Vulnerability Name CVE Severity
WordPress Plugin Spotlight Cross-Site Scripting (4.7) CVE-2014-4552
WordPress Plugin Spotlight Social Feeds [Block, Shortcode, and Widget] Cross-Site Scripting (1.4.2) CVE-2023-0379
WordPress Plugin Spotlight Social Feeds [Block, Shortcode, and Widget] Security Bypass (0.10.1)
WordPress Plugin SP Project & Document Manager Arbitrary File Upload (4.21) CVE-2021-24347
WordPress Plugin SP Project & Document Manager Arbitrary File Upload (4.22)
WordPress Plugin SP Project & Document Manager Cross-Site Scripting (4.25) CVE-2021-38315
WordPress Plugin SP Project & Document Manager Multiple SQL Injection Vulnerabilities (2.4.3) CVE-2014-9178
WordPress Plugin SP Project & Document Manager Multiple Vulnerabilities (2.5.9.7)
WordPress Plugin SP Project & Document Manager SQL Injection (2.5.3)
WordPress Plugin SP Project & Document Manager Unspecified Vulnerability (2.5.7.3)
WordPress Plugin SP Project & Document Manager Unspecified Vulnerability (2.5.8.0)
WordPress Plugin SP Project & Document Manager Unspecified Vulnerability (2.6.2.5)
WordPress Plugin Spreadsheet (wpSS) 'ss_id' Parameter SQL Injection (0.61) CVE-2008-1982
WordPress Plugin Spreadsheet (wpSS) Cross-Site Scripting (0.62) CVE-2014-8364
WordPress Plugin Spreadsheet (wpSS) SQL Injection (0.62) CVE-2014-8363
WordPress Plugin Spreadsheet Cross-Site Scripting (2.0) CVE-2013-6281
WordPress Plugin SP Rental Manager SQL Injection (1.5.3) CVE-2021-38324
WordPress Plugin Spryng Payments for WooCommerce Cross-Site Scripting (1.6.7)
WordPress Plugin Squeeze Arbitrary File Upload (1.4) CVE-2024-35767
WordPress Plugin SrbTransLatin Multiple Vulnerabilities (1.46) CVE-2018-5368 CVE-2018-5369
WordPress Plugin SRS Simple Hits Counter SQL Injection (1.0.4) CVE-2020-5766
WordPress Plugin SS Downloads Cross-Site Request Forgery and Information Disclosure Vulnerabilities (1.4.3)
WordPress Plugin SS Downloads Multiple Cross-Site Scripting Vulnerabilities (1.4.4.1) CVE-2014-4554
WordPress Plugin SSL Insecure Content Fixer Information Disclosure (2.0.0)
WordPress Plugin SS Quiz Cross-Site Request Forgery and Access Security Bypass Vulnerabilities (1.11)
WordPress Plugin SS Quiz Multiple Unspecified Vulnerabilities (1.12)
WordPress Plugin St-Daily-Tip Cross-Site Request Forgery (4.7) CVE-2021-24487
WordPress Plugin Staff Directory-Employee Directory for WordPress Unspecified Vulnerability (3.6.1)
WordPress Plugin Staff Directory:Company Directory Cross-Site Request Forgery (3.6)
WordPress Plugin StageShow Multiple Vulnerabilities (5.0.8) CVE-2015-5461
WordPress Plugin Stallion WordPress SEO Cross-Site Scripting (2.0)
WordPress Plugin Starbox-the Author Box for Humans Cross-Site Scripting (3.0.8)
WordPress Plugin Starfish Review Generation & Marketing for WordPress Security Bypass (2.0.0)
WordPress Plugin Stars Menu Cross-Site Scripting (1.0.1) CVE-2021-24435
WordPress Plugin Starter Templates-Elementor, WordPress & Beaver Builder Templates Cross-Site Request Forgery (3.1.20) CVE-2022-46851
WordPress Plugin Starter Templates-Elementor, WordPress & Beaver Builder Templates Cross-Site Scripting (1.3.20)
WordPress Plugin Starter Templates-Elementor, WordPress & Beaver Builder Templates Security Bypass (2.7.0) CVE-2021-42360
WordPress Plugin Startklar Elementor Addons Arbitrary File Deletion (1.7.13) CVE-2024-4346
WordPress Plugin Startklar Elementor Addons Arbitrary File Upload (1.7.13) CVE-2024-4345
WordPress Plugin Startklar Elementor Addons Directory Traversal (1.7.15) CVE-2024-5153
WordPress Plugin Station Pro Cross-Site Scripting (2.2.1) CVE-2021-24435
WordPress Plugin Statistics Remote Code Execution (1.8)
WordPress Plugin StatPressCN 'wp-admin/admin.php' Multiple Cross-Site Scripting Vulnerabilities (1.9.0) CVE-2011-0641
WordPress Plugin StatPress Cross-Site Scripting (1.2.9.1)
WordPress Plugin StatPress Multiple Unspecified Vulnerabilities (1.4.1)
WordPress Plugin Stealth Login Page Unspecified Vulnerability (1.1.3)
WordPress Plugin Stetic Cross-Site Request Forgery (1.0.6) CVE-2021-42364
WordPress Plugin Sticky Ad Bar Cross-Site Scripting (1.3.1) CVE-2023-25784
WordPress Plugin Sticky Menu, Sticky Header (or anything!) on Scroll Cross-Site Request Forgery (2.2)
WordPress Plugin Sticky Menu on Scroll, Sticky Header, Sticky Welcome Bar for Any Theme-myStickymenu Unspecified Vulnerability (2.1.4)
WordPress Plugin Sticky Popup Cross-Site Scripting (1.2) CVE-2022-1750
WordPress Plugin Sticky Related Posts Cross-Site Scripting (1.0) CVE-2021-24435
WordPress Plugin stm-megamenu Local File Inclusion (2.3.12) CVE-2024-35677
WordPress Plugin Stockdio Historical Chart Cross-Site Scripting (2.7.2) CVE-2020-28707
WordPress Plugin Stock in & out Cross-Site Scripting (1.0.4) CVE-2021-24346
WordPress Plugin Stock in & out SQL Injection (1.0.4)
WordPress Plugin Stockists Manager for Woocommerce Cross-Site Request Forgery (1.0.2.1) CVE-2022-2518
WordPress Plugin Stock market charts from finviz Cross-Site Scripting (1.0) CVE-2023-23809
WordPress Plugin Stock Ticker Security Bypass (3.23.0) CVE-2023-27626
WordPress Plugin Stop Spammers Security-Block Spam Users, Comments, Forms Cross-Site Scripting (6.15)
WordPress Plugin Stop Spammers Security-Block Spam Users, Comments, Forms Cross-Site Scripting (2021.8) CVE-2021-24245
WordPress Plugin Stop Spammers Security-Block Spam Users, Comments, Forms Cross-Site Scripting (2021.17) CVE-2021-24517
WordPress Plugin Stop User Enumeration Cross-Site Scripting (1.3.7) CVE-2017-18536
WordPress Plugin Stop User Enumeration Security Bypass (1.3.18)
WordPress Plugin Stop User Enumeration User Enumeration (1.2.4)
WordPress Plugin Stop User Enumeration User Enumeration (1.3.4)
WordPress Plugin Stop User Enumeration User Enumeration (1.3.8)
WordPress Plugin Storefront Footer Text Cross-Site Scripting (1.0.1) CVE-2021-24607
WordPress Plugin Store Locator for WordPress with Google Maps-LotsOfLocales Cross-Site Request Forgery (3.98.7)
WordPress Plugin Store Locator for WordPress with Google Maps-LotsOfLocales SQL Injection (3.11) CVE-2014-8621
WordPress Plugin Store Locator for WordPress with Google Maps-LotsOfLocales SQL Injection (3.33.1)
WordPress Plugin Store Locator Plus for WordPress Cross-Site Scripting (4.5.10)
WordPress Plugin Store Locator Plus for WordPress Cross-Site Scripting (5.5.15) CVE-2021-24290
WordPress Plugin Store Locator Plus for WordPress Multiple Vulnerabilities (3.0.1)
WordPress Plugin Store Locator Plus for WordPress Open Email Relay (4.2.25)