Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Arbitrary File Read Arbitrary File Write Authentication Bypass BOLA Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities Ldap Injection Malware Missing Update Path Traversal Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity WordPress Plugin ImportWP-Import any XML or CSV File into WordPress Security Bypass (1.1.5) CWE-264 CWE-264 High WordPress Plugin Import XML and RSS Feeds Arbitrary File Upload (2.1.3) CVE-2023-4300 CWE-434 CWE-434 High WordPress Plugin Import XML and RSS Feeds Arbitrary File Upload (2.1.5) CVE-2024-31292 CWE-434 CWE-434 High WordPress Plugin Import XML and RSS Feeds Remote Code Execution (2.1.4) CVE-2023-4521 CWE-94 CWE-94 High WordPress Plugin Import XML and RSS Feeds Server-Side Request Forgery (2.0.2) CVE-2020-24148 CWE-918 CWE-918 High WordPress Plugin IMPress for IDX Broker Cross-Site Scripting (3.0.5) CWE-79 CWE-79 High WordPress Plugin IMPress for IDX Broker Multiple Vulnerabilities (2.6.1) CVE-2020-9514 CVE-2020-11512 CWE-79 CWE-264 CWE-79 CWE-264 High WordPress Plugin IMPress for IDX Broker Unspecified Vulnerability (2.5.11) High WordPress Plugin IMPress Listings Cross-Site Scripting (2.0.1) CWE-79 CWE-79 High WordPress Plugin Improved Product Options for WooCommerce Security Bypass (5.2.0) CWE-264 CWE-264 High WordPress Plugin Improved Sale Badges for WooCommerce Security Bypass (4.3.2) CWE-264 CWE-264 High WordPress Plugin Improved user search in backend Cross-Site Request Forgery (1.2.4) CVE-2014-5196 CWE-352 CWE-352 High WordPress Plugin Imsanity Unspecified Vulnerability (2.3.3) High WordPress Plugin InBoundio Marketing Arbitrary File Upload (2.0.3) CWE-434 CWE-434 High WordPress Plugin Include Me Remote Code Execution (1.2.1) CVE-2021-24453 CWE-94 CWE-94 High WordPress Plugin Indeed Job Importer Cross-Site Scripting (1.0.5) CVE-2021-39355 CWE-79 CWE-79 High WordPress Plugin Indexisto WordPress Site Search Cross-Site Scripting (1.0.5) CVE-2016-1000138 CWE-79 CWE-79 High WordPress Plugin Indieweb Post Kinds Cross-Site Scripting (1.3.1) CWE-79 CWE-79 High WordPress Plugin InfiniteWP Client PHP Object Injection (1.6.0) CWE-915 CWE-915 High WordPress Plugin InfiniteWP Client Security Bypass (1.3.7) CWE-264 CWE-264 High WordPress Plugin InfiniteWP Client Security Bypass (1.9.4.4) CVE-2020-8772 CWE-287 CWE-287 High WordPress Plugin InfiniteWP Client Unspecified Vulnerability (1.3.14) High WordPress Plugin Influencer Marketing & Press Release System Cross-Site Scripting (2.2) CWE-79 CWE-79 High WordPress Plugin Infographic Maker-iList Unspecified Vulnerability (2.7.0) High WordPress Plugin Infusionsoft Gravity Forms Add-on Arbitrary File Upload (1.5.10) CVE-2014-6446 CWE-94 CWE-94 High WordPress Plugin Infusionsoft Gravity Forms Add-on Cross-Site Scripting (1.5.11) CVE-2016-1000139 CWE-79 CWE-79 High WordPress Plugin Infusionsoft Gravity Forms Add-on Multiple Cross-Site Scripting Vulnerabilities (1.5.6) CVE-2014-4536 CWE-79 CWE-79 High WordPress Plugin Injectbody Spam Injection (All) CWE-610 CWE-610 High WordPress Plugin Injectscr Spam Injection (All) CWE-610 CWE-610 High WordPress Plugin InJob-Multi features for recruitment WordPress Theme (Themeforest) Cross-Site Scripting (3.3.7) CWE-79 CWE-79 High WordPress Plugin Inline Call To Action Builder Lite-Free Call To Action Layer for WordPress includes Backdoor [Only if downloaded via the vendor website] (1.1.0) CVE-2021-24867 CWE-912 CWE-912 High WordPress Plugin Inline Gallery 'do' Parameter Cross-Site Scripting (0.3.9) CWE-79 CWE-79 High WordPress Plugin Inline Related Posts Multiple Cross-Site Scripting Vulnerabilities (3.0.4) CVE-2021-35470 CWE-79 CWE-79 High WordPress Plugin Inline Tweet Sharer-Twitter Sharing Cross-Site Scripting (2.5.3) CVE-2023-24005 CWE-79 CWE-79 High WordPress Plugin InLinks SQL Injection (1.0) CVE-2017-16955 CWE-89 CWE-89 High WordPress Plugin InPost Gallery Multiple Vulnerabilities (2.1.2) CWE-22 CWE-79 CWE-22 CWE-79 High WordPress Plugin Insert Html Snippet Cross-Site Request Forgery (1.2) CWE-352 CWE-352 High WordPress Plugin Insert or Embed Articulate Content into WordPress Arbitrary File Upload (4.3000000023) CVE-2024-0757 CWE-434 CWE-434 High WordPress Plugin Insert or Embed Articulate Content into WordPress Directory Traversal (4.2999) CVE-2019-15648 CWE-22 CWE-22 High WordPress Plugin Insert or Embed Articulate Content into WordPress Remote Code Execution (4.2997) CVE-2019-15649 CWE-94 CWE-94 High WordPress Plugin Insert or Embed Articulate Content into WordPress Security Bypass (4.2996) CWE-264 CWE-264 High WordPress Plugin Insert or Embed Articulate Content into WordPress Unspecified Vulnerability (4.299993) High WordPress Plugin Insert Pages Cross-Site Scripting (3.7.4) CVE-2022-4483 CWE-79 CWE-79 High WordPress Plugin Insert Pages Directory Traversal (3.2.3) CWE-22 CWE-22 High WordPress Plugin Insert Pages Multiple Vulnerabilities (3.6.1) CVE-2021-24850 CVE-2021-24851 CWE-79 CWE-264 CWE-79 CWE-264 High WordPress Plugin Instagram Feed Cross-Site Scripting (1.4.6.2) CWE-79 CWE-79 High WordPress Plugin Instagram Feed Cross-Site Scripting (1.5.1) CWE-79 CWE-79 High WordPress Plugin Instagram Feed Unspecified Vulnerability (1.10.2) High WordPress Plugin Instagram Feed Unspecified Vulnerability (1.11.3) High WordPress Plugin Instagram Plugin-InstaLinker Cross-Site Scripting (1.1.1) CWE-79 CWE-79 High WordPress Plugin Instant Images-One Click Unsplash Uploads Cross-Site Scripting (4.4.0) CVE-2021-24334 CWE-79 CWE-79 High WordPress Plugin InstaWP Connect-1-click WP Staging & Migration Arbitrary File Upload (0.1.0.22) CVE-2024-2667 CWE-434 CWE-434 High WordPress Plugin InstaWP Connect-1-click WP Staging & Migration Arbitrary File Upload (0.1.0.38) CVE-2024-37228 CWE-434 CWE-434 High WordPress Plugin InstaWP Connect-1-click WP Staging & Migration Security Bypass (0.1.0.8) CVE-2024-22145 CWE-862 CWE-862 High WordPress Plugin InstaWP Connect-1-click WP Staging & Migration Security Bypass (0.1.0.24) CVE-2024-32701 CWE-862 CWE-862 High WordPress Plugin InstaWP Connect-1-click WP Staging & Migration Security Bypass (0.1.0.38) CVE-2024-4898 CWE-862 CWE-862 High WordPress Plugin InstaWP Connect-1-click WP Staging & Migration Security Bypass (0.1.0.44) CVE-2024-6397 CWE-269 CWE-269 High WordPress Plugin Instinct e-Commerce Arbitrary File Upload (3.4) CVE-2008-6811 CWE-434 CWE-434 High WordPress Plugin Integration for Contact Form 7 and ActiveCampaign Cross-Site Scripting (1.0.3) CWE-79 CWE-79 High WordPress Plugin Integration for Contact Form 7 and Constant Contact Cross-Site Scripting (1.0.8) CWE-79 CWE-79 High WordPress Plugin Integration for Contact Form 7 and Infusionsoft Cross-Site Scripting (1.1.2) CWE-79 CWE-79 High WordPress Plugin Integration for Contact Form 7 and Mailchimp Cross-Site Scripting (1.0.9) CWE-79 CWE-79 High WordPress Plugin Integration for Contact Form 7 and Pipedrive Cross-Site Scripting (1.0.9) CWE-79 CWE-79 High WordPress Plugin Integration for Contact Form 7 and Salesforce Cross-Site Scripting (1.2.4) CWE-79 CWE-79 High WordPress Plugin Integration for Contact Form 7 and Zoho Cross-Site Scripting (1.1.7) CWE-79 CWE-79 High WordPress Plugin Integration for Contact Form 7 HubSpot Cross-Site Scripting (1.1.9) CWE-79 CWE-79 High WordPress Plugin Integration for Gravity Forms and Pipedrive Cross-Site Scripting (1.0.6) CWE-79 CWE-79 High WordPress Plugin Integration for HubSpot and WooCommerce Cross-Site Scripting (1.0.4) CWE-79 CWE-79 High WordPress Plugin Integration for WooCommerce and QuickBooks Cross-Site Scripting (1.1.8) CWE-79 CWE-79 High WordPress Plugin Integration of Moneybird for WooCommerce Cross-Site Scripting (2.1.1) CVE-2021-38349 CWE-79 CWE-79 High WordPress Plugin Integrator 'redirect_to' Parameter Cross-Site Scripting (1.32) CVE-2012-5913 CWE-79 CWE-79 High WordPress Plugin Interactive Geo Maps Cross-Site Scripting (1.5.8) CVE-2023-23866 CWE-79 CWE-79 High WordPress Plugin Interactive Geo Maps Cross-Site Scripting (1.5.10) CVE-2023-0731 CWE-79 CWE-79 High WordPress Plugin Interactive SVG Image Map Builder Cross-Site Scripting (1.0) CVE-2023-25704 CWE-79 CWE-79 High WordPress Plugin Internal Links Manager Multiple Cross-Site Scripting Vulnerabilities (2.1.0) CWE-79 CWE-79 High 1...102103104105...169 103 / 169
