Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Arbitrary File Read Arbitrary File Write Authentication Bypass BOLA Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities Ldap Injection Malware Missing Update Path Traversal Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity WordPress Plugin Top 10-Popular posts for WordPress Cross-Site Scripting (3.2.2) CVE-2022-4570 CWE-79 CWE-79 High WordPress Plugin Top 10-Popular posts for WordPress Multiple Vulnerabilities (3.2.3) CVE-2023-25993 CWE-352 CWE-862 CWE-352 CWE-862 High WordPress Plugin Top 10-Popular posts for WordPress Multiple Vulnerabilities (3.2.4) CVE-2023-26008 CWE-79 CWE-284 CWE-79 CWE-284 High WordPress Plugin Top 10-Popular posts for WordPress SQL Injection (2.4.3) CWE-89 CWE-89 High WordPress Plugin Top Quark Architecture 'script.php' Arbitrary File Upload (2.1.0) CWE-434 CWE-434 High WordPress Plugin Total Donations for Wordpress Security Bypass (2.0.5) CVE-2019-6703 CWE-264 CWE-264 High WordPress Plugin Total GDPR Compliance Lite-WordPress for GDPR Compatibility includes Backdoor [Only if downloaded via the vendor website] (1.0.4) CVE-2021-24867 CWE-912 CWE-912 High WordPress Plugin Total Sales For Woocommerce Cross-Site Scripting (1.1) CVE-2021-24435 CWE-79 CWE-79 High WordPress Plugin Total Security Multiple Unspecified Vulnerabilities (3.4.1) High WordPress Plugin Total Security Multiple Vulnerabilities (3.4) CWE-79 CWE-264 CWE-79 CWE-264 High WordPress Plugin Total Team Lite-Responsive Team Manager/Showcase for WordPress includes Backdoor [Only if downloaded via the vendor website] (1.1.1) CVE-2021-24867 CWE-912 CWE-912 High WordPress Plugin Total Upkeep-WordPress Backup plus Restore & Migrate by BoldGrid Information Disclosure (1.14.9) CWE-200 CWE-200 High WordPress Plugin To Top Security Bypass (2.2.2) CVE-2021-24752 CWE-284 CWE-284 High WordPress Plugin tPlayer-Audio Player for WordPress Multiple Cross-Site Scripting Vulnerabilities (1.1.5) CWE-79 CWE-79 High WordPress Plugin Tracking Code Manager Multiple Vulnerabilities (1.11.1) CWE-79 CWE-400 CWE-79 CWE-400 High WordPress Plugin Track That Stat 'data' Parameter Cross-Site Scripting (1.0.8) CWE-79 CWE-79 High WordPress Plugin TRADIES Information Disclosure (2.2.6) CWE-200 CWE-200 High WordPress Plugin Traffic Analyzer Cross-Site Scripting (3.3.2) CVE-2013-3526 CWE-79 CWE-79 High WordPress Plugin Traffic Analyzer SQL Injection (3.4.2) CWE-89 CWE-89 High WordPress Plugin Traffic Manager Multiple Vulnerabilities (1.4.5) CWE-79 CWE-352 CWE-79 CWE-352 High WordPress Plugin Translate Multilingual sites-TranslatePress Cross-Site Scripting (2.0.8) CVE-2021-24610 CWE-79 CWE-79 High WordPress Plugin Translate WordPress-Google Language Translator Cross-Site Scripting (4.0.9) CWE-79 CWE-79 High WordPress Plugin Translate WordPress-Google Language Translator Cross-Site Scripting (5.0.05) CWE-79 CWE-79 High WordPress Plugin Translate WordPress-Google Language Translator Cross-Site Scripting (6.0.9) CWE-79 CWE-79 High WordPress Plugin Translate WordPress-Google Language Translator Cross-Site Scripting (6.0.11) CWE-79 CWE-79 High WordPress Plugin Translate WordPress with GTranslate Cross-Site Scripting (2.8.51) CVE-2020-11930 CWE-79 CWE-79 High WordPress Plugin Translate WordPress with GTranslate Cross-Site Scripting (2.8.64) CVE-2021-34630 CWE-79 CWE-79 High WordPress Plugin Translate WordPress with GTranslate Open Redirect (2.8.10) CWE-601 CWE-601 High WordPress Plugin Transposh WordPress Translation Cross-Site Scripting (0.8.3) CWE-79 CWE-79 High WordPress Plugin Transposh WordPress Translation Multiple Cross-Site Scripting Vulnerabilities (1.0.7) CVE-2021-24910 CVE-2021-24911 CWE-79 CWE-79 High WordPress Plugin Transposh WordPress Translation Multiple Vulnerabilities (1.0.8.1) CVE-2021-24912 CVE-2022-2461 CVE-2022-2462 CVE-2022-2536 CVE-2022-25810 CVE-2022-25811 CWE-89 CWE-200 CWE-264 CWE-285 CWE-352 CWE-89 CWE-200 CWE-264 CWE-285 CWE-352 High WordPress Plugin Trashbin 'mtb_undelete' Parameter Cross-Site Scripting (0.1) CWE-79 CWE-79 High WordPress Plugin Travel Management Privilege Escalation (1.5) CVE-2019-15773 CWE-264 CWE-264 High WordPress Plugin Travelpayouts:All Travel Brands in One Place Cross-Site Request Forgery (1.0.16) CWE-352 CWE-352 High WordPress Plugin Travelpayouts:All Travel Brands in One Place Cross-Site Scripting (0.7.12) CWE-79 CWE-79 High WordPress Plugin TR Easy Google Analytics Cross-Site Scripting (1.0.0) CWE-79 CWE-79 High WordPress Plugin Triagis WordPress Security Evaluation-Check Folder Permissions, Fix For Common Security Vulnerabilities Multiple Cross-Site Request Forgery Vulnerabilities (1.15) CWE-352 CWE-352 High WordPress Plugin True Ranker Directory Traversal (2.2.2) CVE-2021-39312 CWE-22 CWE-22 High WordPress Plugin Trust Form Cross-Site Scripting (2.0) CWE-79 CWE-79 High WordPress Plugin TubePress Cross-Site Scripting (1.6.0) CWE-79 CWE-79 High WordPress Plugin Tune Library 'letter' Parameter SQL Injection (1.5.1) CWE-89 CWE-89 High WordPress Plugin Tune Library SQL Injection (1.5.4) CVE-2015-3314 CWE-89 CWE-89 High WordPress Plugin Tutor LMS-eLearning and online course solution Cross-Site Request Forgery (1.5.2) CVE-2020-8615 CWE-352 CWE-352 High WordPress Plugin Tutor LMS-eLearning and online course solution Cross-Site Request Forgery (2.6.1) CVE-2024-1503 CWE-352 CWE-352 High WordPress Plugin Tutor LMS-eLearning and online course solution Cross-Site Scripting (1.9.1) CVE-2021-24455 CWE-79 CWE-79 High WordPress Plugin Tutor LMS-eLearning and online course solution Cross-Site Scripting (1.9.5) CWE-79 CWE-79 High WordPress Plugin Tutor LMS-eLearning and online course solution Cross-Site Scripting (1.9.10) CVE-2021-24873 CWE-79 CWE-79 High WordPress Plugin Tutor LMS-eLearning and online course solution Cross-Site Scripting (1.9.11) CVE-2021-25017 CWE-79 CWE-79 High WordPress Plugin Tutor LMS-eLearning and online course solution Cross-Site Scripting (1.9.14) CWE-79 CWE-79 High WordPress Plugin Tutor LMS-eLearning and online course solution Cross-Site Scripting (2.0.9) CVE-2022-2563 CWE-79 CWE-79 High WordPress Plugin Tutor LMS-eLearning and online course solution Cross-Site Scripting (2.6.2) CVE-2024-3994 CWE-79 CWE-79 High WordPress Plugin Tutor LMS-eLearning and online course solution Insecure Direct Object Reference (2.7.0) CVE-2024-4279 CWE-639 CWE-639 High WordPress Plugin Tutor LMS-eLearning and online course solution Local File Inclusion (1.8.7) CVE-2021-24242 CWE-22 CWE-22 High WordPress Plugin Tutor LMS-eLearning and online course solution Multiple Cross-Site Scripting Vulnerabilities (1.9.8) CVE-2021-24740 CWE-79 CWE-79 High WordPress Plugin Tutor LMS-eLearning and online course solution Multiple Vulnerabilities (1.7.6) CVE-2021-24181 CVE-2021-24184 CVE-2021-24185 CWE-89 CWE-264 CWE-89 CWE-264 High WordPress Plugin Tutor LMS-eLearning and online course solution Security Bypass (2.6.1) CVE-2024-1502 CWE-862 CWE-862 High WordPress Plugin Tutor LMS-eLearning and online course solution Security Bypass (2.6.2) CVE-2024-3553 CWE-862 CWE-862 High WordPress Plugin Tutor LMS-eLearning and online course solution Security Bypass (2.7.0) CVE-2024-4223 CWE-862 CWE-862 High WordPress Plugin Tutor LMS-eLearning and online course solution SQL Injection (1.8.2) CVE-2021-24182 CVE-2021-24183 CVE-2021-24186 CWE-89 CWE-89 High WordPress Plugin Tutor LMS-eLearning and online course solution SQL Injection (2.6.1) CVE-2024-1751 CWE-89 CWE-89 High WordPress Plugin Tutor LMS-eLearning and online course solution SQL Injection (2.7.0) CVE-2024-4318 CWE-89 CWE-89 High WordPress Plugin Tutor LMS Elementor Addons Cross-Site Scripting (2.1.3) CVE-2024-29913 CWE-79 CWE-79 High WordPress Plugin Tweet Blender Cross-Site Scripting (4.0.1) CVE-2013-6342 CWE-79 CWE-79 High WordPress Plugin TweetScribe Cross-Site Request Forgery (1.1) CVE-2014-9399 CWE-352 CWE-352 High WordPress Plugin Tweet Wheel Multiple Cross-Site Scripting Vulnerabilities (1.0.3.2) CWE-79 CWE-79 High WordPress Plugin Tweet Wheel Spam (0.3) CWE-702 CWE-702 High WordPress Plugin Twenty20 Image Before-After Cross-Site Scripting (1.5.9) CVE-2022-4580 CWE-79 CWE-79 High WordPress Plugin Twenty20 Image Before-After Malicious Code (1.6.3) CVE-2024-6297 CWE-506 CWE-506 High WordPress Plugin twimp-wp-twitter multi publisher Cross-Site Request Forgery (0.1) CVE-2014-9397 CWE-352 CWE-352 High WordPress Plugin Twitch Player Cross-Site Scripting (2.1.0) CVE-2023-25464 CWE-79 CWE-79 High WordPress Plugin Twitget Cross-Site Request Forgery (3.3.2) CVE-2014-2559 CVE-2014-2995 CWE-352 CWE-352 High WordPress Plugin Twitter Button by BestWebSoft Cross-Site Request Forgery (2.14) CWE-352 CWE-352 High WordPress Plugin Twitter Button by BestWebSoft Cross-Site Scripting (2.54) CVE-2017-2171 CVE-2017-2171 CVE-2017-18505 CWE-79 CWE-79 High WordPress Plugin Twitter Button by BestWebSoft Multiple Cross-Site Scripting Vulnerabilities (2.36) CWE-79 CWE-79 High WordPress Plugin Twitter Cards Meta Multiple Vulnerabilities (2.4.5) CWE-79 CWE-352 CWE-79 CWE-352 High 1...139140141142...169 140 / 169
