Vulnerability Name CVE Severity
WordPress Plugin BuddyDrive Cross-Site Scripting (1.2.2)
WordPress Plugin BuddyPress 'page' Parameter SQL Injection (1.5.4) CVE-2012-2109
WordPress Plugin BuddyPress Activity Plus Cross-Site Scripting (1.6.3)
WordPress Plugin BuddyPress Activity Plus Multiple Vulnerabilities (1.6.1)
WordPress Plugin BuddyPress Arbitrary File Deletion (2.7.3)
WordPress Plugin Buddypress Component Stats Local File Inclusion (1.0) CVE-2014-2383
WordPress Plugin BuddyPress Cover Arbitrary File Upload (2.1.4.2) CVE-2024-35746
WordPress Plugin BuddyPress Cross-Site Request Forgery (2.9.0)
WordPress Plugin BuddyPress Cross-Site Scripting (2.2.2.1)
WordPress Plugin BuddyPress Customer.io Analytics Integration Cross-Site Request Forgery (1.1.6)
WordPress Plugin BuddyPress Docs Security Bypass (1.9.2) CVE-2017-6954
WordPress Plugin BuddyPress Edit Activity Cross-Site Scripting (1.0.5)
WordPress Plugin BuddyPress Extended Friendship Request Cross-Site Scripting (1.0.1) CVE-2013-4944
WordPress Plugin BuddyPress Global Search Cross-Site Scripting (1.1.0)
WordPress Plugin BuddyPress Information Disclosure (5.1.1) CVE-2020-5244
WordPress Plugin BuddyPress Members Only Cross-Site Scripting (1.8.3)
WordPress Plugin BuddyPress Multiple Cross-Site Request Forgery Vulnerabilities (2.8.1)
WordPress Plugin BuddyPress Multiple Security Bypass Vulnerabilities (7.2.0) CVE-2021-21389
WordPress Plugin BuddyPress Multiple Security Bypass Vulnerabilities (7.2.1)
WordPress Plugin BuddyPress Multiple SQL Injection Vulnerabilities (1.7.1)
WordPress Plugin BuddyPress Multiple Vulnerabilities (1.9.1) CVE-2014-1888 CVE-2014-1889
WordPress Plugin BuddyPress Multiple Vulnerabilities (5.1.2)
WordPress Plugin BuddyPress Multiple Vulnerabilities (9.0.0)
WordPress Plugin BuddyPress PHP Object Injection (2.0.2)
WordPress Plugin BuddyPress Security Bypass (2.3.4)
WordPress Plugin BuddyPress Security Bypass (5.1.0)
WordPress Plugin BuddyPress Security Bypass (6.3.0)
WordPress Plugin BuddyPress Unspecified Vulnerability (2.6.0)
WordPress Plugin Buddypress Xprofile Custom Fields Type Arbitrary File Deletion (2.6.3)
WordPress Plugin Buddy Share It Allusers FB YR Arbitrary File Upload (3.2.8)
WordPress Plugin BuddyStream Multiple Cross-Site Scripting Vulnerabilities (2.6.2)
WordPress Plugin Bug Library Cross-Site Scripting (1.4.2)
WordPress Plugin Bug Library Cross-Site Scripting (2.0.3) CVE-2021-38355
WordPress Plugin Bug Library Unspecified Vulnerability (2.0.7)
WordPress Plugin Build App Online SQL Injection (1.0.18) CVE-2022-3241
WordPress Plugin Bulk Add to Cart for WooCommerce Security Bypass (1.2.2)
WordPress Plugin Bulk change of posts terms and post types Cross-Site Scripting (1.0)
WordPress Plugin Bulk Creator Cross-Site Scripting (1.0.1)
WordPress Plugin Bulk Datetime Change Security Bypass (1.11) CVE-2021-24842
WordPress Plugin Bulk Delete Privilege Escalation (5.5.3)
WordPress Plugin Bulk Delete Users by Email Cross-Site Request Forgery (1.0)
WordPress Plugin Bulk Page Creator Cross-Site Scripting (1.0.9)
WordPress Plugin BulletProof Security Cross-Site Scripting (.47) CVE-2012-4268
WordPress Plugin BulletProof Security Cross-Site Scripting (.50.9)
WordPress Plugin BulletProof Security Cross-Site Scripting (.52.4)
WordPress Plugin BulletProof Security Cross-Site Scripting (.53.3)
WordPress Plugin BulletProof Security Information Disclosure (5.1) CVE-2021-39327
WordPress Plugin BulletProof Security Multiple Cross-Site Scripting Vulnerabilities (.48.9) CVE-2013-3487
WordPress Plugin BulletProof Security Multiple Cross-Site Scripting Vulnerabilities (.53.2)
WordPress Plugin BulletProof Security Multiple Vulnerabilities (.51) CVE-2014-7958 CVE-2014-7959 CVE-2014-8749
WordPress Plugin Business Card Cross-Site Scripting (1.0.0)
WordPress Plugin Business Directory-Easy Listing Directories for WordPress Cross-Site Request Forgery (4.1.12.1)
WordPress Plugin Business Directory-Easy Listing Directories for WordPress Multiple Vulnerabilities (5.10.1) CVE-2021-24178 CVE-2021-24179 CVE-2021-24248
WordPress Plugin Business Directory-Easy Listing Directories for WordPress Multiple Vulnerabilities (5.11.1) CVE-2021-24249 CVE-2021-24250 CVE-2021-24251
WordPress Plugin Business Directory-Easy Listing Directories for WordPress PHP Object Injection (4.1.14)
WordPress Plugin Business Hours Indicator Cross-Site Scripting (2.3.4) CVE-2021-24593
WordPress Plugin Business Hours Pro Arbitrary File Upload (5.5.0) CVE-2021-24240
WordPress Plugin Business Manager-WordPress ERP, HR, CRM, and Project Management Cross-Site Scripting (1.4.5) CVE-2021-39332
WordPress Plugin Button Widget Smartsoft Cross-Site Request Forgery (1.0.1) CVE-2022-1912
WordPress Plugin Buzzwords Cross-Site Scripting (1.1.0)
WordPress Plugin ByREV WP-PICShield Cross-Site Request Forgery (1.9.7)
WordPress Plugin CAC Featured Content TimThumb Arbitrary File Upload (0.8) CVE-2011-4106
WordPress Plugin Cache-Control Unspecified Vulnerability (2.2.3)
WordPress Plugin Calculated Fields Form Cross-Site Scripting (1.0.81)
WordPress Plugin Calculated Fields Form Cross-Site Scripting (1.0.353) CVE-2020-7228
WordPress Plugin Calculated Fields Form Multiple SQL Injection Vulnerabilities (1.0.10)
WordPress Plugin Caldera Forms-More Than Contact Forms Arbitrary File Disclosure (1.8.1)
WordPress Plugin Caldera Forms-More Than Contact Forms Cross-Site Scripting (1.4.1)
WordPress Plugin Caldera Forms-More Than Contact Forms Cross-Site Scripting (1.5.4)
WordPress Plugin Caldera Forms-More Than Contact Forms Information Disclosure (1.3.5.2)
WordPress Plugin Caldera Forms-More Than Contact Forms Multiple Cross-Site Scripting Vulnerabilities (1.5.9.1) CVE-2018-7747
WordPress Plugin CalendApp Cross-Site Scripting (1.1)
WordPress Plugin Calendar by WD-Responsive Event Calendar for WordPress Cross-Site Scripting (1.5.38)
WordPress Plugin Calendar by WD-Responsive Event Calendar for WordPress Multiple Cross-Site Scripting and SQL Injection Vulnerabilities (1.3.0)
WordPress Plugin Calendar by WD-Responsive Event Calendar for WordPress SQL Injection (1.4.9) CVE-2015-2196