Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Arbitrary File Read Arbitrary File Write Authentication Bypass BOLA Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities Ldap Injection Malware Missing Update Path Traversal Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity WordPress Plugin Wufoo Shortcode Cross-Site Scripting (1.50) CWE-79 CWE-79 High WordPress Plugin Wufoo Shortcode Cross-Site Scripting (1.51) CVE-2022-4679 CWE-79 CWE-79 High WordPress Plugin Wunderbar Basic Cross-Site Scripting (1.1.3) CWE-79 CWE-79 High WordPress Plugin XCloner-Backup and Restore Multiple Vulnerabilities (3.1.2) CVE-2015-4336 CVE-2015-4337 CVE-2015-4338 CWE-79 CWE-94 CWE-79 CWE-94 High WordPress Plugin XData Toolkit Arbitrary File Upload (1.9) CWE-434 CWE-434 High WordPress Plugin XEN Carousel Multiple Cross-Site Scripting Vulnerabilities (0.12.2) CVE-2014-4602 CWE-79 CWE-79 High WordPress Plugin Xerte Online 'save.php' Arbitrary File Upload (0.32) CWE-434 CWE-434 High WordPress Plugin XforWooCommerce Security Bypass (1.6.4) CWE-264 CWE-264 High WordPress Plugin Xhanch-My Twitter Cross-Site Request Forgery (2.7.6) CVE-2013-3253 CWE-352 CWE-352 High WordPress Plugin Xhanch-My Twitter Multiple Cross-Site Request Forgery Vulnerabilities (2.7.7) CWE-352 CWE-352 High WordPress Plugin xili-language Multiple Unspecified Vulnerabilities (2.17.0) High WordPress Plugin xili-tidy-tags Cross-Site Request Forgery (1.12.03) CVE-2022-47448 CWE-352 CWE-352 High WordPress Plugin Xllentech English Islamic Calendar SQL Injection (2.6.7) CVE-2021-24341 CWE-89 CWE-89 High WordPress Plugin XML File Export Import for Stamps.com and WooCommerce Cross-Site Request Forgery (1.1.8) CWE-352 CWE-352 High WordPress Plugin XML Sitemap & Google News feeds Cross-Site Scripting (3.9) CWE-79 CWE-79 High WordPress Plugin XML Sitemap & Google News feeds Cross-Site Scripting (4.5) CWE-79 CWE-79 High WordPress Plugin XO Event Calendar Cross-Site Scripting (2.3.6) CWE-79 CWE-79 High WordPress Plugin Xorbin Analog Flash Clock Cross-Site Scripting (1.0) CVE-2013-4692 CWE-79 CWE-79 High WordPress Plugin Xorbin Digital Flash Clock Cross-Site Scripting (1.0) CVE-2013-4693 CWE-79 CWE-79 High WordPress Plugin XO Security Cross-Site Scripting (1.5.2) CWE-79 CWE-79 High WordPress Plugin xPinner Lite Multiple Vulnerabilities (2.2) CWE-79 CWE-352 CWE-79 CWE-352 High WordPress Plugin Xtreme Locator Dealer Locator SQL Injection (1.5) CWE-89 CWE-89 High WordPress Plugin XVE Various Embed Multiple Cross-Site Scripting Vulnerabilities (1.0.3) CWE-79 CWE-79 High WordPress Plugin Yahoo! Updates for WordPress Multiple Cross-Site Scripting Vulnerabilities (1.0) CVE-2014-4603 CWE-79 CWE-79 High WordPress Plugin Yakadanda Google+ Hangout Events Cross-Site Scripting (0.3.7) CWE-79 CWE-79 High WordPress Plugin YaMaps for WordPress Cross-Site Scripting (0.6.25) CVE-2023-0270 CWE-79 CWE-79 High WordPress Plugin Yandex.News Feed by Teplitsa Cross-Site Scripting (1.12.5) CVE-2023-25052 CWE-79 CWE-79 High WordPress Plugin Yandex Money button Cross-Site Scripting (2.3.3) CVE-2021-24435 CWE-79 CWE-79 High WordPress Plugin YARPP-Yet Another Related Posts Cross-Site Scripting (5.30.2) CVE-2022-4471 CWE-79 CWE-79 High WordPress Plugin YARPP-Yet Another Related Posts Local File Inclusion (5.30.3) CVE-2022-45374 CWE-22 CWE-22 High WordPress Plugin YARPP-Yet Another Related Posts Multiple Vulnerabilities (4.2.4) CWE-79 CWE-352 CWE-79 CWE-352 High WordPress Plugin YARPP-Yet Another Related Posts PHP Object Injection (4.4) CWE-915 CWE-915 High WordPress Plugin YARPP-Yet Another Related Posts SQL Injection (5.30.2) CVE-2023-0579 CWE-89 CWE-89 High WordPress Plugin Yasr-Yet Another Stars Rating PHP Object Injection (1.8.6) CWE-915 CWE-915 High WordPress Plugin Yasr-Yet Another Stars Rating SQL Injection (0.9.0) CWE-89 CWE-89 High WordPress Plugin Yasr-Yet Another Stars Rating Unspecified Vulnerability (0.9.1) High WordPress Plugin Yasr-Yet Another Stars Rating Unspecified Vulnerability (1.3.2) High WordPress Plugin Yasr-Yet Another Stars Rating Unspecified Vulnerability (1.7.0) High WordPress Plugin YAS Slideshow Arbitrary File Upload (3.4) CWE-434 CWE-434 High WordPress Plugin YAWPP (Yet Another WordPress Petition Plugin) SQL Injection (1.2) CVE-2014-5182 CWE-89 CWE-89 High WordPress Plugin YaySMTP-Simple WP SMTP Mail Cross-Site Scripting (2.2) CVE-2022-2371 CWE-79 CWE-79 High WordPress Plugin YaySMTP-Simple WP SMTP Mail Cross-Site Scripting (2.2.1) CVE-2022-2372 CWE-79 CWE-79 High WordPress Plugin YaySMTP-Simple WP SMTP Mail Cross-Site Scripting (2.4.5) CVE-2023-3093 CWE-79 CWE-79 High WordPress Plugin YaySMTP-Simple WP SMTP Mail Information Disclosure (2.2) CVE-2022-2369 CWE-862 CWE-862 High WordPress Plugin Yes-co ORES Cross-Site Scripting (1.3.44) CWE-79 CWE-79 High WordPress Plugin Yes/No Chart SQL Injection (1.0.11) CVE-2021-24360 CWE-89 CWE-89 High WordPress Plugin Yet Another bol.com Cross-Site Scripting (1.4) CVE-2021-38330 CWE-79 CWE-79 High WordPress Plugin Yet Another Photoblog Unspecified Vulnerability (1.10.6) High WordPress Plugin YITH Advanced Refund System for WooCommerce Security Bypass (1.0.10) CVE-2019-16251 CWE-264 CWE-264 High WordPress Plugin YITH Color and Label Variations for WooCommerce Security Bypass (1.8.11) CVE-2019-16251 CWE-264 CWE-264 High WordPress Plugin YITH Custom Thank You Page for Woocommerce Security Bypass (1.1.6) CVE-2019-16251 CWE-264 CWE-264 High WordPress Plugin YITH Desktop Notifications for WooCommerce Security Bypass (1.2.7) CVE-2019-16251 CWE-264 CWE-264 High WordPress Plugin YITH Maintenance Mode Cross-Site Scripting (1.1.4) CWE-79 CWE-79 High WordPress Plugin YITH Maintenance Mode Cross-Site Scripting (1.3.7) CVE-2021-36841 CWE-79 CWE-79 High WordPress Plugin YITH Maintenance Mode Multiple Cross-Site Scripting Vulnerabilities (1.3.8) CVE-2021-36845 CWE-79 CWE-79 High WordPress Plugin YITH PayPal Express Checkout for WooCommerce Security Bypass (1.2.5) CVE-2019-16251 CWE-264 CWE-264 High WordPress Plugin YITH Pre-Order for WooCommerce Security Bypass (1.1.9) CVE-2019-16251 CWE-264 CWE-264 High WordPress Plugin YITH Product Size Charts for WooCommerce Security Bypass (1.1.11) CVE-2019-16251 CWE-264 CWE-264 High WordPress Plugin YITH WooCommerce Added to Cart Popup Security Bypass (1.3.11) CVE-2019-16251 CWE-264 CWE-264 High WordPress Plugin YITH WooCommerce Advanced Reviews Security Bypass (1.3.9) CVE-2019-16251 CWE-264 CWE-264 High WordPress Plugin YITH WooCommerce Affiliates Security Bypass (1.6.3) CVE-2019-16251 CWE-264 CWE-264 High WordPress Plugin YITH WooCommerce Ajax Product Filter Cross-Site Scripting (3.11.0) CWE-79 CWE-79 High WordPress Plugin YITH WooCommerce Ajax Search Security Bypass (1.6.9) CVE-2019-16251 CWE-264 CWE-264 High WordPress Plugin YITH WooCommerce Ajax Search Unspecified Vulnerability (1.2.7) High WordPress Plugin YITH WooCommerce Authorize.net Payment Gateway Security Bypass (1.1.12) CVE-2019-16251 CWE-264 CWE-264 High WordPress Plugin YITH WooCommerce Badge Management Security Bypass (1.3.19) CVE-2019-16251 CWE-264 CWE-264 High WordPress Plugin YITH WooCommerce Best Sellers Security Bypass (1.1.11) CVE-2019-16251 CWE-264 CWE-264 High WordPress Plugin YITH WooCommerce Brands Add-On Security Bypass (1.3.6) CVE-2019-16251 CWE-264 CWE-264 High WordPress Plugin YITH WooCommerce Bulk Product Editing Security Bypass (1.2.13) CVE-2019-16251 CWE-264 CWE-264 High WordPress Plugin YITH WooCommerce Cart Messages Security Bypass (1.4.3) CVE-2019-16251 CWE-264 CWE-264 High WordPress Plugin YITH WooCommerce Compare PHP Object Injection (2.0.9) CWE-915 CWE-915 High WordPress Plugin YITH WooCommerce Compare Security Bypass (2.3.13) CVE-2019-16251 CWE-264 CWE-264 High WordPress Plugin YITH WooCommerce Frequently Bought Together Security Bypass (1.2.10) CVE-2019-16251 CWE-264 CWE-264 High WordPress Plugin YITH WooCommerce Gift Cards Premium Arbitrary File Upload (3.3.0) CVE-2021-3120 CWE-434 CWE-434 High WordPress Plugin YITH WooCommerce Gift Cards Premium Arbitrary File Upload (3.19.0) CVE-2022-45359 CWE-434 CWE-434 High 1...163164165166...169 164 / 169
