Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Arbitrary File Read Arbitrary File Write Authentication Bypass BOLA Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities Ldap Injection Malware Missing Update Path Traversal Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity WordPress Cross-Site Scripting Vulnerability (0.70 - 3.7.11) CVE-2016-1564 CWE-79 CWE-79 High WordPress Cross-Site Scripting Vulnerability (0.70 - 4.1.1) CVE-2015-3438 CWE-79 CWE-79 High WordPress Cross-Site Scripting Vulnerability (3.0 - 3.6.1) CVE-2014-9031 CWE-79 CWE-79 High WordPress Cross-Site Scripting Vulnerability (3.9 - 4.1.1) CVE-2015-3439 CWE-79 CWE-79 High WordPress Cross-Site Scripting Vulnerability (3.9.3 - 4.2) CVE-2015-3440 CWE-79 CWE-79 High WordPress CVE-2011-4899 Vulnerability (CVE-2011-4899) CVE-2011-4899 High WordPress CVE-2014-5203 Vulnerability (CVE-2014-5203) CVE-2014-5203 High WordPress CVE-2016-5832 Vulnerability (CVE-2016-5832) CVE-2016-5832 High WordPress CVE-2016-5836 Vulnerability (CVE-2016-5836) CVE-2016-5836 High WordPress CVE-2016-5837 Vulnerability (CVE-2016-5837) CVE-2016-5837 High WordPress CVE-2016-5839 Vulnerability (CVE-2016-5839) CVE-2016-5839 High WordPress CVE-2017-1001000 Vulnerability (CVE-2017-1001000) CVE-2017-1001000 High WordPress CVE-2019-17673 Vulnerability (CVE-2019-17673) CVE-2019-17673 High WordPress CVE-2020-28033 Vulnerability (CVE-2020-28033) CVE-2020-28033 High WordPress debug mode CWE-200 CWE-200 High WordPress Denial of Service Vulnerability (0.70 - 3.6.1) CVE-2018-6389 CWE-400 CWE-400 High WordPress Denial of Service Vulnerability (3.5 - 3.6.1) CVE-2014-5265 CWE-399 CWE-399 High WordPress Deserialization of Untrusted Data Vulnerability (CVE-2018-19296) CVE-2018-19296 CWE-502 CWE-502 High WordPress Deserialization of Untrusted Data Vulnerability (CVE-2022-21663) CVE-2022-21663 CWE-502 CWE-502 High WordPress Directory Traversal (3.7 - 5.0.3) CVE-2019-8943 CWE-22 CWE-22 High WordPress Duplicator plugin Unauthenticated Arbitrary File Download CWE-22 CWE-22 High WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-5835) CVE-2016-5835 CWE-200 CWE-200 High WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-20151) CVE-2018-20151 CWE-200 CWE-200 High WordPress Improper Authentication Vulnerability (CVE-2008-1930) CVE-2008-1930 CWE-287 CWE-287 High WordPress Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2003-1599) CVE-2003-1599 CWE-94 CWE-94 High WordPress Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2013-4338) CVE-2013-4338 CWE-94 CWE-94 High WordPress Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2019-8942) CVE-2019-8942 CWE-94 CWE-94 High WordPress Improper Input Validation Vulnerability (CVE-2007-1277) CVE-2007-1277 CWE-20 CWE-20 High WordPress Improper Input Validation Vulnerability (CVE-2008-5695) CVE-2008-5695 CWE-20 CWE-20 High WordPress Improper Input Validation Vulnerability (CVE-2013-4339) CVE-2013-4339 CWE-20 CWE-20 High WordPress Improper Input Validation Vulnerability (CVE-2017-9065) CVE-2017-9065 CWE-20 CWE-20 High WordPress Improper Input Validation Vulnerability (CVE-2017-1000600) CVE-2017-1000600 CWE-20 CWE-20 High WordPress Improper Input Validation Vulnerability (CVE-2018-1000773) CVE-2018-1000773 CWE-20 CWE-20 High WordPress Improper Input Validation Vulnerability (CVE-2020-26596) CVE-2020-26596 CWE-20 CWE-20 High WordPress Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2008-0194) CVE-2008-0194 CWE-22 CWE-22 High WordPress Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2016-6896) CVE-2016-6896 CWE-22 CWE-22 High WordPress Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2017-14719) CVE-2017-14719 CWE-22 CWE-22 High WordPress Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2017-14722) CVE-2017-14722 CWE-22 CWE-22 High WordPress Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2018-12895) CVE-2018-12895 CWE-22 CWE-22 High WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-9062) CVE-2017-9062 CWE-707 CWE-707 High WordPress Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2007-4894) CVE-2007-4894 CWE-138 CWE-138 High WordPress Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2008-0491) CVE-2008-0491 CWE-138 CWE-138 High WordPress Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2008-4625) CVE-2008-4625 CWE-138 CWE-138 High WordPress Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2011-3130) CVE-2011-3130 CWE-138 CWE-138 High WordPress Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2015-2213) CVE-2015-2213 CWE-138 CWE-138 High WordPress Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-21661) CVE-2022-21661 CWE-138 CWE-138 High WordPress Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-21664) CVE-2022-21664 CWE-138 CWE-138 High WordPress Inadequate Encryption Strength Vulnerability (CVE-2012-6707) CVE-2012-6707 CWE-326 CWE-326 High WordPress MailPoet Newsletters (wysija-newsletters) unauthenticated file upload CWE-434 CWE-434 High WordPress Missing Authentication for Critical Function Vulnerability (CVE-2020-11028) CVE-2020-11028 CWE-306 CWE-306 High WordPress MU 'wp-admin/wpmu-blogs.php' Multiple Cross-Site Scripting Vulnerabilities (1.0 - 2.5.1) CVE-2008-4671 CWE-79 CWE-79 High WordPress MU 'wp-includes/wpmu-functions.php' Cross-Site Scripting Vulnerability (1.0 - 2.6) CVE-2009-1030 CWE-79 CWE-79 High WordPress Multiple Cross-Site Scripting and SQL Injection Vulnerabilities (1.2.1 - 1.2.2) CWE-79 CWE-89 CWE-79 CWE-89 High WordPress Multiple Cross-Site Scripting Vulnerabilities (1.2 - 1.2.1) CWE-79 CWE-79 High WordPress Multiple Cross-Site Scripting Vulnerabilities (2.0 - 2.0.1) CVE-2006-0985 CVE-2006-1796 CWE-79 CWE-79 High WordPress Multiple Cross-Site Scripting Vulnerabilities (2.0.11 - 2.3) CVE-2008-0193 CWE-79 CWE-79 High WordPress Multiple Cross-Site Scripting Vulnerabilities (4.1 - 4.2.1) CVE-2015-3429 CVE-2015-8834 CWE-79 CWE-79 High WordPress Multiple Vulnerabilities (0.70 - 3.6.1) CVE-2016-5832 CVE-2016-5833 CVE-2016-5834 CVE-2016-5835 CVE-2016-5836 CVE-2016-5837 CVE-2016-5838 CVE-2016-5839 CWE-79 CWE-200 CWE-264 CWE-400 CWE-79 CWE-200 CWE-264 CWE-400 High WordPress OptimizePress unrestricted file upload CVE-2013-7102 CWE-20 CWE-20 High WordPress Other Vulnerability (CVE-2005-1687) CVE-2005-1687 High WordPress Other Vulnerability (CVE-2005-1810) CVE-2005-1810 High WordPress Other Vulnerability (CVE-2005-2108) CVE-2005-2108 High WordPress Other Vulnerability (CVE-2005-2612) CVE-2005-2612 High WordPress Other Vulnerability (CVE-2006-1012) CVE-2006-1012 High WordPress Other Vulnerability (CVE-2006-2667) CVE-2006-2667 High WordPress Other Vulnerability (CVE-2007-0233) CVE-2007-0233 High WordPress Other Vulnerability (CVE-2007-0262) CVE-2007-0262 High WordPress Other Vulnerability (CVE-2007-0539) CVE-2007-0539 High WordPress Other Vulnerability (CVE-2007-2821) CVE-2007-2821 High WordPress Other Vulnerability (CVE-2016-2221) CVE-2016-2221 High WordPress Other Vulnerability (CVE-2016-2222) CVE-2016-2222 High WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-2146) CVE-2008-2146 CWE-264 CWE-264 High WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-3747) CVE-2008-3747 CWE-264 CWE-264 High WordPress Pingback Source URI Denial of Service and Information Disclosure Vulnerabilities (0.6.2 - 2.1.3) CVE-2007-0540 CWE-200 CWE-400 CWE-200 CWE-400 High WordPress Plugin .htaccess Redirect Cross-Site Scripting (0.3.1) CVE-2021-38361 CWE-79 CWE-79 High 1...62636465...169 63 / 169