Vulnerability Name CVE Severity
WordPress Plugin WP Floating Menu-One page navigator, sticky menu for WordPress Cross-Site Scripting (1.3.0) CVE-2020-25378
WordPress Plugin WP Floating Menu-One page navigator, sticky menu for WordPress includes Backdoor [Only if downloaded via the vendor website] (1.4.4) CVE-2021-24867
WordPress Plugin WP Flow Plus Unspecified Vulnerability (2.2.0)
WordPress Plugin WP Font Awesome Cross-Site Scripting (1.7.8) CVE-2023-0271
WordPress Plugin wpForo Forum Cross-Site Scripting (1.4.11) CVE-2018-11709
WordPress Plugin wpForo Forum Cross-Site Scripting (2.1.8) CVE-2023-2309
WordPress Plugin wpForo Forum Multiple Vulnerabilities (2.1.7) CVE-2023-2249
WordPress Plugin wpForo Forum Open Redirect (1.9.6) CVE-2021-24406
WordPress Plugin wpForo Forum SQL Injection (1.4.9) CVE-2018-11515
WordPress Plugin wpForo Forum SQL Injection (2.3.3) CVE-2024-3200
WordPress Plugin WP Forum Multiple Security Vulnerbilities (1.7.8)
WordPress Plugin WP Forum Server 'edit_post_id' Parameter SQL Injection (1.7) CVE-2012-6625
WordPress Plugin WP Forum Server Cross-Site Scripting and SQL Injection Vulnerabilities (1.7.3) CVE-2012-6622 CVE-2012-6623 CVE-2012-6625
WordPress Plugin WP Forum Server Multiple SQL Injection (1.6.5) CVE-2011-1047
WordPress Plugin WP Fountain Cross-Site Scripting (1.5.9) CVE-2021-34653
WordPress Plugin WP Front-End Repository Manager Arbitrary File Upload (1.1)
WordPress Plugin WP Frontend Profile Multiple Vulnerabilities (0.2.1) CVE-2019-15110 CVE-2019-15111
WordPress Plugin WP Frontend Profile Security Bypass (1.2.1)
WordPress Plugin WPFront Notification Bar Cross-Site Scripting (1.9.1.04012) CVE-2021-24518
WordPress Plugin WPFront Notification Bar Cross-Site Scripting (2.0.0.07176) CVE-2021-24601
WordPress Plugin WPFront Scroll Top Cross-Site Scripting (2.0.5.07184) CVE-2021-24564
WordPress Plugin WPFront Scroll Top Cross-Site Scripting (2.0.6.07225)
WordPress Plugin WPFront User Role Editor Multiple Cross-Site Scripting Vulnerabilities (2.13)
WordPress Plugin WPFront User Role Editor Unspecified Vulnerability (2.14.1)
WordPress Plugin WP FullCalendar Security Bypass (1.4.1) CVE-2022-3891
WordPress Plugin WP FuneralPress Multiple Cross-Site Scripting Vulnerabilities (1.1.6) CVE-2013-3529
WordPress Plugin WP Fusion Lite-Marketing Automation for WordPress Multiple Vulnerabilities (3.37.18) CVE-2021-34660 CVE-2021-34661
WordPress Plugin WPGateway Privilege Escalation (3.5) CVE-2022-3180
WordPress Plugin WP GDPR Multiple Vulnerabilities (2.1.1)
WordPress Plugin WpGenius Job Listing Cross-Site Scripting (1.0.2) CVE-2021-39335
WordPress Plugin WP Geoloc Cross-Site Scripting (1.0.0)
WordPress Plugin WP Githuber MD Arbitrary File Upload (1.4.1)
WordPress Plugin WP GitHub Tools Cross-Site Scripting (1.4.4)
WordPress Plugin WPGlobus-Multilingual Everything! Multiple Vulnerabilities (1.9.6) CVE-2018-5361 CVE-2018-5362 CVE-2018-5363 CVE-2018-5364 CVE-2018-5365 CVE-2018-5366 CVE-2018-5367
WordPress Plugin WPGlobus Translate Options Cross-Site Scripting (2.1.0) CVE-2023-25711
WordPress Plugin WP Glossary 'ajax.php' SQL Injection (0.1)
WordPress Plugin WP Google Fonts Cross-Site Scripting (3.1.3)
WordPress Plugin WP Google Maps Cross-Site Request Forgery (7.11.27)
WordPress Plugin WP Google Maps Cross-Site Scripting (6.3.14)
WordPress Plugin WP Google Maps Cross-Site Scripting (7.10.41) CVE-2019-9912
WordPress Plugin WP Google Maps Cross-Site Scripting (7.11.34) CVE-2019-14792
WordPress Plugin WP Google Maps Cross-Site Scripting (8.1.11) CVE-2021-24383
WordPress Plugin WP Google Maps Multiple Cross-Site Scripting Vulnerabilities (6.0.26) CVE-2014-7182
WordPress Plugin WP Google Maps Multiple Cross-Site Scripting Vulnerabilities (8.1.12)
WordPress Plugin WP Google Maps SQL Injection (7.11.17) CVE-2019-10692
WordPress Plugin WP Google Maps Unspecified Vulnerability (6.2.1)
WordPress Plugin WP Google Maps Unspecified Vulnerability (8.0.25)
WordPress Plugin WP Google Review Slider Cross-Site Scripting (11.5) CVE-2022-4242
WordPress Plugin WP Google Review Slider SQL Injection (6.1)
WordPress Plugin WP Google Review Slider SQL Injection (11.7) CVE-2023-0259
WordPress Plugin WP GPX Maps 'wp-gpx-maps_admin_tracks.php' Arbitrary File Upload (1.1.22) CVE-2012-6649
WordPress Plugin WPGraphQL Denial of Service (1.3.5) CVE-2021-31157
WordPress Plugin WPGraphQL Security Bypass (0.2.3) CVE-2019-9879 CVE-2019-9880 CVE-2019-9881
WordPress Plugin WP Gravity Forms Insightly Cross-Site Scripting (1.0.6)
WordPress Plugin WP Gravity Forms Zendesk Cross-Site Scripting (1.0.7)
WordPress Plugin WP Gravity Forms Zoho CRM Add-on Cross-Site Scripting (1.1.5)
WordPress Plugin WP GuestMap Multiple Cross-Site Scripting Vulnerabilities (1.8) CVE-2014-4587
WordPress Plugin WP Hardening-Fix Your WordPress Security Cross-Site Scripting (1.2.1) CVE-2021-24373
WordPress Plugin WP Header Images Cross-Site Scripting (2.0.0) CVE-2021-24798
WordPress Plugin WP Helper Premium Cross-Site Scripting (4.2) CVE-2023-0448
WordPress Plugin wp heyloyalty Remote Code Execution (1.1.4) CVE-2017-9841
WordPress Plugin WP Hide & Security Enhancer Arbitrary File Download (1.3.9.2)
WordPress Plugin WPhone Cross-Site Scripting (1.5.2)
WordPress Plugin WP Hotel Booking Cross-Site Request Forgery (1.10.1)
WordPress Plugin WP Hotel Booking Cross-Site Request Forgery (1.10.5) CVE-2021-36852
WordPress Plugin WP Hotel Booking PHP Object Injection (1.10.3) CVE-2020-29047
WordPress Plugin WP Hotel Booking Remote Code Execution (1.10.2) CVE-2020-29047
WordPress Plugin WP Hotel Booking SQL Injection (2.1.0) CVE-2024-3605
WordPress Plugin WP htaccess Control Unspecified Vulnerability (2.4)
WordPress Plugin WP Htaccess Editor Unspecified Vulnerability (1.0.1)
WordPress Plugin WP HTML Author Bio Cross-Site Scripting (1.2.0) CVE-2021-24545
WordPress Plugin WP HTML Sitemap Cross-Site Request Forgery (1.2) CVE-2014-2675
WordPress Plugin WP Human Resource Management Security Bypass (2.2.5) CVE-2019-9573 CVE-2019-9574
WordPress Plugin WP Human Resource Management Security Bypass (2.2.14)
WordPress Plugin WP Humans.txt Cross-Site Scripting (1.0.6) CVE-2022-3392