| Vulnerability Name |
CVE
CWE
|
CWE |
Severity |
|
WordPress Plugin TwitterCart Security Bypass (2.0)
|
CWE-264
|
CWE-264
|
High
|
|
WordPress Plugin twitterDash Cross-Site Request Forgery (2.1)
|
CVE-2014-9368
CWE-352
|
CWE-352
|
High
|
|
WordPress Plugin Twitter Feed:Embedded Timeline 'url' Parameter Cross-Site Scripting (0.3.1)
|
CVE-2010-4825
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Twitter Feed Cross-Site Scripting (2.0.4)
|
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Twitter Friends Widget Cross-Site Scripting (3.1)
|
CVE-2021-38322
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Twitter LiveBlog Cross-Site Request Forgery (1.1.2)
|
CVE-2014-9398
CWE-352
|
CWE-352
|
High
|
|
WordPress Plugin Two-Factor Authentication-Clockwork SMS Cross-Site Scripting (1.0.3)
|
CVE-2017-17780
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Two Factor Authentication Cross-Site Request Forgery (1.3.12)
|
CVE-2018-20231
CWE-352
|
CWE-352
|
High
|
|
WordPress Plugin Two Factor Authentication Cross-Site Scripting (1.0.7)
|
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Two Way CHAT-Send or receive messages to your user Multiple Vulnerabilities (3.1.4)
|
CWE-22
CWE-352
|
CWE-22
CWE-352
|
High
|
|
WordPress Plugin typofr Cross-Site Scripting (0.11)
|
CVE-2021-34657
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin U BuddyPress Forum Attachment 'fileurl' Parameter Remote File Disclosure (1.1.1)
|
CWE-22
|
CWE-22
|
High
|
|
WordPress Plugin uCan Post Multiple HTML Injection Vulnerabilities (1.0.09)
|
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin uCare-Support Ticket System Cross-Site Scripting (1.2.1)
|
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin uContext for Amazon Cross-Site Request Forgery (3.9.1)
|
CVE-2022-2541
CWE-352
|
CWE-352
|
High
|
|
WordPress Plugin uContext for Clickbank Cross-Site Request Forgery (3.9.1)
|
CVE-2022-2542
CWE-352
|
CWE-352
|
High
|
|
WordPress Plugin U Extended Comment 'fileurl' Parameter Arbitrary File Download (1.0.1)
|
CWE-22
|
CWE-22
|
High
|
|
WordPress Plugin UiPress lite-Effortless custom dashboards, admin themes and pages SQL Injection (3.4.06)
|
CVE-2024-38788
CWE-89
|
CWE-89
|
High
|
|
WordPress Plugin Uji Countdown Cross-Site Scripting (2.0.6)
|
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Uji Countdown Cross-Site Scripting (2.2)
|
CVE-2022-3837
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin UK Cookie Consent Cross-Site Scripting (2.3.9)
|
CVE-2018-10310
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin UK Cookie Cross-Site Request Forgery (1.1)
|
CVE-2013-2180
CWE-352
|
CWE-352
|
High
|
|
WordPress Plugin Ultimate Addons for Beaver Builder Cross-Site Scripting (1.24.3)
|
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Ultimate Addons for Beaver Builder Security Bypass (1.24.0)
|
CWE-287
|
CWE-287
|
High
|
|
WordPress Plugin Ultimate Addons for Elementor Multiple Cross-Site Scripting Vulnerabilities (1.29.2)
|
CVE-2021-24271
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Ultimate Addons for Elementor Security Bypass (1.20.0)
|
CWE-287
|
CWE-287
|
High
|
|
WordPress Plugin Ultimate Addons for Elementor Security Bypass (1.24.1)
|
CVE-2020-13125
CWE-264
|
CWE-264
|
High
|
|
WordPress Plugin Ultimate Addons for Visual Composer Multiple Vulnerabilities (3.16.10)
|
CWE-79
CWE-94
CWE-352
|
CWE-79
CWE-94
CWE-352
|
High
|
|
WordPress Plugin Ultimate Affiliate Pro Multiple Cross-Site Scripting Vulnerabilities (3.6)
|
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Ultimate Appointment Booking & Scheduling Cross-Site Scripting (1.1.9)
|
CVE-2020-24313
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Ultimate Appointment Booking & Scheduling Unspecified Vulnerability (1.1.10)
|
|
|
High
|
|
WordPress Plugin Ultimate Category Excluder Cross-Site Request Forgery (1.1)
|
CVE-2020-35135
CWE-352
|
CWE-352
|
High
|
|
WordPress Plugin Ultimate Coming Soon, Maintenance Mode for WordPress-Everest Coming Soon Lite includes Backdoor [Only if downloaded via the vendor website] (1.1.0)
|
CVE-2021-24867
CWE-912
|
CWE-912
|
High
|
|
WordPress Plugin Ultimate FAQ Cross-Site Scripting (1.8.21)
|
CVE-2019-15643
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Ultimate FAQ Cross-Site Scripting (1.8.29)
|
CVE-2020-7107
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Ultimate FAQ Security Bypass (1.8.24)
|
CVE-2019-17232
CVE-2019-17233
CWE-264
|
CWE-264
|
High
|
|
WordPress Plugin Ultimate GDPR & CCPA Compliance Toolkit for WordPress Security Bypass (2.4)
|
CWE-264
|
CWE-264
|
High
|
|
WordPress Plugin Ultimate Gift Cards For WooCommerce Cross-Site Request Forgery (2.1.1)
|
CWE-352
|
CWE-352
|
High
|
|
WordPress Plugin Ultimate Google Analytics Cross-Site Request Forgery (1.6.0)
|
CWE-352
|
CWE-352
|
High
|
|
WordPress Plugin Ultimate Instagram Feed Cross-Site Scripting (1.2)
|
CVE-2017-16758
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Ultimate Instagram Feed Unspecified Vulnerability (1.3)
|
|
|
High
|
|
WordPress Plugin Ultimate Maps by Supsystic Cross-Site Scripting (1.2.4)
|
CVE-2021-24274
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Ultimate Maps by Supsystic SQL Injection (1.1.12)
|
CWE-89
|
CWE-89
|
High
|
|
WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Arbitrary File Deletion (1.0.78)
|
CWE-73
|
CWE-73
|
High
|
|
WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Arbitrary File Upload (1.0.83)
|
CWE-434
|
CWE-434
|
High
|
|
WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Arbitrary File Upload (2.0.21)
|
CWE-434
|
CWE-434
|
High
|
|
WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Cross-Site Request Forgery (2.0.6)
|
CVE-2018-10233
CWE-352
|
CWE-352
|
High
|
|
WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Cross-Site Request Forgery (2.0.39)
|
CVE-2019-10673
CWE-352
|
CWE-352
|
High
|
|
WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Cross-Site Scripting (1.2.3)
|
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Cross-Site Scripting (1.2.995)
|
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Cross-Site Scripting (1.3.28)
|
CVE-2015-8354
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Cross-Site Scripting (2.0.10)
|
CVE-2018-10234
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Cross-Site Scripting (2.0.17)
|
CVE-2018-13136
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Cross-Site Scripting (2.0.21)
|
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Cross-Site Scripting (2.0.25)
|
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Cross-Site Scripting (2.0.51)
|
CVE-2019-14946
CVE-2019-14947
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Cross-Site Scripting (2.1.19)
|
CVE-2021-24306
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Cross-Site Scripting (2.3.2)
|
CVE-2022-1208
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Cross-Site Scripting (2.4.0)
|
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Cross-Site Scripting (2.8.3)
|
CVE-2024-2123
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Cross-Site Scripting (2.8.4)
|
CVE-2024-2765
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Information Disclosure (1.2.5)
|
CWE-200
|
CWE-200
|
High
|
|
WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Local File Inclusion (1.3.64)
|
CWE-22
|
CWE-22
|
High
|
|
WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Multiple Cross-Site Scripting Vulnerabilities (2.0.27)
|
CVE-2018-17866
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Multiple Vulnerabilities (1.3.88)
|
CVE-2018-0585
CVE-2018-0586
CVE-2018-0587
CVE-2018-0588
CVE-2018-0589
CVE-2018-0590
CWE-22
CWE-79
CWE-284
CWE-434
|
CWE-22
CWE-79
CWE-284
CWE-434
|
High
|
|
WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Multiple Vulnerabilities (2.0.45)
|
CWE-73
CWE-79
CWE-538
|
CWE-73
CWE-79
CWE-538
|
High
|
|
WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Multiple Vulnerabilities (2.5.0)
|
CVE-2022-2445
CVE-2022-3361
CVE-2022-3383
CVE-2022-3384
CWE-22
CWE-94
|
CWE-22
CWE-94
|
High
|
|
WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Open Redirect (2.0.33)
|
CWE-601
|
CWE-601
|
High
|
|
WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Open Redirect (2.1.6)
|
CWE-601
|
CWE-601
|
High
|
|
WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Open Redirect (2.3.1)
|
CVE-2022-1209
CWE-601
|
CWE-601
|
High
|
|
WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Privilege Escalation (2.0.50)
|
CWE-264
|
CWE-264
|
High
|
|
WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Privilege Escalation (2.1.11)
|
CVE-2020-36155
CVE-2020-36156
CVE-2020-36157
CWE-264
|
CWE-264
|
High
|
|
WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Privilege Escalation (2.6.6)
|
CVE-2023-3460
CWE-269
|
CWE-269
|
High
|
|
WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Remote Code Execution (2.0.32)
|
CWE-94
|
CWE-94
|
High
|
|
WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Security Bypass (1.3.52)
|
CWE-264
|
CWE-264
|
High
|
