Vulnerability Name CVE Severity
WordPress Plugin Availability Calendar Cross-Site Scripting (1.2.1) CVE-2021-24604
WordPress Plugin Availability Calendar SQL Injection (1.2) CVE-2021-24606
WordPress Plugin Avenir-soft Direct Download Multiple Vulnerabilities (1.0)
WordPress Plugin AVH Extended Categories Widgets SQL Injection (4.0.0)
WordPress Plugin AVH Extended Categories Widgets Unspecified Vulnerability (4.0.2)
WordPress Plugin Aviary Image Editor Add-on For Gravity Forms Arbitrary File Upload (3.0) CVE-2015-4455
WordPress Plugin AVK-Shop Multiple Cross-Site Scripting Vulnerabilities (1.1.1)
WordPress Plugin Awesome Filterable Portfolio Multiple SQL Injection Vulnerabilities (1.8.6)
WordPress Plugin Awesome Studio Cross-Site Scripting (1.0.7)
WordPress Plugin Awesome Support-WordPress HelpDesk & Support Cross-Site Scripting (3.2.9)
WordPress Plugin Awesome Support-WordPress HelpDesk & Support Cross-Site Scripting (5.8.0) CVE-2019-20181
WordPress Plugin Awesome Support-WordPress HelpDesk & Support Cross-Site Scripting (6.0.5) CVE-2021-24435
WordPress Plugin Awesome Support-WordPress HelpDesk & Support Cross-Site Scripting (6.0.6) CVE-2021-36919
WordPress Plugin Awesome Support-WordPress HelpDesk & Support Multiple Vulnerabilities (4.3.1)
WordPress Plugin Awesome Support-WordPress HelpDesk & Support Unspecified Vulnerability (6.0.7)
WordPress Plugin AWSM Team-Team Showcase Local File Inclusion (1.3.1) CVE-2024-37454
WordPress Plugin AW WordPress Yearly Category Archives Unspecified Vulnerability (1.2.1)
WordPress Plugin AzonPost Cross-Site Scripting (1.3)
WordPress Plugin B2BKing-Ultimate WooCommerce Wholesale and B2B Solution-Wholesale Order Form, Catalog Mode, Dynamic Pricing & More Security Bypass (4.6.00) CVE-2023-3125 CVE-2023-3126
WordPress Plugin BA Book Everything Cross-Site Scripting (1.3.24)
WordPress Plugin Backend Localization Multiple Cross-Site Scripting Vulnerabilities (1.6.1)
WordPress Plugin Background Music Cross-Site Scripting (1.0) CVE-2013-1942
WordPress Plugin Backlink Rechecker Multiple Cross-Site Scripting Vulnerabilities (1.2.1)
WordPress Plugin Backup & Restore Dropbox Multiple Vulnerabilities (1.4.7.5)
WordPress Plugin Backup, Restore and Migrate WordPress Sites With the XCloner 'config' Parameter Local File Inclusion (3.0.3)
WordPress Plugin Backup, Restore and Migrate WordPress Sites With the XCloner 'mosmsg' and 'option' Parameters Cross-Site Scripting Vulnerabilities (3.0)
WordPress Plugin Backup, Restore and Migrate WordPress Sites With the XCloner Arbitrary File Deletion (3.1.4)
WordPress Plugin Backup, Restore and Migrate WordPress Sites With the XCloner Cross-Site Request Forgery (3.1.0) CVE-2014-2340
WordPress Plugin Backup, Restore and Migrate WordPress Sites With the XCloner Cross-Site Request Forgery (4.2.152) CVE-2020-35950
WordPress Plugin Backup, Restore and Migrate WordPress Sites With the XCloner Cross-Site Scripting (3.1.2)
WordPress Plugin Backup, Restore and Migrate WordPress Sites With the XCloner Cross-Site Scripting (3.1.4)
WordPress Plugin Backup, Restore and Migrate WordPress Sites With the XCloner Directory Traversal (3.1.4)
WordPress Plugin Backup, Restore and Migrate WordPress Sites With the XCloner Multiple Vulnerabilities (3.1.1) CVE-2014-8603 CVE-2014-8604 CVE-2014-8605 CVE-2014-8606 CVE-2014-8607 CVE-2014-8813
WordPress Plugin Backup, Restore and Migrate WordPress Sites With the XCloner Security Bypass (4.2.12) CVE-2020-35948
WordPress Plugin Backup, Restore and Migrate WordPress Sites With the XCloner SQL Injection (4.2.161)
WordPress Plugin Backup and Restore WordPress-WPBackItUp Arbitrary File Deletion (1.15.3)
WordPress Plugin Backup and Restore WordPress-WPBackItUp Cross-Site Request Forgery (1.6.7)
WordPress Plugin Backup and Restore WordPress-WPBackItUp Multiple Vulnerabilities (1.9) CVE-2014-8805 CVE-2014-9012
WordPress Plugin Backup and Staging by WP Time Capsule PHP Object Injection (1.21.9)
WordPress Plugin Backup and Staging by WP Time Capsule Security Bypass (1.21.15) CVE-2020-8771
WordPress Plugin Backup Bank:WordPress Backup Security Bypass (4.0.28) CVE-2023-28165
WordPress Plugin BackupBuddy Arbitrary File Download (8.7.4.1) CVE-2022-31474
WordPress Plugin BackupBuddy Information Disclosure (2.2.28) CVE-2013-2743 CVE-2013-2744
WordPress Plugin BackupBuddy Multiple Vulnerabilities (8.0.1.8)
WordPress Plugin Backup by Supsystic Local File Inclusion (2.3.9)
WordPress Plugin Backup Migration Arbitrary File Download (1.3.6) CVE-2023-6266
WordPress Plugin Backup Migration Cross-Site Request Forgery (1.2.9)
WordPress Plugin Backup Migration Cross-Site Scripting (1.1.5) CVE-2021-36884
Wordpress Plugin Backup Migration CVE-2023-6271 Vulnerability (CVE-2023-6271) CVE-2023-6271
Wordpress Plugin Backup Migration Files or Directories Accessible to External Parties Vulnerability (CVE-2023-6266) CVE-2023-6266
Wordpress Plugin Backup Migration Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') Vulnerability (CVE-2023-7002) CVE-2023-7002
WordPress Plugin Backup Migration Information Disclosure (1.2.8)
WordPress Plugin Backup Migration Information Disclosure (1.3.5) CVE-2023-6271
WordPress Plugin Backup Migration Remote Code Execution (1.3.7) CVE-2023-6553
WordPress Plugin Backup Scheduler Cross-Site Request Forgery (1.5.13) CVE-2022-38079
WordPress Plugin BackUpWordPress Remote File Inclusion (0.4.2b) CVE-2007-5800
WordPress Plugin BackUpWordPress Unspecified Vulnerability (3.12)
WordPress Plugin BackWPup 'wp_export_generate.php' Local and Remote File Include Vulnerabilities (2.1.4)
WordPress Plugin BackWPup Cross-Site Scripting (3.0.12) CVE-2013-4626
WordPress Plugin BackWPup Cross-Site Scripting (3.2.3)
WordPress Plugin BackWPup Cross-Site Scripting (3.2.5)
WordPress Plugin BackWPup Multiple Local File Include Vulnerabilities (1.5.2)
WordPress Plugin BackWPup Multiple Unspecified Vulnerabilities (3.2.1)
WordPress Plugin BackWPup Remote and Local Code Execution (1.6.1) CVE-2011-4342 CVE-2011-5208
WordPress Plugin BackWPup Security Bypass (3.4.1) CVE-2017-2551
WordPress Plugin BackWPup Unspecified Vulnerability (3.3)
WordPress Plugin BackWPup Unspecified Vulnerability (3.4.3)
WordPress Plugin Bad Behavior Multiple Cross-Site Scripting Vulnerabilities (2.2.4) CVE-2012-4271
WordPress Plugin Bad Behavior Multiple Vulnerabilities (2.2.18)
WordPress Plugin Badgearoo Cross-Site Scripting (1.0.8)
WordPress Plugin Badge Designer Lite For WooCommerce includes Backdoor [Only if downloaded via the vendor website] (1.1.0) CVE-2021-24867
WordPress Plugin BadgeOS SQL Injection (3.7.0) CVE-2022-0817
WordPress Plugin BadgeOS SQL Injection (3.7.1.2) CVE-2022-2958
WordPress Plugin Baggage Freight Shipping Australia Arbitrary File Upload (0.1.0)
WordPress Plugin Bangla Sidebar Login Cross-Site Scripting (1.0)