Vulnerability Name CVE Severity
WordPress Plugin WP Symposium Open Redirect (13.12)
WordPress Plugin WP Symposium Pro Social Network Cross-Site Scripting (16.01)
WordPress Plugin WP Symposium Pro Social Network Multiple Vulnerabilities (15.12)
WordPress Plugin WP Symposium SQL Injection (15.1) CVE-2015-3325
WordPress Plugin WP Symposium SQL Injection (15.5.1)
WordPress Plugin WP Symposium Toolbar Unspecified Vulnerability (0.26.0)
WordPress Plugin WP Table Builder-WordPress Table Cross-Site Scripting (1.3.9)
WordPress Plugin WP Table Builder-WordPress Table Cross-Site Scripting (1.4.6) CVE-2022-46852
WordPress Plugin WP Table Builder-WordPress Table Security Bypass (1.3.15)
WordPress Plugin WP Taxonomy Import Cross-Site Scripting (1.0.4) CVE-2022-2669
WordPress Plugin WP Telegram (Auto Post and Notifications) Unspecified Vulnerability (2.1.8)
WordPress Plugin wptf-image-gallery Arbitrary File Download (1.0.3) CVE-2015-1000007
WordPress Plugin WP TFeed includes Backdoor [Only if downloaded via the vendor website] (1.6.7) CVE-2021-24867
WordPress Plugin WP to Twitter Authorization Bypass (2.9.3)
WordPress Plugin WP to Twitter Cross-Site Request Forgery (3.2.9)
WordPress Plugin WP to Twitter Cross-Site Scripting (3.0.5)
WordPress Plugin WP to Twitter Security Bypass (3.2.19)
WordPress Plugin WPtouch 'wptouch_redirect' Parameter URI Redirection (1.9.32)
WordPress Plugin WPtouch 'wptouch_settings' Parameter Cross-Site Scripting (1.9.20) CVE-2010-4779
WordPress Plugin WPtouch Arbitrary File Upload (3.4.6)
WordPress Plugin WPtouch Backdoor (1.9.28)
WordPress Plugin WPtouch Cross-Site Request Forgery (1.9.31)
WordPress Plugin WPtouch Cross-Site Scripting (3.7.5.3)
WordPress Plugin WPtouch Cross-Site Scripting (4.3.42)
WordPress plugin WPtouch insecure nonce generation
WordPress Plugin WPtouch Multiple Cross-Site Scripting Vulnerabilities (3.7.3)
WordPress Plugin WPtouch Open Redirect (3.4.9)
WordPress Plugin WPtouch Security Bypass (3.4.2)
WordPress Plugin WP Travel-Best Travel Booking, Tour Management Engine Cross-Site Request Forgery (4.4.6)
WordPress Plugin WP TripAdvisor Review Slider Cross-Site Scripting (11.8) CVE-2023-6037
WordPress Plugin WP TripAdvisor Review Slider SQL Injection (10.7) CVE-2023-0261
WordPress Plugin WP TripAdvisor Review Slider SQL Injection (12.6) CVE-2024-35630
WordPress Plugin WP ULike Cross-Site Scripting (3.1)
WordPress Plugin WP ULike Multiple Vulnerabilities (3.1)
WordPress Plugin WP Ultimate Email Marketer Multiple Vulnerabilities (1.1.0) CVE-2013-3263 CVE-2013-3264 CVE-2014-4600
WordPress Plugin WP Ultimate Exporter Cross-Site Scripting (1.0)
WordPress Plugin WP Ultimate Exporter SQL Injection (1.1)
WordPress Plugin WP Ultimate Recipe Cross-Site Scripting (3.12.6) CVE-2019-15836
WordPress Plugin WP Unique Article Header Image Cross-Site Request Forgery (1.0) CVE-2014-9400
WordPress Plugin WP Upload Restriction Multiple Vulnerabilities (2.2.3) CVE-2021-34625 CVE-2021-34626 CVE-2021-34627
WordPress Plugin WPUpper Share Buttons Cross-Site Scripting (3.42) CVE-2022-3838
WordPress Plugin WP User-Custom Registration Forms, Login and User Profile Multiple Vulnerabilities (7.0) CVE-2022-4049 CVE-2022-4519
WordPress Plugin WP User Frontend-Registration, User Profile, Membership, Content Restriction, User Directory, and Frontend Post Submission Arbitrary File Upload (2.3.10)
WordPress Plugin WP User Frontend-Registration, User Profile, Membership, Content Restriction, User Directory, and Frontend Post Submission Supply Chain Attack [Polyfill.io] (4.0.7)
WordPress Plugin WP User Groups Cross-Site Request Forgery (2.0.0)
WordPress Plugin WP User Manager-User Profile Builder & Membership Security Bypass (2.6.2)
WordPress Plugin WP Users Exporter CSV Injection (1.4.2) CVE-2022-3026
WordPress Plugin WP User Switch Security Bypass (1.0.2) CVE-2023-2546
WordPress Plugin WP Vault Local File Inclusion (0.8.6.6)
WordPress Plugin WP Video Lightbox Cross-Site Scripting (1.7.4)
WordPress Plugin WP Video Lightbox Cross-Site Scripting (1.9.2) CVE-2021-24665
WordPress Plugin WP Visitor Statistics (Real Time Traffic) Cross-Site Scripting (6.4) CVE-2022-4656
WordPress Plugin WP Visitor Statistics (Real Time Traffic) Security Bypass (5.4) CVE-2021-25042
WordPress Plugin WP Visitor Statistics (Real Time Traffic) SQL Injection (4.7) CVE-2021-24750
WordPress Plugin WP Visitor Statistics (Real Time Traffic) SQL Injection (5.5) CVE-2022-0410
WordPress Plugin WP Visitor Statistics (Real Time Traffic) SQL Injection (5.7) CVE-2022-33965
WordPress Plugin WP Visitor Statistics (Real Time Traffic) SQL Injection (6.8.1) CVE-2023-0600
WordPress Plugin WP Visitor Statistics (Real Time Traffic) Unspecified Vulnerability (4.8)
WordPress Plugin WP VR-360 Panorama and Virtual Tour Builder For WordPress Cross-Site Request Forgery (8.2.7) CVE-2023-25708
WordPress Plugin WP VR-360 Panorama and Virtual Tour Builder For WordPress Cross-Site Scripting (8.2.6) CVE-2023-0174
WordPress Plugin WP w3all phpBB Multiple Unspecified Vulnerabilities (1.6.3)
WordPress Plugin WP Web Scraper Unspecified Vulnerability (2.4)
WordPress Plugin WP Whois Domain Cross-Site Scripting (1.0.0)
WordPress Plugin WP Widget Cache Cross-Site Scripting (0.26)
WordPress Plugin WP with Spritz Local/Remote File Inclusion (1.0)
WordPress Plugin WP Yelp Review Slider SQL Injection (7.0) CVE-2023-0263
WordPress Plugin WP YouTube Live Cross-Site Scripting (1.7.21) CVE-2022-1187
WordPress Plugin WP YouTube Live Cross-Site Scripting (1.8.2) CVE-2022-1334
WordPress Plugin WPZOOM Portfolio Cross-Site Scripting (1.2.1) CVE-2022-4789
WordPress Plugin Wrapper Link Elementor Malicious Code (1.0.3) CVE-2024-6297
WordPress Plugin WR ContactForm SQL Injection (1.1.9)
WordPress Plugin wSecure Lite Remote Code Execution (2.3) CVE-2016-10960
WordPress Plugin WTI Like Post Cross-Site Scripting (1.4.4)
WordPress Plugin WTI Like Post SQL Injection (1.4.2)
WordPress Plugin Wu-Rating Cross-Site Scripting (1.0 12319) CVE-2014-4601