Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Authentication Bypass Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities Ldap Injection Malware Missing Update Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity WordPress Plugin ALO EasyMail Newsletter Multiple Cross-Site Scripting Vulnerabilities (2.4.7) CWE-79 CWE-79 High WordPress Plugin ALO EasyMail Newsletter Multiple Vulnerabilities (2.6.00) CWE-79 CWE-352 CWE-79 CWE-352 High WordPress Plugin Alojapro Widget Cross-Site Scripting (1.1.15) CVE-2021-24530 CWE-79 CWE-79 High WordPress Plugin Alphabetic Pagination Security Bypass (3.0.7) CWE-862 CWE-862 High WordPress Plugin Alpine PhotoTile for Instagram Cross-Site Scripting (1.2.6.5) CWE-79 CWE-79 High WordPress Plugin Alpine PhotoTile for Instagram Cross-Site Scripting (1.2.7.4) CWE-79 CWE-79 High WordPress Plugin Alpine PhotoTile for Instagram Cross-Site Scripting (1.2.7.5) CWE-79 CWE-79 High WordPress Plugin Alpine PhotoTile for Instagram Cross-Site Scripting (1.2.7.7) CWE-79 CWE-79 High WordPress Plugin Altos Connect Widget Cross-Site Scripting (1.3.0) CWE-79 CWE-79 High WordPress Plugin AmazonFeed Cross-Site Scripting (2.1) CWE-79 CWE-79 High WordPress Plugin Amazon JS Cross-Site Scripting (0.10) CVE-2023-0075 CWE-79 CWE-79 High WordPress Plugin Amazon Product in a Post SQL Injection (3.5.2) CWE-89 CWE-89 High WordPress Plugin Amazon Tools Cross-Site Scripting (1.7.2) CWE-79 CWE-79 High WordPress Plugin Amelia-Events & Appointments Booking Calendar Cross-Site Scripting (1.0.46) CVE-2022-0834 CWE-79 CWE-79 High WordPress Plugin Amelia-Events & Appointments Booking Calendar Multiple Vulnerabilities (1.0.45) CVE-2022-0616 CVE-2022-0627 CVE-2022-0687 CWE-79 CWE-94 CWE-352 CWE-79 CWE-94 CWE-352 High WordPress Plugin Amministrazione Trasparente Cross-Site Request Forgery (7.1) CWE-352 CWE-352 High WordPress Plugin AMP extensions Cross-Site Scripting (1.1) CVE-2021-24435 CWE-79 CWE-79 High WordPress Plugin AMP for WP-Accelerated Mobile Pages Multiple Unspecified Vulnerabilities (0.9.72) High WordPress Plugin AMP for WP-Accelerated Mobile Pages Security Bypass (0.9.97.19) CWE-264 CWE-264 High WordPress Plugin AMP Toolbox Cross-Site Scripting (1.9.4) CWE-79 CWE-79 High WordPress Plugin amr shortcode any widget Cross-Site Scripting (4.0) CVE-2022-4458 CWE-79 CWE-79 High WordPress Plugin amtyThumb Cross-Site Scripting (4.1.2) CWE-79 CWE-79 High WordPress Plugin amtyThumb posts Cross-Site Scripting (8.1.3) CVE-2017-17059 CWE-79 CWE-79 High WordPress Plugin Analyticator Cross-Site Request Forgery (6.4.9.3) CVE-2015-4697 CWE-352 CWE-352 High WordPress Plugin Analyticator Multiple Cross-Site Scripting Vulnerabilities (6.4.9.5) CVE-2015-6238 CWE-79 CWE-79 High WordPress Plugin Analyticator PHP Object Injection (6.5.5) CVE-2022-3425 CVE-2022-4323 CWE-915 CWE-915 High WordPress Plugin Analytics-Gtag Restricted File Upload (1.8.1) CWE-79 CWE-79 High WordPress Plugin Analytics Cross-Site Scripting (1.2.3) CWE-79 CWE-79 High WordPress Plugin Analytics Remote Code Execution (1.7) CWE-94 CWE-94 High WordPress Plugin Analytics Stats Counter Statistics PHP Object Injection (1.2.2.5) CWE-915 CWE-915 High WordPress Plugin Analytics Tracker Cross-Site Scripting (1.1.0) CWE-79 CWE-79 High WordPress Plugin Animal Captcha Cross-Site Scripting (1.6.2) CWE-79 CWE-79 High WordPress Plugin Animate It! Cross-Site Request Forgery (2.3.5) CVE-2019-17386 CWE-352 CWE-352 High WordPress Plugin Animate It! Cross-Site Scripting (2.3.3) CVE-2019-17384 CWE-79 CWE-79 High WordPress Plugin Animate It! Cross-Site Scripting (2.3.4) CVE-2019-17385 CWE-79 CWE-79 High WordPress Plugin Annonces 'abspath' Parameter Remote File Include (1.2.0.0) CWE-94 CWE-94 High WordPress Plugin Annonces 'theme.php' Arbitrary File Upload (1.2.0.1) CWE-434 CWE-434 High WordPress Plugin AnnounceME Cross-Site Scripting (0.3.3) CWE-79 CWE-79 High WordPress Plugin Another WordPress Classifieds Arbitrary File Upload (3.3.2) CWE-434 CWE-434 High WordPress Plugin Another WordPress Classifieds Cross-Site Scripting (3.3.1) CVE-2014-9313 CWE-79 CWE-79 High WordPress Plugin Another WordPress Classifieds Multiple Vulnerabilities (2.2.1) CVE-2014-10012 CVE-2014-10013 CWE-79 CWE-89 CWE-79 CWE-89 High WordPress Plugin Another WordPress Classifieds Unspecified Vulnerability (1.8.9.4) CVE-2012-4874 High WordPress Plugin Answer My Question Cross-Site Scripting (1.3) CWE-79 CWE-79 High WordPress Plugin Answer My Question Multiple Cross-Site Scripting Vulnerabilities (1.1) CWE-79 CWE-79 High WordPress Plugin Answer My Question SQL Injection (1.3) CWE-89 CWE-89 High WordPress Plugin Anthologize Cross-Site Scripting (0.7.7) CWE-79 CWE-79 High WordPress Plugin Anti-Malware Security and Brute-Force Firewall Cross-Site Scripting (1.2.05.20) CWE-79 CWE-79 High WordPress Plugin Anti-Malware Security and Brute-Force Firewall Cross-Site Scripting (4.15.22) CWE-79 CWE-79 High WordPress Plugin Anti-Malware Security and Brute-Force Firewall Cross-Site Scripting (4.15.42) CWE-79 CWE-79 High WordPress Plugin Anti-Malware Security and Brute-Force Firewall Cross-Site Scripting (4.15.49) CWE-79 CWE-79 High WordPress Plugin Anti-Malware Security and Brute-Force Firewall Cross-Site Scripting (4.17.29) CWE-79 CWE-79 High WordPress Plugin Anti-Malware Security and Brute-Force Firewall Local File Inclusion (4.18.63) CWE-22 CWE-22 High WordPress Plugin Anti-Malware Security and Brute-Force Firewall Multiple Cross-Site Scripting Vulnerabilities (4.15.17) CWE-79 CWE-79 High WordPress Plugin Anti-Splog Cross-Site Scripting (2.1.7) CWE-79 CWE-79 High WordPress Plugin Anti Plagiarism Cross-Site Scripting (3.60) CVE-2016-1000128 CWE-79 CWE-79 High WordPress Plugin Anti Spam Protection without CAPTCHA powered by Keypic Security Bypass (2.1.2) CWE-264 CWE-264 High WordPress Plugin AnyComment Cross-Site Scripting (0.0.32) CVE-2018-21001 CWE-79 CWE-79 High WordPress Plugin AnyFont Cross-Site Scripting (2.2.3) CVE-2014-4515 CWE-79 CWE-79 High WordPress Plugin AnyMind Widget Cross-Site Request Forgery (1.1) CVE-2022-2435 CWE-352 CWE-352 High WordPress Plugin AnyVar Cross-Site Scripting (0.1.1) CVE-2017-6103 CWE-79 CWE-79 High WordPress Plugin Aoi Tori Cross-Site Scripting (1.1) CVE-2021-24435 CWE-79 CWE-79 High WordPress Plugin aoringo CAT setter Cross-Site Scripting (0.1.1) CWE-79 CWE-79 High WordPress Plugin aoringo LOG maker Cross-Site Scripting (0.1.3) CWE-79 CWE-79 High WordPress Plugin aoringo TAG upper Cross-Site Scripting (0.1.6) CWE-79 CWE-79 High WordPress Plugin A Page Flip Book 'pageflipbook_language' Parameter Local File Include (2.3) CVE-2012-6652 CWE-22 CWE-22 High WordPress Plugin AP Companion includes Backdoor [Only if downloaded via the vendor website] (1.0.6) CVE-2021-24867 CWE-912 CWE-912 High WordPress Plugin API Bearer Auth Cross-Site Scripting (20181229) CVE-2019-16332 CWE-79 CWE-79 High WordPress Plugin Apocalypse Meow Security Bypass (21.2.7) CWE-287 CWE-287 High WordPress Plugin ApplyOnline-Application Form Builder and Manager Arbitrary File Disclosure (1.9.92) CWE-538 CWE-538 High WordPress Plugin ApplyOnline-Application Form Builder and Manager Cross-Site Scripting (1.9.94) CWE-79 CWE-79 High WordPress Plugin Appointment Booking Calendar-BirchPress Scheduler Unspecified Vulnerability (1.13.0) High WordPress Plugin Appointment Booking Calendar and Online Scheduling-BookingPress Arbitrary File Creation (1.1.5) CVE-2024-6467 CWE-73 CWE-73 High WordPress Plugin Appointment Booking Calendar and Online Scheduling-BookingPress Insecure Direct Object Reference (1.0.30) CVE-2022-4340 CWE-639 CWE-639 High WordPress Plugin Appointment Booking Calendar and Online Scheduling-BookingPress Security Bypass (1.1.5) CVE-2024-6660 CWE-863 CWE-863 High WordPress Plugin Appointment Booking Calendar and Online Scheduling-BookingPress SQL Injection (1.0.10) CVE-2022-0739 CWE-89 CWE-89 High 1...65666768...165 66 / 165
