Vulnerability Name CVE Severity
WordPress Plugin Theme Editor Multiple Vulnerabilities (2.1)
WordPress Plugin ThemeGrill Demo Importer Cross-Site Request Forgery (1.6.2)
WordPress Plugin ThemeGrill Demo Importer Security Bypass (1.6.1)
WordPress Plugin ThemeHigh WooCommerce Wishlist and Comparison Cross-Site Request Forgery (1.0.4)
WordPress Plugin Theme My Login 'instance' Parameter Cross-Site Scripting (6.1.4)
WordPress Plugin Theme My Login Local File Inclusion (6.3.9) CVE-2014-5155
WordPress Plugin Theme My Login Security Bypass (6.4.6)
WordPress Plugin ThemeREX Addons Remote Code Execution (All) CVE-2020-10257
WordPress Plugin Theme Test Drive Multiple Vulnerabilities (2.9)
WordPress Plugin Theme Tuner 'tt-abspath' Parameter Remote File Include (0.7) CVE-2012-0934
WordPress Plugin Theme Tweaker Cross-Site Request Forgery (5.20) CVE-2023-23713
WordPress Plugin Themify-WooCommerce Product Filter SQL Injection (1.4.9) CVE-2024-6027
WordPress Plugin Themify Builder Cross-Site Scripting (5.3.1)
WordPress Plugin Themify Portfolio Post Cross-Site Scripting (1.1.5) CVE-2021-24129
WordPress Plugin Themify Portfolio Post Cross-Site Scripting (1.1.6) CVE-2022-0200
WordPress Plugin Themify Portfolio Post Cross-Site Scripting (1.1.9)
WordPress Plugin Themify Portfolio Post Cross-Site Scripting (1.2.0) CVE-2022-4464
WordPress Plugin Themify Portfolio Post Cross-Site Scripting (1.2.1) CVE-2023-0362
WordPress Plugin The Official Facebook Chat Cross-Site Request Forgery (1.2)
WordPress Plugin The Official Facebook Chat Security Bypass (1.5)
WordPress Plugin The Piecemaker 'php.php' Arbitrary File Upload (1.1)
WordPress Plugin The Plus Addons for Elementor Cross-Site Scripting (4.1.11) CVE-2021-24351
WordPress Plugin The Plus Addons for Elementor Open Redirect (4.1.9) CVE-2021-24358
WordPress Plugin The Plus Addons for Elementor Page Builder Lite Multiple Cross-Site Scripting Vulnerabilities (2.0.5) CVE-2021-24266
WordPress Plugin The Plus Addons for Elementor Security Bypass (4.1.6) CVE-2021-24175
WordPress Plugin The Plus Addons for Elementor Security Bypass (4.1.10) CVE-2021-24359
WordPress Plugin The Post Grid-Shortcode, Gutenberg Blocks and Elementor Addon for Post Grid Cross-Site Request Forgery (5.0.4) CVE-2022-46853
WordPress Plugin The Sorter SQL Injection (1.0) CVE-2021-24399
WordPress Plugin TheThe Layout Grid Cross-Site Scripting (1.0.0) CVE-2013-1808
WordPress Plugin The Welcomizer 'twiz-index.php' Cross-Site Scripting (1.3.9.4)
WordPress Plugin ThinkIT WP Contact Form Multiple Vulnerabilities (0.2)
WordPress Plugin ThinkTwit Cross-Site Scripting (1.7.0) CVE-2021-24582
WordPress Plugin ThinkTwit Security Bypass (1.5.1)
WordPress Plugin Thinkun Remind 'dirPath' Parameter Information Disclosure (1.1.3)
WordPress Plugin ThirstyAffiliates Affiliate Link Manager Cross-Site Scripting (3.9.2) CVE-2021-24127
WordPress Plugin ThreeWP Email Reflector 'Subject' Field Cross-Site Scripting (1.15) CVE-2012-2572
WordPress Plugin Thrive Apprentice Security Bypass (2.3.9.3) CVE-2021-24219
WordPress Plugin Thrive Architect Security Bypass (2.6.7.3) CVE-2021-24219
WordPress Plugin Thrive Clever Widgets Security Bypass (1.56) CVE-2021-24219
WordPress Plugin Thrive Comments Security Bypass (1.4.15.2) CVE-2021-24219
WordPress Plugin Thrive Dashboard Security Bypass (2.3.9.2) CVE-2021-24219
WordPress Plugin Thrive Headline Optimizer Security Bypass (1.3.7.2) CVE-2021-24219
WordPress Plugin Thrive Leads Security Bypass (2.3.9.3) CVE-2021-24219
WordPress Plugin Thrive Optimize Security Bypass (1.4.13.2) CVE-2021-24219
WordPress Plugin Thrive Ovation Security Bypass (2.4.4) CVE-2021-24219
WordPress Plugin Thrive Quiz Builder Security Bypass (2.3.9.3) CVE-2021-24219
WordPress Plugin Thrive Themes Builder Security Bypass (2.2.3) CVE-2021-24219
WordPress Plugin Thrive Ultimatum Security Bypass (2.3.9.3) CVE-2021-24219
WordPress Plugin Thumbnail carousel slider Arbitrary File Upload (1.0)
WordPress Plugin Tickera-WordPress Event Ticketing Cross-Site Request Forgery (3.4.9.9) CVE-2022-4549
WordPress Plugin Tickera-WordPress Event Ticketing Cross-Site Request Forgery (3.5.1.0) CVE-2023-23726
WordPress Plugin Tickera-WordPress Event Ticketing Cross-Site Scripting (3.4.8.2) CVE-2021-24797
WordPress Plugin Tickera-WordPress Event Ticketing Security Bypass (3.4.9.1)
WordPress Plugin Tickera-WordPress Event Ticketing Unspecified Vulnerability (3.4.6.7)
WordPress Plugin Ticket Manager Cross-Site Scripting (1)
WordPress Plugin Ticketrilla:Client PHP Object Injection (1.0.1)
WordPress Plugin Tidio Gallery Multiple Vulnerabilities (1.1) CVE-2016-1000153
WordPress Plugin Tidio Live Chat Cross-Site Request Forgery (4.1.0)
WordPress Plugin Tierra's Billboard Manager SQL Injection (1.14)
WordPress Plugin Tigris for Salesforce PHP Object Injection (1.1.3)
WordPress Plugin Timber Cross-Site Scripting (1.2.2)
WordPress Plugin Timed Content Cross-Site Scripting (2.72) CVE-2023-0067
WordPress Plugin Timed Popup Cross-Site Request Forgery (1.3) CVE-2014-9525
WordPress Plugin Timeline Calendar SQL Injection (1.2) CVE-2021-24553
WordPress Plugin Timeline Event History PHP Object Injection (3.1) CVE-2024-5726
WordPress Plugin Timesheet by BestWebSoft Cross-Site Scripting (0.1.4) CVE-2017-2171
WordPress Plugin Time Sheets Cross-Site Scripting (1.4.2)
WordPress Plugin Time Sheets Multiple Cross-Site Scripting Vulnerabilities (1.5.1)
WordPress Plugin Timetable and Event Schedule by MotoPress Cross-Site Request Forgery (2.4.1) CVE-2021-24583 CVE-2021-24584
WordPress Plugin Timetable and Event Schedule by MotoPress Cross-Site Scripting (2.3.18) CVE-2021-24724
WordPress Plugin Timetable and Event Schedule by MotoPress Information Disclosure (2.3.19) CVE-2021-24585
WordPress Plugin Timetable and Event Schedule by MotoPress Unspecified Vulnerability (2.4.3)
WordPress Plugin TinyMCE Advanced Cross-Site Request Forgery (4.1)
WordPress Plugin TinyMCE Color Picker Multiple Vulnerabilities (1.1) CVE-2014-3844 CVE-2014-3845
WordPress Plugin TinyMCE Custom Styles Cross-Site Scripting (1.1.2) CVE-2023-23995