Vulnerability Name CVE Severity
WordPress Cross-Site Scripting Vulnerability (0.70 - 3.7.11) CVE-2016-1564
WordPress Cross-Site Scripting Vulnerability (0.70 - 4.1.1) CVE-2015-3438
WordPress Cross-Site Scripting Vulnerability (3.0 - 3.6.1) CVE-2014-9031
WordPress Cross-Site Scripting Vulnerability (3.9 - 4.1.1) CVE-2015-3439
WordPress Cross-Site Scripting Vulnerability (3.9.3 - 4.2) CVE-2015-3440
WordPress CVE-2011-4899 Vulnerability (CVE-2011-4899) CVE-2011-4899
WordPress CVE-2014-5203 Vulnerability (CVE-2014-5203) CVE-2014-5203
WordPress CVE-2016-5832 Vulnerability (CVE-2016-5832) CVE-2016-5832
WordPress CVE-2016-5836 Vulnerability (CVE-2016-5836) CVE-2016-5836
WordPress CVE-2016-5837 Vulnerability (CVE-2016-5837) CVE-2016-5837
WordPress CVE-2016-5839 Vulnerability (CVE-2016-5839) CVE-2016-5839
WordPress CVE-2017-1001000 Vulnerability (CVE-2017-1001000) CVE-2017-1001000
WordPress CVE-2019-17673 Vulnerability (CVE-2019-17673) CVE-2019-17673
WordPress CVE-2020-28033 Vulnerability (CVE-2020-28033) CVE-2020-28033
WordPress debug mode
WordPress Denial of Service Vulnerability (0.70 - 3.6.1) CVE-2018-6389
WordPress Denial of Service Vulnerability (3.5 - 3.6.1) CVE-2014-5265
WordPress Deserialization of Untrusted Data Vulnerability (CVE-2018-19296) CVE-2018-19296
WordPress Deserialization of Untrusted Data Vulnerability (CVE-2022-21663) CVE-2022-21663
WordPress Directory Traversal (3.7 - 5.0.3) CVE-2019-8943
WordPress Duplicator plugin Unauthenticated Arbitrary File Download
WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-5835) CVE-2016-5835
WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2018-20151) CVE-2018-20151
WordPress Improper Authentication Vulnerability (CVE-2008-1930) CVE-2008-1930
WordPress Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2003-1599) CVE-2003-1599
WordPress Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2013-4338) CVE-2013-4338
WordPress Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2019-8942) CVE-2019-8942
WordPress Improper Input Validation Vulnerability (CVE-2007-1277) CVE-2007-1277
WordPress Improper Input Validation Vulnerability (CVE-2008-5695) CVE-2008-5695
WordPress Improper Input Validation Vulnerability (CVE-2013-4339) CVE-2013-4339
WordPress Improper Input Validation Vulnerability (CVE-2017-9065) CVE-2017-9065
WordPress Improper Input Validation Vulnerability (CVE-2017-1000600) CVE-2017-1000600
WordPress Improper Input Validation Vulnerability (CVE-2018-1000773) CVE-2018-1000773
WordPress Improper Input Validation Vulnerability (CVE-2020-26596) CVE-2020-26596
WordPress Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2008-0194) CVE-2008-0194
WordPress Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2016-6896) CVE-2016-6896
WordPress Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2017-14719) CVE-2017-14719
WordPress Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2017-14722) CVE-2017-14722
WordPress Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2018-12895) CVE-2018-12895
WordPress Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-9062) CVE-2017-9062
WordPress Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2007-4894) CVE-2007-4894
WordPress Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2008-0491) CVE-2008-0491
WordPress Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2008-4625) CVE-2008-4625
WordPress Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2011-3130) CVE-2011-3130
WordPress Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2015-2213) CVE-2015-2213
WordPress Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-21661) CVE-2022-21661
WordPress Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2022-21664) CVE-2022-21664
WordPress Inadequate Encryption Strength Vulnerability (CVE-2012-6707) CVE-2012-6707
WordPress MailPoet Newsletters (wysija-newsletters) unauthenticated file upload
WordPress Missing Authentication for Critical Function Vulnerability (CVE-2020-11028) CVE-2020-11028
WordPress MU 'wp-admin/wpmu-blogs.php' Multiple Cross-Site Scripting Vulnerabilities (1.0 - 2.5.1) CVE-2008-4671
WordPress MU 'wp-includes/wpmu-functions.php' Cross-Site Scripting Vulnerability (1.0 - 2.6) CVE-2009-1030
WordPress Multiple Cross-Site Scripting and SQL Injection Vulnerabilities (1.2.1 - 1.2.2)
WordPress Multiple Cross-Site Scripting Vulnerabilities (1.2 - 1.2.1)
WordPress Multiple Cross-Site Scripting Vulnerabilities (2.0 - 2.0.1) CVE-2006-0985 CVE-2006-1796
WordPress Multiple Cross-Site Scripting Vulnerabilities (2.0.11 - 2.3) CVE-2008-0193
WordPress Multiple Cross-Site Scripting Vulnerabilities (4.1 - 4.2.1) CVE-2015-3429 CVE-2015-8834
WordPress Multiple Vulnerabilities (0.70 - 3.6.1) CVE-2016-5832 CVE-2016-5833 CVE-2016-5834 CVE-2016-5835 CVE-2016-5836 CVE-2016-5837 CVE-2016-5838 CVE-2016-5839
WordPress OptimizePress unrestricted file upload CVE-2013-7102
WordPress Other Vulnerability (CVE-2005-1687) CVE-2005-1687
WordPress Other Vulnerability (CVE-2005-1810) CVE-2005-1810
WordPress Other Vulnerability (CVE-2005-2108) CVE-2005-2108
WordPress Other Vulnerability (CVE-2005-2612) CVE-2005-2612
WordPress Other Vulnerability (CVE-2006-1012) CVE-2006-1012
WordPress Other Vulnerability (CVE-2006-2667) CVE-2006-2667
WordPress Other Vulnerability (CVE-2007-0233) CVE-2007-0233
WordPress Other Vulnerability (CVE-2007-0262) CVE-2007-0262
WordPress Other Vulnerability (CVE-2007-0539) CVE-2007-0539
WordPress Other Vulnerability (CVE-2007-2821) CVE-2007-2821
WordPress Other Vulnerability (CVE-2016-2221) CVE-2016-2221
WordPress Other Vulnerability (CVE-2016-2222) CVE-2016-2222
WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-2146) CVE-2008-2146
WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2008-3747) CVE-2008-3747
WordPress Pingback Source URI Denial of Service and Information Disclosure Vulnerabilities (0.6.2 - 2.1.3) CVE-2007-0540
WordPress Plugin .htaccess Redirect Cross-Site Scripting (0.3.1) CVE-2021-38361