Vulnerability Name CVE Severity
WordPress Plugin Word of the day Arbitrary File Upload (1.0)
WordPress Plugin WordPoints Multiple Vulnerabilities (1.7.0)
WordPress Plugin WordPoints Multiple Vulnerabilities (1.10.2)
WordPress Plugin WordPress+Microsoft Office 365/Azure AD-LOGIN Cross-Site Scripting (15.3) CVE-2021-43409
WordPress Plugin WordPress+Microsoft Office 365/Azure AD-LOGIN Unspecified Vulnerability (11.6) CVE-2020-26511
WordPress Plugin WordPress-Amazon-Associate (WPAA) Cross-Site Scripting (2.0)
WordPress Plugin WordPress-Amazon-Associate (WPAA) Multiple Cross-Site Scripting Vulnerabilities (1.7.3)
WordPress Plugin WordPress.com Custom CSS Cross-Site Scripting (1.5)
WordPress Plugin WordPress Access Areas Security Bypass (1.3.0)
WordPress Plugin WordPress Advanced Ticket System, Elite Support Helpdesk Cross-Site Scripting (1.0.63) CVE-2021-24623
WordPress Plugin WordPress Ad Widget Local File Inclusion (2.11.0)
WordPress Plugin WordPress Affiliates-SliceWP Cross-Site Scripting (1.0.45)
WordPress Plugin WordPress Alipay/Tenpay/PayPal Cross-Site Scripting (3.6.0) CVE-2014-4514
WordPress Plugin WordPress Alipay/Tenpay/PayPal SQL Injection (3.7.2) CVE-2021-24390
WordPress Plugin WordPress Appointment Booking and Online Scheduling by Appointy Cross-Site Scripting (2.40)
WordPress Plugin WordPress Appointment Schedule Booking System Cross-Site Scripting (1.0)
WordPress Plugin WordPress Automatic 'q' Parameter SQL Injection (2.0.3)
WordPress Plugin WordPress Automatic Security Bypass (3.53.2)
WordPress Plugin WordPress Automatic SQL Injection (3.92.0) CVE-2024-27956
WordPress Plugin WordPress Backend Customizer-Everest Admin Theme Lite includes Backdoor [Only if downloaded via the vendor website] (1.0.7) CVE-2021-24867
WordPress Plugin WordPress Backup and Migrate-Backup Guard Arbitrary File Upload (1.0.2)
WordPress Plugin WordPress Backup and Migrate-Backup Guard Arbitrary File Upload (1.5.9) CVE-2021-24155
WordPress Plugin WordPress Backup and Migrate-Backup Guard Cross-Site Request Forgery (1.1.90)
WordPress Plugin WordPress Backup and Migrate-Backup Guard Cross-Site Scripting (1.1.46) CVE-2017-10837
WordPress Plugin WordPress Backup and Migrate-Backup Guard Multiple Unspecified Vulnerabilities (1.1.29)
WordPress Plugin WordPress Backup and Migrate-Backup Guard Multiple Unspecified Vulnerabilities (1.1.32)
WordPress Plugin WordPress Backup and Migrate-Backup Guard Unspecified Vulnerability (1.0.6)
WordPress Plugin WordPress Backup to Dropbox Cross-Site Scripting (4.0) CVE-2014-9310
WordPress Plugin WordPress Backup to Dropbox Information Disclosure (4.7.1)
WordPress Plugin WordPress Backup to Ziddu Cross-Site Scripting (1)
WordPress Plugin WordPress Bitcoin Payments-Blockonomics Cross-Site Scripting (3.2)
WordPress Plugin WordPress Bitcoin Payments-Blockonomics Cross-Site Scripting (3.5.7) CVE-2022-47145
WordPress Plugin WordPress Book List Arbitrary File Upload (5.0.11)
WordPress Plugin WordPress Books Gallery Cross-Site Request Forgery (4.4.8) CVE-2023-23705
WordPress Plugin WordPress Books Gallery Security Bypass (3.5)
WordPress Plugin WordPress Books Gallery Unspecified Vulnerability (4.4.1)
WordPress Plugin WordPress Button Plugin MaxButtons Cross-Site Scripting (1.26.0) CVE-2014-7181
WordPress Plugin WordPress Button Plugin MaxButtons Cross-Site Scripting (6.18) CVE-2017-2169
WordPress Plugin WordPress Button Plugin MaxButtons Multiple Cross-Site Scripting Vulnerabilities (1.36)
WordPress Plugin WordPress Button Plugin MaxButtons Security Bypass (1.19.0)
WordPress Plugin WordPress Calls to Action Cross-Site Scripting (2.2.7)
WordPress Plugin WordPress Calls to Action Multiple Cross-Site Scripting Vulnerabilities (2.5.0) CVE-2015-8350
WordPress Plugin WordPress Calls to Action Multiple Vulnerabilities (2.3.7)
WordPress Plugin WordPress Calls to Action Unspecified Vulnerability (2.3.1)
WordPress Plugin WordPress Calls to Action Unspecified Vulnerability (2.3.5)
WordPress Plugin WordPress Clean Up & Optimizer-Clean Up Optimizer Multiple Unspecified Vulnerabilities (4.0.12)
WordPress Plugin WordPress Clean Up & Optimizer-Clean Up Optimizer SQL Injection (3.0.13)
WordPress Plugin WordPress Colorbox Lightbox Cross-Site Scripting (1.1.2)
WordPress Plugin WordPress Comment Rating Cross-Site Scripting (1.5.3)
WordPress Plugin WordPress Comments Import & Export Cross-Site Request Forgery (2.1.10)
WordPress Plugin WordPress Comments Import & Export CSV Injection (2.0.4) CVE-2018-11526
WordPress Plugin WordPress Connect Cross-Site Scripting (2.0.3)
WordPress Plugin WordPress Console Security Bypass (0.3.9) CVE-2023-28168
WordPress Plugin WordPress Contact Forms by Cimatti Cross-Site Scripting (1.4.11) CVE-2021-24744
WordPress Plugin WordPress Content Slide Multiple Vulnerabilities (1.4.2) CVE-2013-2708
WordPress Plugin Wordpress Countdown Widget Cross-Site Scripting (3.1.9.2) CVE-2022-2944
WordPress Plugin WordPress Custom Global Variable Unspecified Vulnerability (3.0.0)
WordPress Plugin WordPress Custom Settings Cross-Site Scripting (1.0) CVE-2023-23806
WordPress Plugin WordPress Download Manager 'cid' Parameter Cross-Site Scripting (2.2.2)
WordPress Plugin WordPress Download Manager Arbitrary File Upload (2.8.97)
WordPress Plugin WordPress Download Manager Cross-Site Request Forgery (2.8.99)
WordPress Plugin WordPress Download Manager Cross-Site Request Forgery (2.9.60)
WordPress Plugin WordPress Download Manager Cross-Site Request Forgery (3.2.12)
WordPress Plugin WordPress Download Manager Cross-Site Scripting (2.5.8) CVE-2013-7319
WordPress Plugin WordPress Download Manager Cross-Site Scripting (2.7.94)
WordPress Plugin WordPress Download Manager Cross-Site Scripting (2.9.51) CVE-2017-18032
WordPress Plugin WordPress Download Manager Cross-Site Scripting (2.9.86)
WordPress Plugin WordPress Download Manager Cross-Site Scripting (2.9.93) CVE-2019-15889
WordPress Plugin WordPress Download Manager Cross-Site Scripting (3.2.15) CVE-2021-24773
WordPress Plugin WordPress Download Manager Cross-Site Scripting (3.2.21) CVE-2021-24969
WordPress Plugin WordPress Download Manager Directory Traversal (2.6.95) CVE-2014-8585
WordPress Plugin WordPress Download Manager Multiple Security Bypass Vulnerabilities (2.6.92)
WordPress Plugin WordPress Download Manager Multiple Vulnerabilities (2.8.7)
WordPress Plugin WordPress Download Manager Multiple Vulnerabilities (2.9.49) CVE-2017-2216 CVE-2017-2217
WordPress Plugin WordPress Download Manager Multiple Vulnerabilities (3.1.24) CVE-2021-34638 CVE-2021-34639