Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Arbitrary File Read Arbitrary File Write Authentication Bypass BOLA Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities Ldap Injection Malware Missing Update Path Traversal Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity WordPress Plugin KittyCatfish Ads by Missilesilo SQL Injection (2.2) CWE-89 CWE-89 High WordPress Plugin KJM Admin Notices Cross-Site Scripting (2.0.1) CVE-2021-39344 CWE-79 CWE-79 High WordPress Plugin kk Star Ratings 'root' Parameter Remote File Include (1.7) CWE-94 CWE-94 High WordPress Plugin kk Star Ratings Security Bypass (2.3.1) CWE-264 CWE-264 High WordPress Plugin Klarna Checkout for WooCommerce Security Bypass (2.0.9) CWE-264 CWE-264 High WordPress Plugin Klaviyo Cross-Site Scripting (3.0.7) CVE-2023-25456 CWE-79 CWE-79 High WordPress Plugin Klaviyo Cross-Site Scripting (3.0.9) CVE-2023-0874 CWE-79 CWE-79 High WordPress Plugin Knews Multilingual Newsletters 'ff' Parameter Cross-Site Scripting (1.1.0) CWE-79 CWE-79 High WordPress Plugin Knews Multilingual Newsletters Cross-Site Request Forgery (1.2.5) CWE-352 CWE-352 High WordPress Plugin Knews Multilingual Newsletters SQL Injection (1.7.0) CWE-89 CWE-89 High WordPress Plugin KN Fix Your Title Cross-Site Scripting (1.0.1) CWE-79 CWE-79 High WordPress Plugin Knight Lab Timeline Cross-Site Scripting (3.6.6) CVE-2020-15092 CWE-79 CWE-79 High WordPress Plugin KNR Author List Widget 'listItem[]' Parameter SQL Injection (2.0.0) CWE-89 CWE-89 High WordPress Plugin Konnichiwa! Membership Cross-Site Scripting (0.8.3) CVE-2021-38317 CWE-79 CWE-79 High WordPress Plugin Kraken.io Image Optimizer Cross-Site Request Forgery (2.6.5) CVE-2022-38454 CWE-352 CWE-352 High WordPress Plugin Laika Pedigree Tree Unspecified Vulnerability (0.13.4) High WordPress Plugin Lana Email Logger Cross-Site Scripting (1.0.2) CVE-2023-3166 CWE-79 CWE-79 High WordPress Plugin Landing Page Builder-Lead Page-Optin Page-Squeeze Page-WordPress Landing Pages Cross-Site Scripting (1.4.9.5) CVE-2021-25067 CWE-79 CWE-79 High WordPress Plugin Landing Page Builder-Lead Page-Optin Page-Squeeze Page-WordPress Landing Pages Cross-Site Scripting (1.4.9.8.9) CVE-2022-4718 CWE-79 CWE-79 High WordPress Plugin Landing Page Builder-Lead Page-Optin Page-Squeeze Page-WordPress Landing Pages Local File Inclusion (1.4.3) CWE-22 CWE-22 High WordPress Plugin Landing Page Builder-Lead Page-Optin Page-Squeeze Page-WordPress Landing Pages Unspecified Vulnerability (1.4.1) High WordPress Plugin Language Bar Flags Cross-Site Request Forgery (1.0.8) CVE-2021-24431 CWE-352 CWE-352 High WordPress Plugin Lara's Google Analytics Cross-Site Scripting (2.0.4) CWE-79 CWE-79 High WordPress Plugin Larsens Calender Cross-Site Scripting (1.2) CVE-2020-23762 CWE-79 CWE-79 High WordPress Plugin Last.fm Rotation Local File Inclusion (1.0) CVE-2014-5181 CWE-22 CWE-22 High WordPress Plugin lasTunes Cross-Site Scripting (3.6.1) CWE-79 CWE-79 High WordPress Plugin Latest Posts by BestWebSoft Cross-Site Scripting (0.2) CVE-2017-2171 CWE-79 CWE-79 High WordPress Plugin Launcher:Coming Soon & Maintenance Mode Cross-Site Scripting (1.0.10) CVE-2019-7411 CWE-79 CWE-79 High WordPress Plugin LayerSlider Cross-Site Request Forgery (4.6.1) CWE-352 CWE-352 High WordPress Plugin LayerSlider Multiple Vulnerabilities (6.2.0) CWE-79 CWE-89 CWE-352 CWE-79 CWE-89 CWE-352 High WordPress Plugin LayerSlider SQL Injection (7.10.0) CVE-2024-2879 CWE-89 CWE-89 High WordPress Plugin Lazy content Slider Cross-Site Request Forgery (3.4) CWE-352 CWE-352 High WordPress Plugin LazyEater Multiple Unspecified Vulnerabilities (1.2.4) High WordPress Plugin LazyEater Unspecified Vulnerability (1.2.1) High WordPress Plugin Lazyest Backup 'xml_or_all' Parameter Cross-Site Scripting (0.2.1) CVE-2011-5264 CWE-79 CWE-79 High WordPress Plugin Lazyest Gallery 'image' Parameter Cross-Site Scripting (1.0.28) CWE-79 CWE-79 High WordPress Plugin Lazyest Gallery EXIF Code Cross-Site Scripting (1.1.20) CVE-2014-2333 CWE-79 CWE-79 High WordPress Plugin Lazy Load Cross-Site Scripting (0.6) CWE-79 CWE-79 High WordPress Plugin Lazy SEO Arbitrary File Upload (1.3.2) CVE-2013-5961 CWE-434 CWE-434 High WordPress Plugin LB Mixed Slideshow 'upload.php' Arbitrary File Upload (1.0) CWE-434 CWE-434 High WordPress Plugin LBstopattack Cross-Site Request Forgery (1.1.2) CVE-2022-3097 CWE-352 CWE-352 High WordPress Plugin LB Tube Video for WordPress Cross-Site Scripting (1.0) CWE-79 CWE-79 High WordPress Plugin Ldap WP Login/Active Directory Integration Multiple Vulnerabilities (3.0.1) CVE-2022-2987 CWE-79 CWE-862 CWE-79 CWE-862 High WordPress Plugin LeadConnector Security Bypass (1.7) CVE-2024-1371 CWE-862 CWE-862 High WordPress Plugin LeaderBoard Cross-Site Request Forgery (1.1.1) CWE-352 CWE-352 High WordPress Plugin leads5050-visitor-insights Security Bypass (1.0.5) CWE-264 CWE-264 High WordPress Plugin LeadSnap PHP Object Injection (1.23) CWE-915 CWE-915 High WordPress Plugin Leaflet 'id' Parameter Cross-Site Scripting (0.0.1) CVE-2012-2913 CWE-79 CWE-79 High WordPress Plugin Leaflet Maps Marker (Google Maps, OpenStreetMap, Bing Maps) Multiple Cross-Site Scripting Vulnerabilities (3.9.8) CWE-79 CWE-79 High WordPress Plugin Leaflet Maps Marker (Google Maps, OpenStreetMap, Bing Maps) Multiple Cross-Site Scripting Vulnerabilities (3.11.2) CWE-79 CWE-79 High WordPress Plugin Leaflet Maps Marker (Google Maps, OpenStreetMap, Bing Maps) Multiple Vulnerabilities (2.3) CWE-79 CWE-89 CWE-79 CWE-89 High WordPress Plugin Leaflet Maps Marker Pro (Google Maps, OpenStreetMap, Bing Maps) Multiple Cross-Site Scripting Vulnerabilities (2.3) CWE-79 CWE-79 High WordPress Plugin Leaflet Maps Marker Pro Multiple Vulnerabilities (1.5.7) CWE-22 CWE-79 CWE-434 CWE-22 CWE-79 CWE-434 High WordPress Plugin LeagueManager Multiple Cross-Site Scripting Vulnerabilities (3.7) CVE-2012-2912 CWE-79 CWE-79 High WordPress Plugin LeagueManager Multiple SQL Injection Vulnerabilities (3.9.1.1) CWE-89 CWE-89 High WordPress Plugin LeagueManager SQL Injection (3.8) CVE-2013-1852 CWE-89 CWE-89 High WordPress Plugin Leaky Paywall Cross-Site Scripting (4.16.5) CVE-2021-39357 CWE-79 CWE-79 High WordPress Plugin Leaky Paywall PHP Object Injection (4.9.1) CWE-915 CWE-915 High WordPress Plugin LearnDash LMS Arbitrary File Upload (2.5.3) CVE-2018-25019 CWE-434 CWE-434 High WordPress Plugin LearnDash LMS Cross-Site Scripting (3.1.1.1) CVE-2020-7108 CWE-79 CWE-79 High WordPress Plugin LearnDash LMS Insecure Direct Object Reference (4.6.0) CVE-2023-3105 CWE-639 CWE-639 High WordPress Plugin LearnDash LMS Multiple Information Disclosure Vulnerabilities (4.10.2) CVE-2024-1208 CVE-2024-1209 CVE-2024-1210 CWE-200 CWE-200 High WordPress Plugin LearnDash LMS SQL Injection (3.1.5) CVE-2020-6009 CWE-89 CWE-89 High WordPress Plugin LearnDash LMS SQL Injection (4.5.3) CVE-2023-28777 CWE-89 CWE-89 High WordPress Plugin Learning Courses Privilege Escalation (4.7) CVE-2019-15775 CWE-264 CWE-264 High WordPress Plugin LearnPress-WordPress LMS Arbitrary File Write (3.2.2) CWE-285 CWE-285 High WordPress Plugin LearnPress-WordPress LMS Cross-Site Request Forgery (3.2.7.2) CWE-352 CWE-352 High WordPress Plugin LearnPress-WordPress LMS Cross-Site Scripting (4.1.3.1) CVE-2021-39348 CWE-79 CWE-79 High WordPress Plugin LearnPress-WordPress LMS Cross-Site Scripting (4.1.6.5) CWE-79 CWE-79 High WordPress Plugin LearnPress-WordPress LMS Local File Inclusion (4.2.6.8.2) CVE-2024-6589 CWE-22 CWE-22 High WordPress Plugin LearnPress-WordPress LMS Multiple Cross-Site Scripting Vulnerabilities (4.1.3) CVE-2021-24702 CWE-79 CWE-79 High WordPress Plugin LearnPress-WordPress LMS Multiple Vulnerabilities (3.0.12) CVE-2018-16173 CVE-2018-16174 CVE-2018-16175 CWE-79 CWE-89 CWE-601 CWE-79 CWE-89 CWE-601 High WordPress Plugin LearnPress-WordPress LMS Multiple Vulnerabilities (4.1.7.3.2) CVE-2022-45808 CVE-2022-45820 CVE-2022-47615 CWE-22 CWE-79 CWE-89 CWE-22 CWE-79 CWE-89 High WordPress Plugin LearnPress-WordPress LMS PHP Object Injection (4.1.7.1) CVE-2022-3360 CWE-915 CWE-915 High WordPress Plugin LearnPress-WordPress LMS Security Bypass (3.2.6.6) CVE-2020-7916 CVE-2020-7917 CWE-264 CWE-264 High 1...105106107108...169 106 / 169
