| Vulnerability Name |
CVE
CWE
|
CWE |
Severity |
|
WordPress Plugin Delightful Downloads Directory Traversal (1.6.6)
|
CVE-2017-1000170
CWE-22
|
CWE-22
|
High
|
|
WordPress Plugin DELUCKS SEO Cross-Site Scripting (2.1.7)
|
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin DELUCKS SEO Unspecified Vulnerability (1.2.2)
|
|
|
High
|
|
WordPress Plugin Democracy Poll Multiple Vulnerabilities (5.3.6)
|
CWE-79
CWE-352
|
CWE-79
CWE-352
|
High
|
|
WordPress Plugin DeMomentSomTres Subscribe Cross-Site Scripting (201909190900)
|
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin demon image annotation Cross-Site Request Forgery (4.7)
|
CVE-2022-2864
CWE-352
|
CWE-352
|
High
|
|
WordPress Plugin Deny All Firewall Cross-Site Request Forgery (1.1.6)
|
CVE-2019-14681
CWE-352
|
CWE-352
|
High
|
|
WordPress Plugin Design Approval System Cross-Site Scripting (3.6)
|
CVE-2013-5711
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin DethemeKit For Elementor Multiple Cross-Site Scripting Vulnerabilities (1.5.5.4)
|
CVE-2021-24270
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Developer Formatter Cross-Site Request Forgery (2012.0.1.39)
|
CWE-352
|
CWE-352
|
High
|
|
WordPress Plugin Developer Tools Arbitrary File Upload (1.1.4)
|
CWE-434
|
CWE-434
|
High
|
|
WordPress Plugin Dexs PM System Cross-Site Scripting (1.0.1)
|
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin DFD Reddcoin Tips Cross-Site Scripting (1.1.1)
|
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Dharma booking Local/Remote File Inclusion (2.38.3)
|
CWE-98
|
CWE-98
|
High
|
|
WordPress Plugin Dialog Contact Form Cross-Site Scripting (1.2.0)
|
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Diary & Availability Calendar SQL Injection (1.0.3)
|
CVE-2021-24555
CWE-89
|
CWE-89
|
High
|
|
WordPress Plugin Digg Digg Cross-Site Request Forgery (5.3.4)
|
CVE-2013-3258
CWE-352
|
CWE-352
|
High
|
|
WordPress Plugin Digital Climate Strike WP Malicious Redirects (1.0.0)
|
CWE-601
|
CWE-601
|
High
|
|
WordPress Plugin Digital Publications by Supsystic Multiple Vulnerabilities (1.6.9)
|
CWE-22
CWE-79
|
CWE-22
CWE-79
|
High
|
|
WordPress Plugin Digital River Global Commerce Supply Chain Attack [Polyfill.io] (2.0.2)
|
CWE-1372
|
CWE-1372
|
High
|
|
WordPress Plugin Direct Download for Woocommerce Arbitrary File Download (1.15)
|
CWE-538
|
CWE-538
|
High
|
|
WordPress Plugin Directories Pro Cross-Site Scripting (1.3.45)
|
CVE-2020-29303
CVE-2020-29304
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin DirectoryPress-Business Directory And Classified Ad Listing SQL Injection (3.6.10)
|
CVE-2024-38755
CWE-89
|
CWE-89
|
High
|
|
WordPress Plugin Disable Comments Cross-Site Request Forgery (1.0.3)
|
CVE-2014-2550
CWE-352
|
CWE-352
|
High
|
|
WordPress Plugin Disable Comments Cross-Site Scripting (1.3)
|
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Disable Feeds Unspecified Vulnerability (1.4)
|
|
|
High
|
|
WordPress Plugin Disable Image Right Click Cross-Site Scripting (1.0)
|
CVE-2021-24435
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Disc Golf Manager PHP Object Injection (1.0.0)
|
CWE-915
|
CWE-915
|
High
|
|
WordPress Plugin Disclosure Policy 'abspath' Parameter Remote File Include (1.0)
|
CWE-94
|
CWE-94
|
High
|
|
WordPress Plugin Discount Rules for WooCommerce Multiple Vulnerabilities (2.0.2)
|
CWE-79
CWE-89
CWE-264
|
CWE-79
CWE-89
CWE-264
|
High
|
|
WordPress Plugin Discount Rules for WooCommerce Security Bypass (2.2.0)
|
CWE-264
|
CWE-264
|
High
|
|
WordPress Plugin Discounts Manager for Products Cross-Site Scripting (3.4.4)
|
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Display Posts Shortcode Unspecified Vulnerability (1.9)
|
|
|
High
|
|
WordPress Plugin Display Users SQL Injection (2.0.0)
|
CVE-2021-24400
CWE-89
|
CWE-89
|
High
|
|
WordPress Plugin Display Widgets Cross-Site Scripting (2.03)
|
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Display Widgets Spam Links Injection (2.6.3.1)
|
CWE-610
|
CWE-610
|
High
|
|
WordPress Plugin Disqus Comment System Cross-Site Scripting (2.68)
|
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Disqus Comment System Multiple Cross-Site Request Forgery Vulnerabilities (2.77)
|
CVE-2014-5346
CWE-352
|
CWE-352
|
High
|
|
WordPress Plugin Disqus Comment System Multiple Vulnerabilities (2.75)
|
CVE-2014-5345
CVE-2014-5347
CWE-79
CWE-95
CWE-352
|
CWE-79
CWE-95
CWE-352
|
High
|
|
WordPress Plugin Ditty WordPress-Responsive Slider, List, and Ticker Display Cross-Site Scripting (3.0.14)
|
CVE-2022-0533
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Ditty WordPress-Responsive Slider, List, and Ticker Display Cross-Site Scripting (3.0.32)
|
CVE-2023-23874
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Ditty WordPress-Responsive Slider, List, and Ticker Display Unspecified Vulnerability (1.5.1)
|
|
|
High
|
|
WordPress Plugin DiveBook Multiple Vulnerabilities (1.1.4)
|
CVE-2020-14205
CVE-2020-14206
CVE-2020-14207
CWE-79
CWE-89
CWE-264
|
CWE-79
CWE-89
CWE-264
|
High
|
|
WordPress Plugin Divi Builder Arbitrary File Upload (4.5.2)
|
CVE-2020-35945
CWE-434
|
CWE-434
|
High
|
|
WordPress Plugin Divi Builder Cross-Site Scripting (2.17.2)
|
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Divi Builder PHP Code Injection (4.0.9)
|
CWE-95
|
CWE-95
|
High
|
|
WordPress Plugin Divi Builder Security Bypass (1.2.3)
|
CWE-264
|
CWE-264
|
High
|
|
WordPress Plugin DJ EmailPublish Cross-Site Scripting (1.7.2)
|
CVE-2021-38329
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin DM Albums 'album.php' Remote File Inclusion (1.9.2)
|
CVE-2009-2396
CWE-94
|
CWE-94
|
High
|
|
WordPress Plugin DM Albums File Dislosure (1.9.2)
|
CWE-22
|
CWE-22
|
High
|
|
WordPress Plugin DM Albums Multiple File Deletion Vulnerabilities (2.1)
|
CWE-22
|
CWE-22
|
High
|
|
WordPress Plugin DMCA WaterMarker Cross-Site Scripting (1.0)
|
CVE-2014-4520
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin DMSGuestbook File Manipulation (1.17.4)
|
CWE-99
|
CWE-99
|
High
|
|
WordPress Plugin DMSGuestbook Multiple Remote Vulnerabilities (1.8.0)
|
CVE-2008-0615
CVE-2008-0616
CVE-2008-0617
CVE-2008-0618
CWE-22
CWE-79
CWE-89
|
CWE-22
CWE-79
CWE-89
|
High
|
|
WordPress Plugin Docket Cache-Object Cache Accelerator Cross-Site Scripting (21.08.01)
|
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Doctor Appointment Booking Multiple Vulnerabilities (1.0.0)
|
CWE-79
CWE-89
|
CWE-79
CWE-89
|
High
|
|
WordPress Plugin Dokan-Best WooCommerce Multivendor Marketplace Solution-Build Your Own Amazon, eBay, Etsy Cross-Site Request Forgery (3.0.8)
|
CWE-352
|
CWE-352
|
High
|
|
WordPress Plugin Dokan-Best WooCommerce Multivendor Marketplace Solution-Build Your Own Amazon, eBay, Etsy Cross-Site Request Forgery (3.2.0)
|
CWE-352
|
CWE-352
|
High
|
|
WordPress Plugin Dokan-Best WooCommerce Multivendor Marketplace Solution-Build Your Own Amazon, eBay, Etsy Security Bypass (2.9.4)
|
CWE-264
|
CWE-264
|
High
|
|
WordPress Plugin Donate by BestWebSoft Cross-Site Scripting (2.0.1)
|
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Donate by BestWebSoft Cross-Site Scripting (2.1.1)
|
CVE-2017-2171
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Donation Block For PayPal Cross-Site Scripting (2.0.0)
|
CVE-2023-0535
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Donation Block For PayPal Unspecified Vulnerability (1.0.0)
|
|
|
High
|
|
WordPress Plugin Donation Forms by Charitable-Donations & Fundraising Platform for WordPress Cross-Site Scripting (1.6.50)
|
CVE-2021-24531
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Donation Forms by Charitable-Donations & Fundraising Platform for WordPress Cross-Site Scripting (1.7.0.10)
|
CVE-2022-47441
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Donation Forms by Charitable-Donations & Fundraising Platform for WordPress Privilege Escalation (1.7.0.12)
|
CVE-2023-4404
CWE-269
|
CWE-269
|
High
|
|
WordPress Plugin Donation Forms by Charitable-Donations & Fundraising Platform for WordPress Security Bypass (1.5.13)
|
CVE-2018-21011
CWE-264
|
CWE-264
|
High
|
|
WordPress Plugin Donations Privilege Escalation (1.3)
|
CVE-2019-15772
CWE-264
|
CWE-264
|
High
|
|
WordPress Plugin Donation Thermometer Cross-Site Scripting (2.1.2)
|
CVE-2022-3128
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Donation with Goals and Paypal IPN by NonprofitCMS.org 'exporttocsv.php' SQL Injection (1.0)
|
CWE-89
|
CWE-89
|
High
|
|
WordPress Plugin Doneren met Mollie Information Disclosure (2.8.4)
|
CWE-200
|
CWE-200
|
High
|
|
WordPress Plugin Donorbox-Free Recurring Donation Form Cross-Site Scripting (7.1.1)
|
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin DOP Slider Arbitrary File Upload (1.0)
|
CWE-434
|
CWE-434
|
High
|
|
WordPress Plugin DosCero.Menu Cross-Site Scripting (1.0)
|
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Double Opt-In for Download Multiple Cross-Site Scripting Vulnerabilities (2.1.5)
|
CWE-79
|
CWE-79
|
High
|
