Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Authentication Bypass Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities Ldap Injection Malware Missing Update Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity WordPress Plugin Vodpod Video Gallery 'gid' Parameter Cross-Site Scripting (3.1.5) CVE-2010-4875 CWE-79 CWE-79 High WordPress Plugin Vospari Forms Cross-Site Scripting (1.3) CWE-79 CWE-79 High WordPress Plugin VO Store Locator-WP Store Locator Unspecified Vulnerability (3.2.14) High WordPress Plugin Votecount for Balatarin Cross-Site Scripting (0.1.1) CVE-2014-4572 CWE-79 CWE-79 High WordPress Plugin VR Calendar Cross-Site Request Forgery (2.3.3) CVE-2022-3852 CWE-352 CWE-352 High WordPress Plugin VRView Cross-Site Scripting (1.1.3) CWE-79 CWE-79 High WordPress Plugin vSlider Multi Image Slider for WordPress Arbitrary File Upload (4.1.2) CWE-434 CWE-434 High WordPress Plugin vSlider Multi Image Slider for WordPress Multiple Vulnerabilities (4.1.2) CVE-2023-25797 CWE-79 CWE-352 CWE-862 CWE-79 CWE-352 CWE-862 High WordPress Plugin Vuukle Comments, Reactions, Share Bar, Revenue Cross-Site Request Forgery (3.4.31) CWE-352 CWE-352 High WordPress Plugin Vuukle Comments, Reactions, Share Bar, Revenue Unspecified Vulnerability (4.0.2) High WordPress Plugin W3 Total Cache Arbitrary File Disclosure (0.9.3) CVE-2019-6715 CWE-538 CWE-538 High WordPress Plugin W3 Total Cache Backdoor (0.9.2.2) CWE-95 CWE-95 High WordPress Plugin W3 Total Cache Information Disclosure (0.9.2.4) CWE-200 CWE-200 High WordPress Plugin W3 Total Cache Multiple Unspecified Vulnerabilities (0.9.5.1) High WordPress Plugin W3 Total Cache Multiple Vulnerabilities (0.9.4) CVE-2014-8724 CVE-2014-9414 CWE-79 CWE-352 CWE-79 CWE-352 High WordPress Plugin W3 Total Cache Multiple Vulnerabilities (0.9.4.1) CWE-73 CWE-79 CWE-94 CWE-200 CWE-305 CWE-400 CWE-434 CWE-918 CWE-73 CWE-79 CWE-94 CWE-200 CWE-305 CWE-400 CWE-434 CWE-918 High WordPress Plugin W3 Total Cache PHP Code Injection (0.9.2.8) CVE-2013-2010 CWE-95 CWE-95 High WordPress Plugin W3 Total Cache Server-Side Request Forgery (0.9.7.3) CWE-918 CWE-918 High WordPress Plugin W3SCloud Contact Form 7 to Zoho CRM Cross-Site Scripting (1.1.2) CVE-2021-24435 CWE-79 CWE-79 High WordPress Plugin W4 Post List Cross-Site Scripting (2.4.4) CVE-2023-27413 CWE-79 CWE-79 High WordPress Plugin W4 Post List Multiple Vulnerabilities (2.4.5) CVE-2023-0374 CVE-2023-1371 CVE-2023-1373 CWE-79 CWE-200 CWE-79 CWE-200 High WordPress Plugin WA Form Builder SQL Injection (1.1) CWE-89 CWE-89 High WordPress Plugin Waitlist Woocommerce (Back in stock notifier) Cross-Site Request Forgery (2.5.1) CVE-2022-0215 CWE-352 CWE-352 High WordPress Plugin Walk Score Multiple Cross-Site Scripting Vulnerabilities (0.5.5) CVE-2014-4573 CWE-79 CWE-79 High WordPress Plugin Wallable-Social Networking Arbitrary File Upload (1.1) CWE-434 CWE-434 High WordPress Plugin WangGuard Cross-Site Scripting (1.7.1) CWE-79 CWE-79 High WordPress Plugin WangGuard Multiple Vulnerabilities (1.7.2) CWE-79 CWE-352 CWE-79 CWE-352 High WordPress Plugin WappPress-Create Mobile App for any WordPress site with our Mobile App Builder in just 1 minute Arbitrary File Upload (5.0.3) CVE-2023-49815 CWE-434 CWE-434 High WordPress Plugin Warranties and Returns for WooCommerce Security Bypass (5.2.1) CWE-264 CWE-264 High WordPress Plugin WassUp Real Time Analytics 'spy.php' SQL Injection (1.4.3) CVE-2008-0520 CWE-89 CWE-89 High WordPress Plugin WassUp Real Time Analytics Cross-Site Scripting (1.8.3) CVE-2012-2633 CWE-79 CWE-79 High WordPress Plugin WassUp Real Time Analytics Cross-Site Scripting (1.9) CWE-79 CWE-79 High WordPress Plugin WassUp Real Time Analytics Unspecified Vulnerability (1.7.2) High WordPress Plugin WatchMan-Site7 Cross-Site Request Forgery (3.0.2) CWE-352 CWE-352 High WordPress Plugin WatchTowerHQ Privilege Escalation (3.6.16) CVE-2023-25701 CWE-269 CWE-269 High WordPress Plugin WatchTowerHQ Security Bypass (3.6.15) CVE-2022-44583 CVE-2022-44584 CWE-862 CWE-862 High WordPress Plugin WatuPRO Multiple Vulnerabilities (4.8.8.4) CWE-79 CWE-352 CWE-79 CWE-352 High WordPress Plugin WatuPRO SQL Injection (5.5.3.6) CVE-2017-9834 CWE-89 CWE-89 High WordPress Plugin Watu Quiz Cross-Site Scripting (2.4.9) CVE-2014-8804 CWE-79 CWE-79 High WordPress Plugin Watu Quiz Cross-Site Scripting (3.1.2.4) CWE-79 CWE-79 High WordPress Plugin Watu Quiz Cross-Site Scripting (3.1.2.5) CWE-79 CWE-79 High WordPress Plugin Watu Quiz Cross-Site Scripting (3.3.8.1) CVE-2023-0428 CWE-79 CWE-79 High WordPress Plugin Watu Quiz Cross-Site Scripting (3.3.8.2) CVE-2023-0429 CWE-79 CWE-79 High WordPress Plugin Watu Quiz Cross-Site Scripting (3.3.9) CVE-2023-0968 CWE-79 CWE-79 High WordPress Plugin Watu Quiz Cross-Site Scripting (3.3.9.2) CVE-2023-30483 CWE-79 CWE-79 High WordPress Plugin Watu Quiz Unspecified Vulnerability (2.6) High WordPress Plugin Wbcom Designs-BuddyPress Group Reviews Security Bypass (2.8.3) CVE-2022-2108 CWE-264 CWE-264 High WordPress Plugin WBW Currency Switcher for WooCommerce Cross-Site Scripting (1.6.5) CVE-2022-2575 CWE-79 CWE-79 High WordPress Plugin WC Duplicate Order Security Bypass (1.5) CWE-264 CWE-264 High WordPress Plugin WC Duplicate Order Unspecified Vulnerability (1.3) High WordPress Plugin WCFM-Frontend Manager for WooCommerce along with Bookings Subscription Listings Compatible SQL Injection (6.5.11) CVE-2021-24835 CWE-89 CWE-89 High WordPress Plugin WCFM-Frontend Manager for WooCommerce along with Bookings Subscription Listings Compatible Unspecified Vulnerability (6.5.12) High WordPress Plugin WCFM Membership-WooCommerce Memberships for Multivendor Marketplace Cross-Site Request Forgery (2.9.10) CVE-2022-4941 CWE-352 CWE-352 High WordPress Plugin WCFM Membership-WooCommerce Memberships for Multivendor Marketplace Insecure Direct Object Reference (2.10.7) CVE-2023-2276 CWE-639 CWE-639 High WordPress Plugin WCFM Membership-WooCommerce Memberships for Multivendor Marketplace Privilege Escalation (2.10.0) CVE-2022-4939 CWE-269 CWE-269 High WordPress Plugin Weather Effect-Christmas Santa Snow Falling Cross-Site Request Forgery (1.3.3) CVE-2021-24683 CWE-352 CWE-352 High WordPress Plugin Weather Effect-Christmas Santa Snow Falling Cross-Site Scripting (1.3.5) CVE-2021-24709 CWE-79 CWE-79 High WordPress Plugin Weather for us-animated weather widget Crypto Mining (1.8) CWE-829 CWE-829 High WordPress Plugin Weaver Show Posts Cross-Site Scripting (1.6) CVE-2023-1404 CWE-79 CWE-79 High WordPress Plugin Weaver Xtreme Theme Support Cross-Site Scripting (6.2.6) CVE-2023-0276 CWE-79 CWE-79 High WordPress Plugin Webapp builder (Free mobile apps native iPhone iOS & Android Winphone mobile apps) Arbitrary File Upload (2.0) CVE-2017-1002002 CWE-434 CWE-434 High WordPress Plugin Web Application Firewall-website security Privilege Escalation (2.1.1) CVE-2024-2172 CWE-269 CWE-269 High WordPress Plugin Web Application Firewall-website security Unspecified Vulnerability (2.1.2) High WordPress Plugin WebARX Cross-Site Scripting (1.3.0) CVE-2019-17213 CWE-79 CWE-79 High WordPress Plugin Web Directory Free SQL Injection (1.6.9) CVE-2024-3552 CWE-89 CWE-89 High WordPress Plugin WebEngage Feedback, Survey and Notification Cross-Site Scripting (2.0.0) CVE-2014-4574 CWE-79 CWE-79 High WordPress Plugin Web Forms for Vtiger wordpress Lead capture and Contacts Sync Unspecified Vulnerability (1.0.0) High WordPress Plugin WebHotelier for WordPress Cross-Site Scripting (1.5) CVE-2021-24435 CWE-79 CWE-79 High WordPress Plugin Web Invoice-Invoicing and billing for WordPress Multiple SQL Injection Vulnerabilities (2.1.3) CVE-2022-4371 CVE-2022-4372 CWE-89 CWE-89 High WordPress Plugin WebLibrarian Cross-Site Scripting (3.4.8.6) CWE-79 CWE-79 High WordPress Plugin WebLibrarian Multiple Unspecified Vulnerabilities (2.6.3.1) High WordPress Plugin WebLibrarian SQL Injection (3.5.4) CVE-2019-1010034 CWE-89 CWE-89 High WordPress Plugin Webmention Cross-Site Scripting (4.0.8) CWE-79 CWE-79 High WordPress Plugin WebP Converter for Media Cross-Site Request Forgery (1.0.2) CVE-2019-15834 CWE-352 CWE-352 High WordPress Plugin WebP Express Arbitrary File Disclosure (0.14.10) CVE-2019-15330 CWE-538 CWE-538 High 1...141142143144...165 142 / 165
