Vulnerability Name CVE Severity
WordPress Plugin AdVert Cross-Site Scripting (1.0.5)
WordPress Plugin Advertisement Management Multiple Vulnerabilities (1.0)
WordPress Plugin Advertizer 'id' Parameter SQL Injection (1.0)
WordPress Plugin AdWizz 'link' Parameter Cross-Site Scripting (1.0)
WordPress Plugin Aesop Story Engine Cross-Site Scripting (1.6)
WordPress Plugin Affiliate Ads for Clickbank Products Cross-Site Scripting (1.6) CVE-2017-18011
WordPress Plugin Affiliate Link Manager Cross-Site Scripting (2.1.1)
WordPress Plugin Affiliate Power-Sales Tracking for Affiliate Marketers Cross-Site Scripting (2.2.0)
WordPress Plugin Affiliate Press Multiple Cross-Site Scripting Vulnerabilities (0.3.8)
WordPress Plugin Affiliate PRO Cross-Site Scripting (1.3.1) CVE-2021-24435
WordPress Plugin Affiliates Manager Cross-Site Request Forgery (2.6.5) CVE-2019-15868
WordPress Plugin Affiliates Manager Cross-Site Scripting (2.8.9) CVE-2021-25078
WordPress Plugin Affiliates Manager Multiple Vulnerabilities (2.9.13) CVE-2022-2798 CVE-2022-2799
WordPress Plugin Affiliates Manager SQL Injection (2.8.6) CVE-2021-24844
WordPress Plugin Affiliates Manager Unspecified Vulnerability (2.7.7)
WordPress Plugin Affiliates Multiple Cross-Site Scripting Vulnerabilities (2.13.1)
WordPress Plugin AffiliateWP Cross-Site Scripting (2.0.9)
WordPress Plugin AffiliateWP SQL Injection (1.5.6)
WordPress Plugin Afterpay Gateway for WooCommerce Cross-Site Scripting (3.2.0)
WordPress Plugin afterRead Unspecified Vulnerability (0.3)
WordPress Plugin Age Gate Cross-Site Scripting (2.16.3)
WordPress Plugin Age Gate Open Redirect (2.13.4)
WordPress Plugin Age Gate Security Bypass (2.17.0)
WordPress Plugin Age Gate Unspecified Vulnerability (2.18.5)
WordPress Plugin AgentEasy Properties Cross-Site Scripting (1.0.4)
WordPress Plugin AgentPress Broker Listings Cross-Site Scripting (1.0)
WordPress Plugin Agent Storm by StormRETS Multiple Cross-Site Scripting Vulnerabilities (1.1.35)
WordPress Plugin Age Verification 'redirect_to' Parameter URI Redirection (0.4) CVE-2012-6499
WordPress Plugin Age Verify Cross-Site Scripting (0.2.8)
WordPress Plugin AGP Font Awesome Collection Cross-Site Scripting (2.7.2)
WordPress Plugin AI ChatBot Arbitrary File Deletion (4.9.2) CVE-2023-5212
WordPress Plugin AI ChatBot Cross-Site Scripting (4.9.6) CVE-2023-5606
WordPress Plugin AI ChatBot Directory Traversal (4.9.2) CVE-2023-5241
WordPress Plugin AI ChatBot Information Disclosure (4.8.9) CVE-2023-5254
WordPress Plugin AI ChatBot SQL Injection (4.8.9) CVE-2023-5204
WordPress Plugin Airtight Security & Features Formerly Redirect Editor And Security Unspecified Vulnerability (1.3)
WordPress Plugin Airtight Security & Features Formerly Redirect Editor And Security Unspecified Vulnerability (2.1.7)
WordPress Plugin AIT Themes-CSV Import/Export Arbitrary File Upload (3.0.3)
WordPress Plugin Ajax BootModal Login Security Bypass (1.4.3) CVE-2018-15876
WordPress Plugin Ajax Calendar 'example.php' Cross-Site Scripting (1.0)
WordPress Plugin Ajax Category Dropdown Cross-Site Scripting and SQL Injection Vulnerabilities (0.1.5)
WordPress Plugin AJAX Comment Page Cross-Site Scripting (3.25)
WordPress Plugin Ajax Contact Form Cross-Site Scripting (1.0)
WordPress Plugin Ajax Gallery 'list.php' SQL Injection (3.0)
WordPress Plugin Ajax Multi Upload 'upload.php' Arbitrary File Upload (1.1)
WordPress Plugin Ajax Pagination (twitter Style) Local File Inclusion (1.1) CVE-2014-2674
WordPress Plugin Ajax Plugin Helper Cross-Site Scripting (1.0.5)
WordPress Plugin AJAX Post Search 'srch_txt' Parameter SQL Injection (1.2) CVE-2012-5853
WordPress Plugin AJAX Random Post Cross-Site Scripting (2.00) CVE-2016-1000127
WordPress Plugin Ajax Search Lite Remote Command Execution (3.1)
WordPress Plugin Ajax Search Lite Security Bypass (3.1)
WordPress Plugin Ajax Search Pro Security Bypass (3.5)
WordPress Plugin Ajax Store Locator Directory Traversal (1.2.0)
WordPress Plugin Ajax Store Locator SQL Injection (1.2.0)
WordPress Plugin AJS Instagram Feed Cross-Site Scripting (1.0)
WordPress Plugin Akeeba Backup CORE for WordPress Arbitrary File Upload (1.1.3) CVE-2014-7228
WordPress Plugin Akismet Cross-Site Scripting (3.1.4)
WordPress Plugin Albo Pretorio On line Multiple Vulnerabilities (3.2)
WordPress Plugin ALD-Dropshipping and Fulfillment for AliExpress and WooCommerce Multiple Vulnerabilities (1.0.21) CVE-2022-46811
WordPress Plugin Alert Before Your Post Cross-Site Scripting (0.1.1) CVE-2011-5107
WordPress Plugin AlertWire Information Disclosure (1.1.1)
WordPress Plugin AliExpress Dropshipping with AliNext Lite Cross-Site Request Forgery (3.3.5) CVE-2024-37212
WordPress Plugin All-in-One Addons for Elementor-WidgetKit Cross-Site Scripting (2.4.3) CVE-2022-4256
WordPress Plugin All-in-One Addons for Elementor-WidgetKit Multiple Cross-Site Scripting Vulnerabilities (2.3.9) CVE-2021-24267
WordPress Plugin All-in-One Custom Backgrounds Lite Unspecified Vulnerability (2.0.2)
WordPress Plugin All-in-One Event Calendar Cross-Site Scripting (2.4.0)
WordPress Plugin All-in-One Event Calendar Cross-Site Scripting (2.5.18)
WordPress Plugin All-in-One Event Calendar Cross-Site Scripting (2.5.38)
WordPress Plugin All-in-One Event Calendar Multiple Cross-Site Scripting Vulnerabilities (1.5) CVE-2012-1835
WordPress Plugin All-in-One Event Calendar Multiple Vulnerabilities (1.9)
WordPress Plugin All-in-One Event Calendar Multiple Vulnerabilities (1.10-standard)
WordPress Plugin All-in-One Event Calendar Multiple Vulnerabilities (2.3.12)
WordPress Plugin All-in-one Floating Contact Form, Call, Chat, and 50+ Social Icon Tabs-My Sticky Elements Cross-Site Scripting (2.0.3) CVE-2022-0148
WordPress Plugin All-in-one Floating Contact Form, Call, Chat, and 50+ Social Icon Tabs-My Sticky Elements SQL Injection (2.0.8) CVE-2023-0487
WordPress Plugin All-In-One Security (AIOS)-Security and Firewall Cross-Site Request Forgery (3.8.9) CVE-2015-0895