Vulnerability Name CVE Severity
WordPress Plugin WP Support Plus Responsive Ticket System Privilege Escalation (7.1.4)
WordPress Plugin WP Support Plus Responsive Ticket System Security Bypass (7.1.4)
WordPress Plugin WP Support Plus Responsive Ticket System SQL Injection (7.1.4)
WordPress Plugin WP Support Plus Responsive Ticket System Unspecified Vulnerability (8.0.7)
WordPress Plugin WP Survey And Quiz Tool 'action' Parameter Cross-Site Scripting (1.2.1) CVE-2010-4630
WordPress Plugin WP Survey And Quiz Tool 'rowcount' Parameter Cross-Site Scripting (2.9.2)
WordPress Plugin WP Survey Plus Security Bypass (1.0) CVE-2021-24801
WordPress Plugin WP SVG Icons Cross-Site Request Forgery (3.2.1) CVE-2019-14216
WordPress Plugin WP SVG Icons Multiple Unspecified Vulnerabilities (3.1.8.1)
WordPress Plugin WP SVG images Cross-Site Scripting (3.3) CVE-2021-24386
WordPress Plugin WP Symposium 'get_profile_avatar.php' SQL Injection (0.64)
WordPress Plugin WP Symposium Arbitrary File Upload (14.11) CVE-2014-10021
WordPress Plugin WP Symposium Arbitrary File Upload Vulnerabilities (11.11.26) CVE-2011-5051
WordPress Plugin WP Symposium A Social Network For WordPress Multiple Cross-Site Scripting Vulnerabilities (12.07.07)
WordPress Plugin WP Symposium A Social Network For WordPress Multiple SQL Injection Vulnerabilities (12.06.16)
WordPress Plugin WP Symposium Cross-Site Scripting (11.11.26) CVE-2011-3841
WordPress Plugin WP Symposium Cross-Site Scripting (13.02) CVE-2013-2695
WordPress Plugin WP Symposium Cross-Site Scripting (15.8.1) CVE-2015-9414
WordPress Plugin WP Symposium Multiple SQL Injection Vulnerabilities (12.09)
WordPress Plugin WP Symposium Multiple Vulnerabilities (14.05.02)
WordPress Plugin WP Symposium Multiple Vulnerabilities (14.10) CVE-2014-8809 CVE-2014-8810
WordPress Plugin WP Symposium Open Redirect (13.04) CVE-2013-2694
WordPress Plugin WP Symposium Open Redirect (13.12)
WordPress Plugin WP Symposium Pro Social Network Cross-Site Scripting (16.01)
WordPress Plugin WP Symposium Pro Social Network Multiple Vulnerabilities (15.12)
WordPress Plugin WP Symposium SQL Injection (15.1) CVE-2015-3325
WordPress Plugin WP Symposium SQL Injection (15.5.1)
WordPress Plugin WP Symposium Toolbar Unspecified Vulnerability (0.26.0)
WordPress Plugin WP Table Builder-WordPress Table Cross-Site Scripting (1.3.9)
WordPress Plugin WP Table Builder-WordPress Table Cross-Site Scripting (1.4.6) CVE-2022-46852
WordPress Plugin WP Table Builder-WordPress Table Security Bypass (1.3.15)
WordPress Plugin WP Taxonomy Import Cross-Site Scripting (1.0.4) CVE-2022-2669
WordPress Plugin WP Telegram (Auto Post and Notifications) Unspecified Vulnerability (2.1.8)
WordPress Plugin wptf-image-gallery Arbitrary File Download (1.0.3) CVE-2015-1000007
WordPress Plugin WP TFeed includes Backdoor [Only if downloaded via the vendor website] (1.6.7) CVE-2021-24867
WordPress Plugin WP to Twitter Authorization Bypass (2.9.3)
WordPress Plugin WP to Twitter Cross-Site Request Forgery (3.2.9)
WordPress Plugin WP to Twitter Cross-Site Scripting (3.0.5)
WordPress Plugin WP to Twitter Security Bypass (3.2.19)
WordPress Plugin WPtouch 'wptouch_redirect' Parameter URI Redirection (1.9.32)
WordPress Plugin WPtouch 'wptouch_settings' Parameter Cross-Site Scripting (1.9.20) CVE-2010-4779
WordPress Plugin WPtouch Arbitrary File Upload (3.4.6)
WordPress Plugin WPtouch Backdoor (1.9.28)
WordPress Plugin WPtouch Cross-Site Request Forgery (1.9.31)
WordPress Plugin WPtouch Cross-Site Scripting (3.7.5.3)
WordPress Plugin WPtouch Cross-Site Scripting (4.3.42)
WordPress plugin WPtouch insecure nonce generation
WordPress Plugin WPtouch Multiple Cross-Site Scripting Vulnerabilities (3.7.3)
WordPress Plugin WPtouch Open Redirect (3.4.9)
WordPress Plugin WPtouch Security Bypass (3.4.2)
WordPress Plugin WP Travel-Best Travel Booking, Tour Management Engine Cross-Site Request Forgery (4.4.6)
WordPress Plugin WP TripAdvisor Review Slider Cross-Site Scripting (11.8) CVE-2023-6037
WordPress Plugin WP TripAdvisor Review Slider SQL Injection (10.7) CVE-2023-0261
WordPress Plugin WP TripAdvisor Review Slider SQL Injection (12.6) CVE-2024-35630
WordPress Plugin WP ULike Cross-Site Scripting (3.1)
WordPress Plugin WP ULike Multiple Vulnerabilities (3.1)
WordPress Plugin WP Ultimate Email Marketer Multiple Vulnerabilities (1.1.0) CVE-2013-3263 CVE-2013-3264 CVE-2014-4600
WordPress Plugin WP Ultimate Exporter Cross-Site Scripting (1.0)
WordPress Plugin WP Ultimate Exporter SQL Injection (1.1)
WordPress Plugin WP Ultimate Recipe Cross-Site Scripting (3.12.6) CVE-2019-15836
WordPress Plugin WP Unique Article Header Image Cross-Site Request Forgery (1.0) CVE-2014-9400
WordPress Plugin WP Upload Restriction Multiple Vulnerabilities (2.2.3) CVE-2021-34625 CVE-2021-34626 CVE-2021-34627
WordPress Plugin WPUpper Share Buttons Cross-Site Scripting (3.42) CVE-2022-3838
WordPress Plugin WP User-Custom Registration Forms, Login and User Profile Multiple Vulnerabilities (7.0) CVE-2022-4049 CVE-2022-4519
WordPress Plugin WP User Frontend-Registration, User Profile, Membership, Content Restriction, User Directory, and Frontend Post Submission Arbitrary File Upload (2.3.10)
WordPress Plugin WP User Frontend-Registration, User Profile, Membership, Content Restriction, User Directory, and Frontend Post Submission Supply Chain Attack [Polyfill.io] (4.0.7)
WordPress Plugin WP User Groups Cross-Site Request Forgery (2.0.0)
WordPress Plugin WP User Manager-User Profile Builder & Membership Security Bypass (2.6.2)
WordPress Plugin WP Users Exporter CSV Injection (1.4.2) CVE-2022-3026
WordPress Plugin WP User Switch Security Bypass (1.0.2) CVE-2023-2546
WordPress Plugin WP Vault Local File Inclusion (0.8.6.6)
WordPress Plugin WP Video Lightbox Cross-Site Scripting (1.7.4)
WordPress Plugin WP Video Lightbox Cross-Site Scripting (1.9.2) CVE-2021-24665
WordPress Plugin WP Visitor Statistics (Real Time Traffic) Cross-Site Scripting (6.4) CVE-2022-4656
WordPress Plugin WP Visitor Statistics (Real Time Traffic) Security Bypass (5.4) CVE-2021-25042