Vulnerability Name CVE Severity
WordPress Plugin Login With Ajax Cross-Site Scripting (3.0.4) CVE-2012-2759 CVE-2012-4283
WordPress Plugin Login With Ajax Cross-Site Scripting (3.1.6)
WordPress Plugin Login With Ajax Security Bypass (3.1.2)
WordPress Plugin Login with Azure (Azure SSO) Cross-Site Scripting (1.4.4)
WordPress Plugin Login with Cognito Cross-Site Scripting (1.4.3)
WordPress Plugin Login with Cognito Cross-Site Scripting (1.4.8) CVE-2022-4200
WordPress Plugin Login with phone number Cross-Site Scripting (1.4.1) CVE-2023-23492
WordPress Plugin Login with phone number Security Bypass (1.7.26) CVE-2024-5150
WordPress Plugin Logo Carousel Cross-Site Request Forgery (1.7.4)
WordPress Plugin Logo Carousel Cross-Site Scripting (1.7.1)
WordPress Plugin Logo Showcase with Slick Slider-Logo Carousel, Logo Slider & Logo Grid Cross-Site Request Forgery (2.0) CVE-2021-24913
WordPress Plugin Logo Showcase with Slick Slider-Logo Carousel, Logo Slider & Logo Grid Cross-Site Scripting (1.2.3) CVE-2021-24729
WordPress Plugin Logo Showcase with Slick Slider-Logo Carousel, Logo Slider & Logo Grid Security Bypass (1.2.4) CVE-2021-24730
WordPress Plugin Logo Slider and Showcase Security Bypass (1.3.36) CVE-2021-24742
WordPress Plugin LOGOSWARE SUITE Uploader Arbitrary File Upload (1.1.6)
WordPress Plugin M-vSlider SQL Injection (2.1.3) CVE-2021-24557
WordPress Plugin MAC PHOTO GALLERY 'albid' Parameter Arbitrary File Disclosure (2.8)
WordPress Plugin MAC PHOTO GALLERY 'macalbajax.php' Multiple Cross-Site Scripting Vulnerabilities (2.10)
WordPress Plugin MAC PHOTO GALLERY 'upload-file.php' Arbitrary File Upload (2.7)
WordPress Plugin MAC PHOTO GALLERY Arbitrary File Download (3.0)
WordPress Plugin MAC PHOTO GALLERY Multiple Security Bypass Vulnerabilities (3.0)
WordPress Plugin Magee Shortcodes Cross-Site Scripting (1.6.3)
WordPress Plugin Magic Fields 2 Cross-Site Scripting (2.3.2.4)
WordPress Plugin Magic Fields 2 Unspecified Vulnerability (2.3.2.2)
WordPress Plugin Magic Fields Arbitrary File Upload (1.6.3.2)
WordPress Plugin Magic Fields Cross-Site Scripting (1.7.1)
WordPress Plugin Magic Post Voice Cross-Site Scripting (1.2) CVE-2021-39315
WordPress Plugin Magn WP Drag and Drop Upload Arbitrary File Upload (1.1.4)
WordPress Plugin MailArchiver Cross-Site Scripting (2.10.1) CVE-2023-3136
WordPress Plugin MailChimp Forms by MailMunch Unspecified Vulnerability (2.0.6.3)
WordPress Plugin MailChimp for WooCommerce Local File Inclusion (2.1.1)
WordPress Plugin MailChimp List Subscribe Form Multiple Unspecified Vulnerabilities (1.1)
WordPress Plugin Mail Control-Email Customizer, SMTP Deliverability, logging, open and click Tracking Cross-Site Scripting (0.3.1) CVE-2023-3158
WordPress Plugin MailCWP Arbitrary File Upload (1.99) CVE-2015-1000000
WordPress Plugin MailCWP Arbitrary File Upload (1.100) CVE-2016-1000156
WordPress Plugin Mailing List 'dl.php' Arbitrary File Download (1.4.1)
WordPress Plugin Mailing List 'wpabspath' Parameter Remote File Include (1.3.3)
WordPress Plugin Mail logging-WP Mail Catcher Cross-Site Scripting (2.1.2) CVE-2023-3080
WordPress Plugin Mail Masta Local File Inclusion (1.0) CVE-2016-10956
WordPress Plugin Mail Masta Multiple SQL Injection Vulnerabilities (1.0) CVE-2017-6095 CVE-2017-6096 CVE-2017-6097 CVE-2017-6098 CVE-2017-6570 CVE-2017-6571 CVE-2017-6572 CVE-2017-6573 CVE-2017-6574 CVE-2017-6575 CVE-2017-6576 CVE-2017-6577 CVE-2017-6578
WordPress Plugin Mail On Update Cross-Site Request Forgery (5.1.0) CVE-2013-2107
WordPress Plugin MailPoet-emails and newsletters in WordPress Cross-Site Scripting (3.23.1) CVE-2019-11843
WordPress Plugin MailPoet Newsletters (Previous) 'swfupload.swf' Cross-Site Scripting (2.1.6) CVE-2012-3414
WordPress Plugin MailPoet Newsletters (Previous) Arbitrary File Upload (2.6.7) CVE-2014-4725 CVE-2014-4726
WordPress Plugin MailPoet Newsletters (Previous) Cross-Site Request Forgery (2.6.10) CVE-2014-3907
WordPress Plugin MailPoet Newsletters (Previous) Cross-Site Scripting (2.6.11)
WordPress Plugin MailPoet Newsletters (Previous) Cross-Site Scripting (2.6.19)
WordPress Plugin MailPoet Newsletters (Previous) Multiple Unspecified Vulnerabilities (2.7.1)
WordPress Plugin MailPoet Newsletters (Previous) Multiple Vulnerabilities (2.7.2)
WordPress Plugin MailPoet Newsletters (Previous) Security Bypass (2.8.1) CVE-2018-20853
WordPress Plugin MailPoet Newsletters (Previous) SQL Injection (2.2) CVE-2013-1408
WordPress Plugin MailPoet Newsletters (Previous) Unspecified Vulnerability (2.7.8)
WordPress Plugin MailPress Multiple Vulnerabilities (5.4.4)
WordPress Plugin MailPress Remote Code Execution (7.0.2)
WordPress Plugin Mail Queue Cross-Site Scripting (1.1) CVE-2023-3167
WordPress Plugin Mailster-Email Newsletter for WordPress Cross-Site Scripting (2.4.5.1)
WordPress Plugin Mailster-Email Newsletter for WordPress Local File Inclusion (4.0.6) CVE-2024-32523
WordPress Plugin Mail Subscribe List Unspecified Vulnerability (2.0.9)
WordPress Plugin Mailtree Log Mail Cross-Site Scripting (1.0.0) CVE-2023-3135
WordPress Plugin MailUp newsletter sign-up form Security Bypass (1.3.2) CVE-2013-0731 CVE-2013-2640
WordPress Plugin Maintenance Cross-Site Request Forgery (3.6.4)
WordPress Plugin Maintenance Cross-Site Scripting (4.02) CVE-2021-24533
WordPress Plugin Maintenance Mode Under Construction Page Landing Page Possible Remote Code Execution (1.0.9) CVE-2016-10033 CVE-2016-10045
WordPress Plugin Maintenance Mode Unspecified Vulnerability (1.3.3)
WordPress Plugin MainWP Child-Securely connects sites to the MainWP WordPress Manager Dashboard Cross-Site Scripting (2.0.12)
WordPress Plugin MainWP Child-Securely connects sites to the MainWP WordPress Manager Dashboard Security Bypass (2.0.9.1)
WordPress Plugin MainWP Child-Securely connects sites to the MainWP WordPress Manager Dashboard Security Bypass (3.4.4)
WordPress Plugin MainWP Child-Securely connects sites to the MainWP WordPress Manager Dashboard SQL Injection (4.1.7.1) CVE-2021-24877
WordPress Plugin MainWP Child-Securely connects sites to the MainWP WordPress Manager Dashboard Unspecified Vulnerability (2.0.27)
WordPress Plugin MainWP Child Reports SQL Injection (2.0.7) CVE-2021-24754
WordPress Plugin MainWP Dashboard Cross-Site Scripting (3.1.2)
WordPress Plugin MainWP Dashboard Unspecified Vulnerability (2.0.22)
WordPress Plugin MalCare Security-Free Malware Scanner, Protection & Security for WordPress Cross-Site Scripting (4.57)
WordPress Plugin Malware Finder Cross-Site Scripting (1.1) CVE-2014-4538
WordPress Plugin Malware Scanner Privilege Escalation (4.7.2) CVE-2024-2172