-Site Scripting (4.5)
WordPress Plugin XO Event Calendar Cross-Site Scripting (2.3.6)
WordPress Plugin Xorbin Analog Flash Clock Cross-Site Scripting (1.0) CVE-2013-4692
WordPress Plugin Xorbin Digital Flash Clock Cross-Site Scripting (1.0) CVE-2013-4693
WordPress Plugin XO Security Cross-Site Scripting (1.5.2)
WordPress Plugin xPinner Lite Multiple Vulnerabilities (2.2)
WordPress Plugin Xtreme Locator Dealer Locator SQL Injection (1.5)
WordPress Plugin XVE Various Embed Multiple Cross-Site Scripting Vulnerabilities (1.0.3)
WordPress Plugin Yahoo! Updates for WordPress Multiple Cross-Site Scripting Vulnerabilities (1.0) CVE-2014-4603
WordPress Plugin Yakadanda Google+ Hangout Events Cross-Site Scripting (0.3.7)
WordPress Plugin YaMaps for WordPress Cross-Site Scripting (0.6.25) CVE-2023-0270
WordPress Plugin Yandex.News Feed by Teplitsa Cross-Site Scripting (1.12.5) CVE-2023-25052
WordPress Plugin Yandex Money button Cross-Site Scripting (2.3.3) CVE-2021-24435
WordPress Plugin YARPP-Yet Another Related Posts Cross-Site Scripting (5.30.2) CVE-2022-4471
WordPress Plugin YARPP-Yet Another Related Posts Local File Inclusion (5.30.3) CVE-2022-45374
WordPress Plugin YARPP-Yet Another Related Posts Multiple Vulnerabilities (4.2.4)
WordPress Plugin YARPP-Yet Another Related Posts PHP Object Injection (4.4)
WordPress Plugin YARPP-Yet Another Related Posts SQL Injection (5.30.2) CVE-2023-0579
WordPress Plugin Yasr-Yet Another Stars Rating PHP Object Injection (1.8.6)
WordPress Plugin Yasr-Yet Another Stars Rating SQL Injection (0.9.0)
WordPress Plugin Yasr-Yet Another Stars Rating Unspecified Vulnerability (0.9.1)
WordPress Plugin Yasr-Yet Another Stars Rating Unspecified Vulnerability (1.3.2)
WordPress Plugin Yasr-Yet Another Stars Rating Unspecified Vulnerability (1.7.0)
WordPress Plugin YAS Slideshow Arbitrary File Upload (3.4)
WordPress Plugin YAWPP (Yet Another WordPress Petition Plugin) SQL Injection (1.2) CVE-2014-5182
WordPress Plugin YaySMTP-Simple WP SMTP Mail Cross-Site Scripting (2.2) CVE-2022-2371
WordPress Plugin YaySMTP-Simple WP SMTP Mail Cross-Site Scripting (2.2.1) CVE-2022-2372
WordPress Plugin YaySMTP-Simple WP SMTP Mail Cross-Site Scripting (2.4.5) CVE-2023-3093
WordPress Plugin YaySMTP-Simple WP SMTP Mail Information Disclosure (2.2) CVE-2022-2369
WordPress Plugin Yes-co ORES Cross-Site Scripting (1.3.44)
WordPress Plugin Yes/No Chart SQL Injection (1.0.11) CVE-2021-24360
WordPress Plugin Yet Another bol.com Cross-Site Scripting (1.4) CVE-2021-38330
WordPress Plugin Yet Another Photoblog Unspecified Vulnerability (1.10.6)
WordPress Plugin YITH Advanced Refund System for WooCommerce Security Bypass (1.0.10) CVE-2019-16251
WordPress Plugin YITH Color and Label Variations for WooCommerce Security Bypass (1.8.11) CVE-2019-16251
WordPress Plugin YITH Custom Thank You Page for Woocommerce Security Bypass (1.1.6) CVE-2019-16251
WordPress Plugin YITH Desktop Notifications for WooCommerce Security Bypass (1.2.7) CVE-2019-16251
WordPress Plugin YITH Maintenance Mode Cross-Site Scripting (1.1.4)
WordPress Plugin YITH Maintenance Mode Cross-Site Scripting (1.3.7) CVE-2021-36841
WordPress Plugin YITH Maintenance Mode Multiple Cross-Site Scripting Vulnerabilities (1.3.8) CVE-2021-36845
WordPress Plugin YITH PayPal Express Checkout for WooCommerce Security Bypass (1.2.5) CVE-2019-16251
WordPress Plugin YITH Pre-Order for WooCommerce Security Bypass (1.1.9) CVE-2019-16251
WordPress Plugin YITH Product Size Charts for WooCommerce Security Bypass (1.1.11) CVE-2019-16251
WordPress Plugin YITH WooCommerce Added to Cart Popup Security Bypass (1.3.11) CVE-2019-16251
WordPress Plugin YITH WooCommerce Advanced Reviews Security Bypass (1.3.9) CVE-2019-16251
WordPress Plugin YITH WooCommerce Affiliates Security Bypass (1.6.3) CVE-2019-16251