Vulnerability Name |
CVE
CWE
|
CWE |
Severity |
WordPress Plugin Unite Gallery Lite Multiple Vulnerabilities (1.4.6)
|
CWE-89
CWE-352
|
CWE-89
CWE-352
|
High
|
WordPress Plugin Universal Analytics Cross-Site Scripting (1.3.0)
|
CWE-79
|
CWE-79
|
High
|
WordPress Plugin Universal Post Manager Cross-Site Scripting and SQL Injection Vulnerabilities (1.0.9)
|
CWE-79
CWE-89
|
CWE-79
CWE-89
|
High
|
WordPress Plugin Universal Star Rating Unspecified Vulnerability (1.10.3)
|
|
|
High
|
WordPress Plugin Unlimited Elements For Elementor (Free Widgets, Addons, Templates) Cross-Site Scripting (1.5.107)
|
CVE-2024-3190
CWE-79
|
CWE-79
|
High
|
WordPress Plugin Unlimited Elements For Elementor (Free Widgets, Addons, Templates) Remote Code Execution (1.5.89)
|
CVE-2023-6743
CWE-94
|
CWE-94
|
High
|
WordPress Plugin Unlimited Elements For Elementor (Free Widgets, Addons, Templates) SQL Injection (1.5.107)
|
CVE-2024-4779
CWE-89
|
CWE-89
|
High
|
WordPress Plugin Unlimited Elements For Elementor (Free Widgets, Addons, Templates) SQL Injection (1.5.109)
|
CVE-2024-5329
CWE-89
|
CWE-89
|
High
|
WordPress Plugin Unlimited Pop-Ups Multiple Cross-Site Scripting Vulnerabilities (1.4.3)
|
CWE-79
|
CWE-79
|
High
|
WordPress Plugin Unlimited PopUps SQL Injection (4.5.3)
|
CVE-2021-24631
CWE-89
|
CWE-89
|
High
|
WordPress Plugin Unyson Information Disclosure (2.7.18)
|
CWE-200
|
CWE-200
|
High
|
WordPress Plugin Updater by BestWebSoft Cross-Site Scripting (1.34)
|
CVE-2017-2171
CVE-2017-2171
CVE-2017-18565
CWE-79
|
CWE-79
|
High
|
WordPress Plugin UpdraftPlus WordPress Backup Cross-Site Request Forgery (1.22.24)
|
CWE-352
|
CWE-352
|
High
|
WordPress Plugin UpdraftPlus WordPress Backup Cross-Site Request Forgery (1.23.3)
|
CVE-2023-32960
CWE-352
|
CWE-352
|
High
|
WordPress Plugin UpdraftPlus WordPress Backup Cross-Site Scripting (1.9.63)
|
CVE-2015-9360
CWE-79
|
CWE-79
|
High
|
WordPress Plugin UpdraftPlus WordPress Backup Cross-Site Scripting (1.13.4)
|
CVE-2017-18593
CWE-79
|
CWE-79
|
High
|
WordPress Plugin UpdraftPlus WordPress Backup Cross-Site Scripting (1.16.65)
|
CVE-2021-25022
CWE-79
|
CWE-79
|
High
|
WordPress Plugin UpdraftPlus WordPress Backup Cross-Site Scripting (1.16.68)
|
CVE-2021-25089
CWE-79
|
CWE-79
|
High
|
WordPress Plugin UpdraftPlus WordPress Backup Cross-Site Scripting (1.22.8)
|
CVE-2022-0864
CWE-79
|
CWE-79
|
High
|
WordPress Plugin UpdraftPlus WordPress Backup Multiple Vulnerabilities (1.16.58)
|
CVE-2021-24423
CWE-22
CWE-79
|
CWE-22
CWE-79
|
High
|
WordPress Plugin UpdraftPlus WordPress Backup Privilege Escalation (1.23.2)
|
CWE-269
|
CWE-269
|
High
|
WordPress Plugin UpdraftPlus WordPress Backup Security Bypass (1.9.50)
|
CWE-264
|
CWE-264
|
High
|
WordPress Plugin UpdraftPlus WordPress Backup Security Bypass (1.22.1)
|
CVE-2022-0633
CWE-264
|
CWE-264
|
High
|
WordPress Plugin UpiCRM-Free WordPress CRM and Lead Management Information Disclosure (2.1.8.5)
|
CWE-538
|
CWE-538
|
High
|
WordPress Plugin Uploader 'num' Parameter Cross-Site Scripting (1.0.0)
|
CWE-79
|
CWE-79
|
High
|
WordPress Plugin Uploader 'uploadify.php' Arbitrary File Upload (1.0.4)
|
CWE-434
|
CWE-434
|
High
|
WordPress Plugin Uploader Cross-Site Scripting and Arbitrary File Upload Vulnerabilities (1.0.4)
|
CVE-2013-2287
CVE-2013-2288
CWE-79
CWE-434
|
CWE-79
CWE-434
|
High
|
WordPress Plugin Upload File Type Settings Cross-Site Scripting (1.1)
|
CVE-2023-25781
CWE-79
|
CWE-79
|
High
|
WordPress Plugin Uploadify Integration Multiple Cross-Site Scripting Vulnerabilities (0.9.6)
|
CWE-79
|
CWE-79
|
High
|
WordPress Plugin Uploadify Remote File Upload (1.0)
|
CWE-20
|
CWE-20
|
High
|
WordPress Plugin UPM Polls 'PID' Parameter SQL Injection (1.0.4)
|
CWE-89
|
CWE-89
|
High
|
WordPress Plugin UPM Polls 'qid' Parameter SQL Injection (1.0.3)
|
CWE-89
|
CWE-89
|
High
|
WordPress Plugin URL Cloak & Encrypt Cross-Site Scripting (2.0)
|
CVE-2014-4563
CWE-79
|
CWE-79
|
High
|
WordPress Plugin Use Any Font Unspecified Vulnerability (4.3.6)
|
|
|
High
|
WordPress Plugin User Access Manager Cross-Site Scripting (1.2.6.7)
|
CWE-79
|
CWE-79
|
High
|
WordPress Plugin User Access Manager Cross-Site Scripting (1.2.14)
|
CWE-79
|
CWE-79
|
High
|
WordPress Plugin User Access Manager Unspecified Vulnerability (1.2.6.9)
|
|
|
High
|
WordPress Plugin User Activation Email Cross-Site Scripting (1.3.0)
|
CVE-2021-38325
CWE-79
|
CWE-79
|
High
|
WordPress Plugin User Activity Log Multiple Cross-Site Scripting Vulnerabilities (1.4.6)
|
CWE-79
|
CWE-79
|
High
|
WordPress Plugin User Activity Log Multiple Vulnerabilities (1.2.4)
|
CWE-79
CWE-352
|
CWE-79
CWE-352
|
High
|
WordPress Plugin User Activity Security Bypass (1.0.1)
|
CVE-2022-4550
CWE-290
|
CWE-290
|
High
|
WordPress Plugin User Avatar TimThumb Arbitrary File Upload (1.3.7)
|
CVE-2011-4106
CWE-20
|
CWE-20
|
High
|
WordPress Plugin User Avatar Unspecified Vulnerability (1.4.6)
|
|
|
High
|
WordPress Plugin User Control SQL Injection (2.1.0)
|
CWE-89
|
CWE-89
|
High
|
WordPress Plugin User Domain Whitelist Multiple Vulnerabilities (1.4)
|
CWE-79
CWE-352
|
CWE-79
CWE-352
|
High
|
WordPress Plugin user files Arbitrary File Upload (2.4.2)
|
CWE-434
|
CWE-434
|
High
|
WordPress Plugin User Login History Multiple Cross-Site Scripting Vulnerabilities (1.5.2)
|
CVE-2017-15867
CWE-79
|
CWE-79
|
High
|
WordPress Plugin User Login Log Cross-Site Scripting (2.2.2)
|
CWE-79
|
CWE-79
|
High
|
WordPress Plugin User Meta 'uploader.php' Arbitrary File Upload (1.1.1)
|
CWE-434
|
CWE-434
|
High
|
WordPress Plugin User Meta Manager Information Disclosure (3.4.7)
|
CWE-200
|
CWE-200
|
High
|
WordPress Plugin User Meta Manager Multiple Vulnerabilities (3.4.6)
|
CWE-89
CWE-264
|
CWE-89
CWE-264
|
High
|
WordPress Plugin Username Changer Multiple Vulnerabilities (1.4)
|
CWE-89
CWE-264
|
CWE-89
CWE-264
|
High
|
WordPress Plugin Usernoise modal feedback/contact form Cross-Site Scripting (3.7.8)
|
CWE-79
|
CWE-79
|
High
|
WordPress Plugin User Photo 'user-photo.php' Arbitrary File Upload (0.9.4)
|
CVE-2013-1916
CWE-20
|
CWE-20
|
High
|
WordPress Plugin User Photo Cross-Site Scripting (0.9.5.1)
|
CVE-2012-2920
CWE-79
|
CWE-79
|
High
|
WordPress Plugin UserPro-Community and User Profile Cross-Site Scripting (2.33)
|
CWE-79
|
CWE-79
|
High
|
WordPress Plugin UserPro-Community and User Profile Cross-Site Scripting (4.9.23)
|
CVE-2018-16285
CWE-79
|
CWE-79
|
High
|
WordPress Plugin UserPro-Community and User Profile Cross-Site Scripting (4.9.33)
|
CVE-2019-14470
CWE-79
|
CWE-79
|
High
|
WordPress Plugin UserPro-Community and User Profile Multiple Cross-Site Request Forgery Vulnerabilities (5.1.0)
|
CVE-2023-2438
CVE-2023-2497
CWE-352
|
CWE-352
|
High
|
WordPress Plugin UserPro-Community and User Profile Multiple Vulnerabilities (5.1.1)
|
CVE-2023-2437
CVE-2023-2440
CVE-2023-2446
CVE-2023-2447
CVE-2023-2449
CVE-2023-6007
CVE-2023-6008
CWE-200
CWE-269
CWE-345
CWE-352
CWE-862
|
CWE-200
CWE-269
CWE-345
CWE-352
CWE-862
|
High
|
WordPress Plugin UserPro-Community and User Profile Multiple Vulnerabilities (5.1.4)
|
CVE-2023-2448
CVE-2023-6009
CWE-269
CWE-862
|
CWE-269
CWE-862
|
High
|
WordPress Plugin UserPro-Community and User Profile Privilege Escalation (4.9.20)
|
CWE-264
|
CWE-264
|
High
|
WordPress Plugin UserPro-Community and User Profile Privilege Escalation (4.9.27)
|
CWE-264
|
CWE-264
|
High
|
WordPress Plugin UserPro-Community and User Profile Security Bypass (4.9.17)
|
CVE-2017-16562
CWE-287
|
CWE-287
|
High
|
WordPress Plugin User Profile Builder-Beautiful User Registration Forms, User Profiles & User Role Editor 'key' Parameter Security Bypass (1.1.24)
|
CWE-264
|
CWE-264
|
High
|
WordPress Plugin User Profile Builder-Beautiful User Registration Forms, User Profiles & User Role Editor Cross-Site Request Forgery (3.6.4)
|
CVE-2021-36915
CWE-352
|
CWE-352
|
High
|
WordPress Plugin User Profile Builder-Beautiful User Registration Forms, User Profiles & User Role Editor Cross-Site Scripting (2.0.2)
|
CVE-2014-8492
CWE-79
|
CWE-79
|
High
|
WordPress Plugin User Profile Builder-Beautiful User Registration Forms, User Profiles & User Role Editor Cross-Site Scripting (2.2.4)
|
CWE-79
|
CWE-79
|
High
|
WordPress Plugin User Profile Builder-Beautiful User Registration Forms, User Profiles & User Role Editor Cross-Site Scripting (2.4.1)
|
CWE-79
|
CWE-79
|
High
|
WordPress Plugin User Profile Builder-Beautiful User Registration Forms, User Profiles & User Role Editor Cross-Site Scripting (3.4.7)
|
CVE-2021-24448
CWE-79
|
CWE-79
|
High
|
WordPress Plugin User Profile Builder-Beautiful User Registration Forms, User Profiles & User Role Editor Cross-Site Scripting (3.6.1)
|
CVE-2022-0653
CWE-79
|
CWE-79
|
High
|
WordPress Plugin User Profile Builder-Beautiful User Registration Forms, User Profiles & User Role Editor Cross-Site Scripting (3.6.7)
|
CVE-2022-0884
CWE-79
|
CWE-79
|
High
|
WordPress Plugin User Profile Builder-Beautiful User Registration Forms, User Profiles & User Role Editor Information Disclosure (3.9.0)
|
CVE-2023-0814
CWE-200
|
CWE-200
|
High
|
WordPress Plugin User Profile Builder-Beautiful User Registration Forms, User Profiles & User Role Editor Multiple Cross-Site Scripting Vulnerabilities (1.1.65)
|
CWE-79
|
CWE-79
|
High
|
WordPress Plugin User Profile Builder-Beautiful User Registration Forms, User Profiles & User Role Editor Multiple Unspecified Vulnerabilities (2.5.7)
|
|
|
High
|