Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Authentication Bypass Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities Ldap Injection Malware Missing Update Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity WordPress Plugin WordPress-Amazon-Associate (WPAA) Cross-Site Scripting (2.0) CWE-79 CWE-79 High WordPress Plugin WordPress-Amazon-Associate (WPAA) Multiple Cross-Site Scripting Vulnerabilities (1.7.3) CWE-79 CWE-79 High WordPress Plugin WordPress.com Custom CSS Cross-Site Scripting (1.5) CWE-79 CWE-79 High WordPress Plugin WordPress Access Areas Security Bypass (1.3.0) CWE-284 CWE-284 High WordPress Plugin WordPress Advanced Ticket System, Elite Support Helpdesk Cross-Site Scripting (1.0.63) CVE-2021-24623 CWE-79 CWE-79 High WordPress Plugin WordPress Ad Widget Local File Inclusion (2.11.0) CWE-22 CWE-22 High WordPress Plugin WordPress Affiliates-SliceWP Cross-Site Scripting (1.0.45) CWE-79 CWE-79 High WordPress Plugin WordPress Alipay/Tenpay/PayPal Cross-Site Scripting (3.6.0) CVE-2014-4514 CWE-79 CWE-79 High WordPress Plugin WordPress Alipay/Tenpay/PayPal SQL Injection (3.7.2) CVE-2021-24390 CWE-89 CWE-89 High WordPress Plugin WordPress Appointment Booking and Online Scheduling by Appointy Cross-Site Scripting (2.40) CWE-79 CWE-79 High WordPress Plugin WordPress Appointment Schedule Booking System Cross-Site Scripting (1.0) CWE-79 CWE-79 High WordPress Plugin WordPress Automatic 'q' Parameter SQL Injection (2.0.3) CWE-89 CWE-89 High WordPress Plugin WordPress Automatic Security Bypass (3.53.2) CWE-264 CWE-264 High WordPress Plugin WordPress Automatic SQL Injection (3.92.0) CVE-2024-27956 CWE-89 CWE-89 High WordPress Plugin WordPress Backend Customizer-Everest Admin Theme Lite includes Backdoor [Only if downloaded via the vendor website] (1.0.7) CVE-2021-24867 CWE-912 CWE-912 High WordPress Plugin WordPress Backup and Migrate-Backup Guard Arbitrary File Upload (1.0.2) CWE-434 CWE-434 High WordPress Plugin WordPress Backup and Migrate-Backup Guard Arbitrary File Upload (1.5.9) CVE-2021-24155 CWE-434 CWE-434 High WordPress Plugin WordPress Backup and Migrate-Backup Guard Cross-Site Request Forgery (1.1.90) CWE-352 CWE-352 High WordPress Plugin WordPress Backup and Migrate-Backup Guard Cross-Site Scripting (1.1.46) CVE-2017-10837 CWE-79 CWE-79 High WordPress Plugin WordPress Backup and Migrate-Backup Guard Multiple Unspecified Vulnerabilities (1.1.29) High WordPress Plugin WordPress Backup and Migrate-Backup Guard Multiple Unspecified Vulnerabilities (1.1.32) High WordPress Plugin WordPress Backup and Migrate-Backup Guard Unspecified Vulnerability (1.0.6) High WordPress Plugin WordPress Backup to Dropbox Cross-Site Scripting (4.0) CVE-2014-9310 CWE-79 CWE-79 High WordPress Plugin WordPress Backup to Dropbox Information Disclosure (4.7.1) CWE-200 CWE-200 High WordPress Plugin WordPress Backup to Ziddu Cross-Site Scripting (1) CWE-79 CWE-79 High WordPress Plugin WordPress Bitcoin Payments-Blockonomics Cross-Site Scripting (3.2) CWE-79 CWE-79 High WordPress Plugin WordPress Bitcoin Payments-Blockonomics Cross-Site Scripting (3.5.7) CVE-2022-47145 CWE-79 CWE-79 High WordPress Plugin WordPress Book List Arbitrary File Upload (5.0.11) CWE-434 CWE-434 High WordPress Plugin WordPress Books Gallery Cross-Site Request Forgery (4.4.8) CVE-2023-23705 CWE-352 CWE-352 High WordPress Plugin WordPress Books Gallery Security Bypass (3.5) CWE-862 CWE-862 High WordPress Plugin WordPress Books Gallery Unspecified Vulnerability (4.4.1) High WordPress Plugin WordPress Button Plugin MaxButtons Cross-Site Scripting (1.26.0) CVE-2014-7181 CWE-79 CWE-79 High WordPress Plugin WordPress Button Plugin MaxButtons Cross-Site Scripting (6.18) CVE-2017-2169 CWE-79 CWE-79 High WordPress Plugin WordPress Button Plugin MaxButtons Multiple Cross-Site Scripting Vulnerabilities (1.36) CWE-79 CWE-79 High WordPress Plugin WordPress Button Plugin MaxButtons Security Bypass (1.19.0) CWE-264 CWE-264 High WordPress Plugin WordPress Calls to Action Cross-Site Scripting (2.2.7) CWE-79 CWE-79 High WordPress Plugin WordPress Calls to Action Multiple Cross-Site Scripting Vulnerabilities (2.5.0) CVE-2015-8350 CWE-79 CWE-79 High WordPress Plugin WordPress Calls to Action Multiple Vulnerabilities (2.3.7) CWE-79 CWE-352 CWE-79 CWE-352 High WordPress Plugin WordPress Calls to Action Unspecified Vulnerability (2.3.1) High WordPress Plugin WordPress Calls to Action Unspecified Vulnerability (2.3.5) High WordPress Plugin WordPress Clean Up & Optimizer-Clean Up Optimizer Multiple Unspecified Vulnerabilities (4.0.12) High WordPress Plugin WordPress Clean Up & Optimizer-Clean Up Optimizer SQL Injection (3.0.13) CWE-89 CWE-89 High WordPress Plugin WordPress Colorbox Lightbox Cross-Site Scripting (1.1.2) CWE-79 CWE-79 High WordPress Plugin WordPress Comment Rating Cross-Site Scripting (1.5.3) CWE-79 CWE-79 High WordPress Plugin WordPress Comments Import & Export Cross-Site Request Forgery (2.1.10) CWE-352 CWE-352 High WordPress Plugin WordPress Comments Import & Export CSV Injection (2.0.4) CVE-2018-11526 CWE-20 CWE-20 High WordPress Plugin WordPress Connect Cross-Site Scripting (2.0.3) CWE-79 CWE-79 High WordPress Plugin WordPress Console Security Bypass (0.3.9) CVE-2023-28168 CWE-862 CWE-862 High WordPress Plugin WordPress Contact Forms by Cimatti Cross-Site Scripting (1.4.11) CVE-2021-24744 CWE-79 CWE-79 High WordPress Plugin WordPress Content Slide Multiple Vulnerabilities (1.4.2) CVE-2013-2708 CWE-79 CWE-352 CWE-79 CWE-352 High WordPress Plugin Wordpress Countdown Widget Cross-Site Scripting (3.1.9.2) CVE-2022-2944 CWE-79 CWE-79 High WordPress Plugin WordPress Custom Global Variable Unspecified Vulnerability (3.0.0) High WordPress Plugin WordPress Custom Settings Cross-Site Scripting (1.0) CVE-2023-23806 CWE-79 CWE-79 High WordPress Plugin WordPress Download Manager 'cid' Parameter Cross-Site Scripting (2.2.2) CWE-79 CWE-79 High WordPress Plugin WordPress Download Manager Arbitrary File Upload (2.8.97) CWE-434 CWE-434 High WordPress Plugin WordPress Download Manager Cross-Site Request Forgery (2.8.99) CWE-352 CWE-352 High WordPress Plugin WordPress Download Manager Cross-Site Request Forgery (2.9.60) CWE-352 CWE-352 High WordPress Plugin WordPress Download Manager Cross-Site Request Forgery (3.2.12) CWE-352 CWE-352 High WordPress Plugin WordPress Download Manager Cross-Site Scripting (2.5.8) CVE-2013-7319 CWE-79 CWE-79 High WordPress Plugin WordPress Download Manager Cross-Site Scripting (2.7.94) CWE-79 CWE-79 High WordPress Plugin WordPress Download Manager Cross-Site Scripting (2.9.51) CVE-2017-18032 CWE-79 CWE-79 High WordPress Plugin WordPress Download Manager Cross-Site Scripting (2.9.86) CWE-79 CWE-79 High WordPress Plugin WordPress Download Manager Cross-Site Scripting (2.9.93) CVE-2019-15889 CWE-79 CWE-79 High WordPress Plugin WordPress Download Manager Cross-Site Scripting (3.2.15) CVE-2021-24773 CWE-79 CWE-79 High WordPress Plugin WordPress Download Manager Cross-Site Scripting (3.2.21) CVE-2021-24969 CWE-79 CWE-79 High WordPress Plugin WordPress Download Manager Directory Traversal (2.6.95) CVE-2014-8585 CWE-22 CWE-22 High WordPress Plugin WordPress Download Manager Multiple Security Bypass Vulnerabilities (2.6.92) CWE-284 CWE-284 High WordPress Plugin WordPress Download Manager Multiple Vulnerabilities (2.8.7) CWE-264 CWE-538 CWE-264 CWE-538 High WordPress Plugin WordPress Download Manager Multiple Vulnerabilities (2.9.49) CVE-2017-2216 CVE-2017-2217 CWE-79 CWE-601 CWE-79 CWE-601 High WordPress Plugin WordPress Download Manager Multiple Vulnerabilities (3.1.24) CVE-2021-34638 CVE-2021-34639 CWE-22 CWE-434 CWE-22 CWE-434 High WordPress Plugin WordPress Download Manager Open Redirect (2.9.50) CVE-2017-2217 CWE-601 CWE-601 High WordPress Plugin WordPress Download Manager Remote Code Execution (2.7.4) CWE-94 CWE-94 High WordPress Plugin WordPress Download Manager Security Bypass (2.7.2) CVE-2014-9260 CWE-264 CWE-264 High WordPress Plugin WordPress Download Manager Unspecified Vulnerability (2.9.96) High WordPress Plugin WordPress Download Manager Unspecified Vulnerability (3.1.18) High 1...145146147148...165 146 / 165
