Vulnerabilities - Acunetix

Vulnerability Name	CVE CWE	CWE	Severity
WordPress Plugin Smart Manager for WooCommerce & WPeC SQL Injection (3.9.6)	CWE-89	CWE-89	High
WordPress Plugin Smart Marketing SMS and Newsletters Forms Cross-Site Scripting (1.1.1)	CVE-2017-18010 CWE-79	CWE-79	High
WordPress Plugin Smart Marketing SMS and Newsletters Forms Security Bypass (2.6.1)	CWE-264	CWE-264	High
WordPress Plugin Smart Reporter for WooCommerce and WP eCommerce Multiple Unspecified Vulnerabilities (2.9.2)			High
WordPress Plugin Smart Scroll Posts for WordPress includes Backdoor [Only if downloaded via the vendor website] (2.0.8)	CVE-2021-24867 CWE-912	CWE-912	High
WordPress Plugin Smart Slider 2 Multiple Cross-Site Scripting Vulnerabilities (2.3.11)	CWE-79	CWE-79	High
WordPress Plugin Smart Slider 3 Cross-Site Scripting (3.5.0.8)	CVE-2021-24382 CWE-79	CWE-79	High
WordPress Plugin Smart Slider 3 PRO Cross-Site Scripting (3.5.0.8)	CVE-2021-24382 CWE-79	CWE-79	High
WordPress Plugin Smart Slideshow 'upload.php' Arbitrary File Upload (2.1)	CWE-434	CWE-434	High
WordPress Plugin Smart Slideshow Arbitrary File Upload (2.4)	CWE-434	CWE-434	High
WordPress Plugin Smash Balloon Social Post Feed Cross-Site Scripting (2.19.1)	CVE-2021-24508 CWE-79	CWE-79	High
WordPress Plugin Smash Balloon Social Post Feed Cross-Site Scripting (4.1)	CVE-2021-25065 CWE-79	CWE-79	High
WordPress Plugin Smash Balloon Social Post Feed Security Bypass (4.0)	CVE-2021-24918 CWE-264	CWE-264	High
WordPress Plugin Smash Balloon Social Post Feed Unspecified Vulnerability (2.4.2)			High
WordPress Plugin SmokeSignal Cross-Site Scripting (1.2.6)	CWE-79	CWE-79	High
WordPress Plugin Smooth Scroll Page Up/Down Buttons Cross-Site Scripting (1.3)	CVE-2021-24331 CWE-79	CWE-79	High
WordPress Plugin Smooth Slider SQL Injection (2.6.5)	CWE-89	CWE-89	High
WordPress Plugin Smooth Slider SQL Injection (2.8.6)	CVE-2018-5373 CWE-89	CWE-89	High
WordPress Plugin SMS Alert Order Notifications-WooCommerce Cross-Site Scripting (3.4.6)	CVE-2021-24588 CWE-79	CWE-79	High
WordPress Plugin SMS OVH Cross-Site Scripting (0.1)	CVE-2021-38357 CWE-79	CWE-79	High
WordPress Plugin SMTP by BestWebSoft Cross-Site Scripting (1.0.9)	CVE-2017-2171 CVE-2017-2171 CVE-2017-18518 CWE-79	CWE-79	High
WordPress Plugin SMTP Mail Cross-Site Scripting (1.1.14)	CWE-79	CWE-79	High
WordPress Plugin SMTP Mail Cross-Site Scripting (1.3.1)	CVE-2023-3092 CWE-79	CWE-79	High
WordPress Plugin SMTP Mailer Cross-Site Request Forgery (1.0.6)	CWE-352	CWE-352	High
WordPress Plugin SMTP Mail SQL Injection (1.2.1)	CWE-89	CWE-89	High
WordPress Plugin Smush Image Compression and Optimization Directory Traversal (2.7.5)	CVE-2017-15079 CWE-22	CWE-22	High
WordPress Plugin Smush Image Compression and Optimization Multiple Vulnerabilities (2.9.1)	CWE-79 CWE-915	CWE-79 CWE-915	High
WordPress Plugin SnapApp Multiple Cross-Site Scripting Vulnerabilities (1.5)	CVE-2014-4596 CWE-79	CWE-79	High
WordPress Plugin Snazzy Archives Cross-Site Scripting (1.7.1)	CWE-79	CWE-79	High
WordPress Plugin Snazzy Maps Cross-Site Request Forgery (1.1.5)	CWE-352	CWE-352	High
WordPress Plugin Snazzy Maps Multiple Cross-Site Scripting Vulnerabilities (1.1.3)	CVE-2018-17947 CWE-79	CWE-79	High
WordPress Plugin Sniplets Multiple Input Validation Vulnerabilities (1.2.2)	CVE-2008-1059 CVE-2008-1060 CVE-2008-1061 CWE-79 CWE-94 CWE-95	CWE-79 CWE-94 CWE-95	High
WordPress Plugin Snow Monkey Forms Directory Traversal (5.1.1)	CVE-2023-28413 CWE-22	CWE-22	High
WordPress Plugin Sociable Cross-Site Scripting (4.3.4.1)	CVE-2021-24612 CWE-79	CWE-79	High
WordPress Plugin Social Articles Security Bypass (2.4)	CWE-264	CWE-264	High
WordPress Plugin Social Auto Poster-WordPress Scheduler & Marketing Arbitrary File Upload (5.3.14)	CVE-2024-6756 CWE-434	CWE-434	High
WordPress Plugin Social Auto Poster-WordPress Scheduler & Marketing Cross-Site Scripting (5.3.14)	CVE-2024-6753 CWE-79	CWE-79	High
WordPress Plugin Social Auto Poster-WordPress Scheduler & Marketing Security Bypass (5.3.14)	CVE-2024-6750 CWE-862	CWE-862	High
WordPress Plugin Social Auto Poster includes Backdoor [Only if downloaded via the vendor website] (2.1.3)	CVE-2021-24867 CWE-912	CWE-912	High
WordPress Plugin Social Buttons Pack by BestWebSoft Cross-Site Scripting (1.1.0)	CVE-2017-2171 CVE-2017-2171 CVE-2017-18500 CWE-79	CWE-79	High
WordPress Plugin Social Connect Cross-Site Scripting (1.0.4)	CVE-2014-4551 CWE-79	CWE-79	High
WordPress Plugin Social Count Plus Cross-Site Scripting (3.0.2)	CWE-79	CWE-79	High
WordPress Plugin Social Discussions Remote File Include and Information Disclosure Vulnerabilities (6.1.1)	CWE-94 CWE-200	CWE-94 CWE-200	High
WordPress Plugin Social Essentials-Social Stats and Sharing Buttons Cross-Site Scripting (1.3.1)	CWE-79	CWE-79	High
WordPress Plugin SocialFit 'msg' Parameter Cross-Site Scripting (1.2.2)	CWE-79	CWE-79	High
WordPress Plugin Social Gallery and Widget Security Bypass (2.2.5)	CVE-2021-24752 CWE-284	CWE-284	High
WordPress Plugin SocialGrid 'default_services' Parameter Cross-Site Scripting (2.3)	CWE-79	CWE-79	High
WordPress Plugin Social Hashtags Cross-Site Scripting (3.0.0)	CWE-79	CWE-79	High
WordPress Plugin Social LikeBox & Feed Cross-Site Scripting (2.8.4)	CVE-2019-15781 CWE-79	CWE-79	High
WordPress Plugin Social Like Box and Page by WpDevArt Cross-Site Scripting (0.8.40)	CVE-2023-0177 CWE-79	CWE-79	High
WordPress Plugin Social Like Box and Page by WpDevArt Unspecified Vulnerability (0.8.39)			High
WordPress Plugin Social Login by BestWebSoft Cross-Site Scripting (0.1)	CVE-2017-2171 CVE-2017-2171 CVE-2017-18501 CWE-79	CWE-79	High
WordPress Plugin Social Login Lite For WooCommerce Security Bypass (1.6.0)	CVE-2024-4552 CWE-287	CWE-287	High
WordPress Plugin Social Login WP Cross-Site Request Forgery (5.0.0.0)	CVE-2022-38063 CWE-352	CWE-352	High
WordPress Plugin Social Media Flying Icons-Floating Social Media Icon Cross-Site Scripting (2.1)	CWE-79	CWE-79	High
WordPress Plugin Social Media Flying Icons-Floating Social Media Icon Multiple Unspecified Vulnerabilities (4.2.3)			High
WordPress Plugin Social Media Share Buttons & Social Sharing Icons Cross-Site Scripting (1.1.1.11)	CWE-79	CWE-79	High
WordPress Plugin Social Media Share Buttons & Social Sharing Icons Cross-Site Scripting (2.1.7)	CWE-79	CWE-79	High
WordPress Plugin Social Media Share Buttons & Social Sharing Icons Multiple Unspecified Vulnerabilities (1.2.1)			High
WordPress Plugin Social Media Share Buttons & Social Sharing Icons Security Bypass (1.5.1)	CWE-264	CWE-264	High
WordPress Plugin Social Media Tab Remote Code Execution (1.0.9)	CWE-94	CWE-94	High
WordPress Plugin Social Media Widget by Acurax Cross-Site Request Forgery (3.2.5)	CVE-2018-6357 CWE-352	CWE-352	High
WordPress Plugin Social Media Widget by Acurax Cross-Site Scripting (2.2)	CWE-79	CWE-79	High
WordPress Plugin Social Media Widget by Acurax Multiple Unspecified Vulnerabilities (3.2.3)			High
WordPress Plugin Social Media Widget Serving Spam (4.0)	CVE-2013-1949 CWE-20	CWE-20	High
WordPress Plugin Social Metrics Tracker Cross-Site Scripting (1.6.8)	CWE-79	CWE-79	High
WordPress Plugin Social Networking & E-commerce Arbitrary File Upload (0.0.32)	CWE-434	CWE-434	High
WordPress Plugin Social Network Tabs Information Disclosure (1.7.1)	CVE-2018-20555 CWE-200	CWE-200	High
WordPress Plugin Social Photo Gallery Remote Code Execution (1.0)	CVE-2019-14467 CWE-94	CWE-94	High
WordPress Plugin Social Review includes Backdoor [Only if downloaded via the vendor website] (1.0.8)	CVE-2021-24867 CWE-912	CWE-912	High
WordPress Plugin Social Rocket-Social Sharing Cross-Site Request Forgery (1.2.9)	CVE-2020-5611 CWE-352	CWE-352	High
WordPress Plugin Social Share Button Cross-Site Scripting (2.1)	CWE-79	CWE-79	High
WordPress Plugin Social Share Buttons-Social Pug Cross-Site Scripting (1.2.5)	CVE-2016-10736 CWE-79	CWE-79	High
WordPress Plugin Social Share Buttons-Social Pug Multiple Unspecified Vulnerabilities (1.3.1)			High
WordPress Plugin Social Share Icons & Social Share Buttons Cross-Site Scripting (3.0.5)	CWE-79	CWE-79	High

WordPress Plugin Smart Manager for WooCommerce & WPeC SQL Injection (3.9.6)

CWE-89

High

WordPress Plugin Smart Marketing SMS and Newsletters Forms Cross-Site Scripting (1.1.1)

CVE-2017-18010

CWE-79

High

WordPress Plugin Smart Marketing SMS and Newsletters Forms Security Bypass (2.6.1)

CWE-264

High

WordPress Plugin Smart Reporter for WooCommerce and WP eCommerce Multiple Unspecified Vulnerabilities (2.9.2)

High

WordPress Plugin Smart Scroll Posts for WordPress includes Backdoor [Only if downloaded via the vendor website] (2.0.8)

CVE-2021-24867

CWE-912

High

WordPress Plugin Smart Slider 2 Multiple Cross-Site Scripting Vulnerabilities (2.3.11)

CWE-79

High

WordPress Plugin Smart Slider 3 Cross-Site Scripting (3.5.0.8)

CVE-2021-24382

CWE-79

High

WordPress Plugin Smart Slider 3 PRO Cross-Site Scripting (3.5.0.8)

CVE-2021-24382

CWE-79

High

WordPress Plugin Smart Slideshow 'upload.php' Arbitrary File Upload (2.1)

CWE-434

High

WordPress Plugin Smart Slideshow Arbitrary File Upload (2.4)

CWE-434

High

WordPress Plugin Smash Balloon Social Post Feed Cross-Site Scripting (2.19.1)

CVE-2021-24508

CWE-79

High

WordPress Plugin Smash Balloon Social Post Feed Cross-Site Scripting (4.1)

CVE-2021-25065

CWE-79

High

WordPress Plugin Smash Balloon Social Post Feed Security Bypass (4.0)

CVE-2021-24918

CWE-264

High

WordPress Plugin Smash Balloon Social Post Feed Unspecified Vulnerability (2.4.2)

High

WordPress Plugin SmokeSignal Cross-Site Scripting (1.2.6)

CWE-79

High

WordPress Plugin Smooth Scroll Page Up/Down Buttons Cross-Site Scripting (1.3)

CVE-2021-24331

CWE-79

High

WordPress Plugin Smooth Slider SQL Injection (2.6.5)

CWE-89

High

WordPress Plugin Smooth Slider SQL Injection (2.8.6)

CVE-2018-5373

CWE-89

High

WordPress Plugin SMS Alert Order Notifications-WooCommerce Cross-Site Scripting (3.4.6)

CVE-2021-24588

CWE-79

High

WordPress Plugin SMS OVH Cross-Site Scripting (0.1)

CVE-2021-38357

CWE-79

High

WordPress Plugin SMTP by BestWebSoft Cross-Site Scripting (1.0.9)

CVE-2017-2171 CVE-2017-2171 CVE-2017-18518

CWE-79

High

WordPress Plugin SMTP Mail Cross-Site Scripting (1.1.14)

CWE-79

High

WordPress Plugin SMTP Mail Cross-Site Scripting (1.3.1)

CVE-2023-3092

CWE-79

High

WordPress Plugin SMTP Mailer Cross-Site Request Forgery (1.0.6)

CWE-352

High

WordPress Plugin SMTP Mail SQL Injection (1.2.1)

CWE-89

High

WordPress Plugin Smush Image Compression and Optimization Directory Traversal (2.7.5)

CVE-2017-15079

CWE-22

High

WordPress Plugin Smush Image Compression and Optimization Multiple Vulnerabilities (2.9.1)

CWE-79 CWE-915

High

WordPress Plugin SnapApp Multiple Cross-Site Scripting Vulnerabilities (1.5)

CVE-2014-4596

CWE-79

High

WordPress Plugin Snazzy Archives Cross-Site Scripting (1.7.1)

CWE-79

High

WordPress Plugin Snazzy Maps Cross-Site Request Forgery (1.1.5)

CWE-352

High

WordPress Plugin Snazzy Maps Multiple Cross-Site Scripting Vulnerabilities (1.1.3)

CVE-2018-17947

CWE-79

High

WordPress Plugin Sniplets Multiple Input Validation Vulnerabilities (1.2.2)

CVE-2008-1059 CVE-2008-1060 CVE-2008-1061

CWE-79 CWE-94 CWE-95

High

WordPress Plugin Snow Monkey Forms Directory Traversal (5.1.1)

CVE-2023-28413

CWE-22

High

WordPress Plugin Sociable Cross-Site Scripting (4.3.4.1)

CVE-2021-24612

CWE-79

High

WordPress Plugin Social Articles Security Bypass (2.4)

CWE-264

High

WordPress Plugin Social Auto Poster-WordPress Scheduler & Marketing Arbitrary File Upload (5.3.14)

CVE-2024-6756

CWE-434

High

WordPress Plugin Social Auto Poster-WordPress Scheduler & Marketing Cross-Site Scripting (5.3.14)

CVE-2024-6753

CWE-79

High

WordPress Plugin Social Auto Poster-WordPress Scheduler & Marketing Security Bypass (5.3.14)

CVE-2024-6750

CWE-862

High

WordPress Plugin Social Auto Poster includes Backdoor [Only if downloaded via the vendor website] (2.1.3)

CVE-2021-24867

CWE-912

High

WordPress Plugin Social Buttons Pack by BestWebSoft Cross-Site Scripting (1.1.0)

CVE-2017-2171 CVE-2017-2171 CVE-2017-18500

CWE-79

High

WordPress Plugin Social Connect Cross-Site Scripting (1.0.4)

CVE-2014-4551

CWE-79

High

WordPress Plugin Social Count Plus Cross-Site Scripting (3.0.2)

CWE-79

High

WordPress Plugin Social Discussions Remote File Include and Information Disclosure Vulnerabilities (6.1.1)

CWE-94 CWE-200

High

WordPress Plugin Social Essentials-Social Stats and Sharing Buttons Cross-Site Scripting (1.3.1)

CWE-79

High

WordPress Plugin SocialFit 'msg' Parameter Cross-Site Scripting (1.2.2)

CWE-79

High

WordPress Plugin Social Gallery and Widget Security Bypass (2.2.5)

CVE-2021-24752

CWE-284

High

WordPress Plugin SocialGrid 'default_services' Parameter Cross-Site Scripting (2.3)

CWE-79

High

WordPress Plugin Social Hashtags Cross-Site Scripting (3.0.0)

CWE-79

High

WordPress Plugin Social LikeBox & Feed Cross-Site Scripting (2.8.4)

CVE-2019-15781

CWE-79

High

WordPress Plugin Social Like Box and Page by WpDevArt Cross-Site Scripting (0.8.40)

CVE-2023-0177

CWE-79

High

WordPress Plugin Social Like Box and Page by WpDevArt Unspecified Vulnerability (0.8.39)

High

WordPress Plugin Social Login by BestWebSoft Cross-Site Scripting (0.1)

CVE-2017-2171 CVE-2017-2171 CVE-2017-18501

CWE-79

High

WordPress Plugin Social Login Lite For WooCommerce Security Bypass (1.6.0)

CVE-2024-4552

CWE-287

High

WordPress Plugin Social Login WP Cross-Site Request Forgery (5.0.0.0)

CVE-2022-38063

CWE-352

High

WordPress Plugin Social Media Flying Icons-Floating Social Media Icon Cross-Site Scripting (2.1)

CWE-79

High

WordPress Plugin Social Media Flying Icons-Floating Social Media Icon Multiple Unspecified Vulnerabilities (4.2.3)

High

WordPress Plugin Social Media Share Buttons & Social Sharing Icons Cross-Site Scripting (1.1.1.11)

CWE-79

High

WordPress Plugin Social Media Share Buttons & Social Sharing Icons Cross-Site Scripting (2.1.7)

CWE-79

High

WordPress Plugin Social Media Share Buttons & Social Sharing Icons Multiple Unspecified Vulnerabilities (1.2.1)

High

WordPress Plugin Social Media Share Buttons & Social Sharing Icons Security Bypass (1.5.1)

CWE-264

High

WordPress Plugin Social Media Tab Remote Code Execution (1.0.9)

CWE-94

High

WordPress Plugin Social Media Widget by Acurax Cross-Site Request Forgery (3.2.5)

CVE-2018-6357

CWE-352

High

WordPress Plugin Social Media Widget by Acurax Cross-Site Scripting (2.2)

CWE-79

High

WordPress Plugin Social Media Widget by Acurax Multiple Unspecified Vulnerabilities (3.2.3)

High

WordPress Plugin Social Media Widget Serving Spam (4.0)

CVE-2013-1949

CWE-20

High

WordPress Plugin Social Metrics Tracker Cross-Site Scripting (1.6.8)

CWE-79

High

WordPress Plugin Social Networking & E-commerce Arbitrary File Upload (0.0.32)

CWE-434

High

WordPress Plugin Social Network Tabs Information Disclosure (1.7.1)

CVE-2018-20555

CWE-200

High

WordPress Plugin Social Photo Gallery Remote Code Execution (1.0)

CVE-2019-14467

CWE-94

High

WordPress Plugin Social Review includes Backdoor [Only if downloaded via the vendor website] (1.0.8)

CVE-2021-24867

CWE-912

High

WordPress Plugin Social Rocket-Social Sharing Cross-Site Request Forgery (1.2.9)

CVE-2020-5611

CWE-352

High

WordPress Plugin Social Share Button Cross-Site Scripting (2.1)

CWE-79

High

WordPress Plugin Social Share Buttons-Social Pug Cross-Site Scripting (1.2.5)

CVE-2016-10736

CWE-79

High

WordPress Plugin Social Share Buttons-Social Pug Multiple Unspecified Vulnerabilities (1.3.1)

High

WordPress Plugin Social Share Icons & Social Share Buttons Cross-Site Scripting (3.0.5)

CWE-79

High

Standard & Premium

Severity

Vulnerability Categories

Still Have Questions?

Take action and discover your vulnerabilities