Vulnerability Name CVE Severity
WordPress Plugin TubePress Cross-Site Scripting (1.6.0)
WordPress Plugin Tune Library 'letter' Parameter SQL Injection (1.5.1)
WordPress Plugin Tune Library SQL Injection (1.5.4) CVE-2015-3314
WordPress Plugin Tutor LMS-eLearning and online course solution Cross-Site Request Forgery (1.5.2) CVE-2020-8615
WordPress Plugin Tutor LMS-eLearning and online course solution Cross-Site Request Forgery (2.6.1) CVE-2024-1503
WordPress Plugin Tutor LMS-eLearning and online course solution Cross-Site Scripting (1.9.1) CVE-2021-24455
WordPress Plugin Tutor LMS-eLearning and online course solution Cross-Site Scripting (1.9.5)
WordPress Plugin Tutor LMS-eLearning and online course solution Cross-Site Scripting (1.9.10) CVE-2021-24873
WordPress Plugin Tutor LMS-eLearning and online course solution Cross-Site Scripting (1.9.11) CVE-2021-25017
WordPress Plugin Tutor LMS-eLearning and online course solution Cross-Site Scripting (1.9.14)
WordPress Plugin Tutor LMS-eLearning and online course solution Cross-Site Scripting (2.0.9) CVE-2022-2563
WordPress Plugin Tutor LMS-eLearning and online course solution Cross-Site Scripting (2.6.2) CVE-2024-3994
WordPress Plugin Tutor LMS-eLearning and online course solution Insecure Direct Object Reference (2.7.0) CVE-2024-4279
WordPress Plugin Tutor LMS-eLearning and online course solution Local File Inclusion (1.8.7) CVE-2021-24242
WordPress Plugin Tutor LMS-eLearning and online course solution Multiple Cross-Site Scripting Vulnerabilities (1.9.8) CVE-2021-24740
WordPress Plugin Tutor LMS-eLearning and online course solution Multiple Vulnerabilities (1.7.6) CVE-2021-24181 CVE-2021-24184 CVE-2021-24185
WordPress Plugin Tutor LMS-eLearning and online course solution Security Bypass (2.6.1) CVE-2024-1502
WordPress Plugin Tutor LMS-eLearning and online course solution Security Bypass (2.6.2) CVE-2024-3553
WordPress Plugin Tutor LMS-eLearning and online course solution Security Bypass (2.7.0) CVE-2024-4223
WordPress Plugin Tutor LMS-eLearning and online course solution SQL Injection (1.8.2) CVE-2021-24182 CVE-2021-24183 CVE-2021-24186
WordPress Plugin Tutor LMS-eLearning and online course solution SQL Injection (2.6.1) CVE-2024-1751
WordPress Plugin Tutor LMS-eLearning and online course solution SQL Injection (2.7.0) CVE-2024-4318
WordPress Plugin Tutor LMS Elementor Addons Cross-Site Scripting (2.1.3) CVE-2024-29913
WordPress Plugin Tweet Blender Cross-Site Scripting (4.0.1) CVE-2013-6342
WordPress Plugin TweetScribe Cross-Site Request Forgery (1.1) CVE-2014-9399
WordPress Plugin Tweet Wheel Multiple Cross-Site Scripting Vulnerabilities (1.0.3.2)
WordPress Plugin Tweet Wheel Spam (0.3)
WordPress Plugin Twenty20 Image Before-After Cross-Site Scripting (1.5.9) CVE-2022-4580
WordPress Plugin Twenty20 Image Before-After Malicious Code (1.6.3) CVE-2024-6297
WordPress Plugin twimp-wp-twitter multi publisher Cross-Site Request Forgery (0.1) CVE-2014-9397
WordPress Plugin Twitch Player Cross-Site Scripting (2.1.0) CVE-2023-25464
WordPress Plugin Twitget Cross-Site Request Forgery (3.3.2) CVE-2014-2559 CVE-2014-2995
WordPress Plugin Twitter Button by BestWebSoft Cross-Site Request Forgery (2.14)
WordPress Plugin Twitter Button by BestWebSoft Cross-Site Scripting (2.54) CVE-2017-2171 CVE-2017-2171 CVE-2017-18505
WordPress Plugin Twitter Button by BestWebSoft Multiple Cross-Site Scripting Vulnerabilities (2.36)
WordPress Plugin Twitter Cards Meta Multiple Vulnerabilities (2.4.5)
WordPress Plugin TwitterCart Security Bypass (2.0)
WordPress Plugin twitterDash Cross-Site Request Forgery (2.1) CVE-2014-9368
WordPress Plugin Twitter Feed:Embedded Timeline 'url' Parameter Cross-Site Scripting (0.3.1) CVE-2010-4825
WordPress Plugin Twitter Feed Cross-Site Scripting (2.0.4)
WordPress Plugin Twitter Friends Widget Cross-Site Scripting (3.1) CVE-2021-38322
WordPress Plugin Twitter LiveBlog Cross-Site Request Forgery (1.1.2) CVE-2014-9398
WordPress Plugin Two-Factor Authentication-Clockwork SMS Cross-Site Scripting (1.0.3) CVE-2017-17780
WordPress Plugin Two Factor Authentication Cross-Site Request Forgery (1.3.12) CVE-2018-20231
WordPress Plugin Two Factor Authentication Cross-Site Scripting (1.0.7)
WordPress Plugin Two Way CHAT-Send or receive messages to your user Multiple Vulnerabilities (3.1.4)
WordPress Plugin typofr Cross-Site Scripting (0.11) CVE-2021-34657
WordPress Plugin U BuddyPress Forum Attachment 'fileurl' Parameter Remote File Disclosure (1.1.1)
WordPress Plugin uCan Post Multiple HTML Injection Vulnerabilities (1.0.09)
WordPress Plugin uCare-Support Ticket System Cross-Site Scripting (1.2.1)
WordPress Plugin uContext for Amazon Cross-Site Request Forgery (3.9.1) CVE-2022-2541
WordPress Plugin uContext for Clickbank Cross-Site Request Forgery (3.9.1) CVE-2022-2542
WordPress Plugin U Extended Comment 'fileurl' Parameter Arbitrary File Download (1.0.1)
WordPress Plugin UiPress lite-Effortless custom dashboards, admin themes and pages SQL Injection (3.4.06) CVE-2024-38788
WordPress Plugin Uji Countdown Cross-Site Scripting (2.0.6)
WordPress Plugin Uji Countdown Cross-Site Scripting (2.2) CVE-2022-3837
WordPress Plugin UK Cookie Consent Cross-Site Scripting (2.3.9) CVE-2018-10310
WordPress Plugin UK Cookie Cross-Site Request Forgery (1.1) CVE-2013-2180
WordPress Plugin Ultimate Addons for Beaver Builder Cross-Site Scripting (1.24.3)
WordPress Plugin Ultimate Addons for Beaver Builder Security Bypass (1.24.0)
WordPress Plugin Ultimate Addons for Elementor Multiple Cross-Site Scripting Vulnerabilities (1.29.2) CVE-2021-24271
WordPress Plugin Ultimate Addons for Elementor Security Bypass (1.20.0)
WordPress Plugin Ultimate Addons for Elementor Security Bypass (1.24.1) CVE-2020-13125
WordPress Plugin Ultimate Addons for Visual Composer Multiple Vulnerabilities (3.16.10)
WordPress Plugin Ultimate Affiliate Pro Multiple Cross-Site Scripting Vulnerabilities (3.6)
WordPress Plugin Ultimate Appointment Booking & Scheduling Cross-Site Scripting (1.1.9) CVE-2020-24313
WordPress Plugin Ultimate Appointment Booking & Scheduling Unspecified Vulnerability (1.1.10)
WordPress Plugin Ultimate Category Excluder Cross-Site Request Forgery (1.1) CVE-2020-35135
WordPress Plugin Ultimate Coming Soon, Maintenance Mode for WordPress-Everest Coming Soon Lite includes Backdoor [Only if downloaded via the vendor website] (1.1.0) CVE-2021-24867
WordPress Plugin Ultimate FAQ Cross-Site Scripting (1.8.21) CVE-2019-15643
WordPress Plugin Ultimate FAQ Cross-Site Scripting (1.8.29) CVE-2020-7107
WordPress Plugin Ultimate FAQ Security Bypass (1.8.24) CVE-2019-17232 CVE-2019-17233
WordPress Plugin Ultimate GDPR & CCPA Compliance Toolkit for WordPress Security Bypass (2.4)
WordPress Plugin Ultimate Gift Cards For WooCommerce Cross-Site Request Forgery (2.1.1)
WordPress Plugin Ultimate Google Analytics Cross-Site Request Forgery (1.6.0)