Vulnerability Name CVE Severity
WordPress Plugin Double Opt-In for Download SQL Injection (2.0.8) CVE-2015-7517
WordPress Plugin Double Opt-In for Download SQL Injection (2.0.9)
WordPress Plugin Download from files Arbitrary File Upload (1.48)
WordPress Plugin Download Manager Arbitrary File Deletion (3.2.50) CVE-2022-2431
WordPress Plugin Download Manager Cross-Site Scripting (3.2.42) CVE-2022-1985
WordPress Plugin Download Manager Cross-Site Scripting (3.2.46) CVE-2022-2101
WordPress Plugin Download Manager Cross-Site Scripting (3.2.52)
WordPress Plugin Download Manager Directory Traversal (3.2.54) CVE-2022-2926
WordPress Plugin Download Manager Multiple Cross-Site Scripting Vulnerabilities (3.2.48)
WordPress Plugin Download Manager PHAR Deserialization (3.2.49) CVE-2022-2436
WordPress Plugin Download Monitor 'dlsearch' Parameter Cross-Site Scripting (3.3.5.8) CVE-2012-4768
WordPress Plugin Download Monitor Cross-Site Scripting (1.7.0)
WordPress Plugin Download Monitor Cross-Site Scripting (3.3.6.1) CVE-2013-3262 CVE-2013-5098
WordPress Plugin Download Monitor Information Disclosure (1.6.3)
WordPress Plugin Download Monitor SQL Injection (4.4.4) CVE-2021-24786
WordPress Plugin Download Monitor Unspecified Vulnerability (1.9.6)
WordPress Plugin Download Monitor Unspecified Vulnerability (4.4.6)
WordPress Plugin Download Plugin Arbitrary Directory Download (1.0.1)
WordPress Plugin Download Plugins and Themes from Dashboard Cross-Site Scripting (1.5.0) CVE-2019-17239
WordPress Plugin Download Plugin Security Bypass (1.6.0) CVE-2021-24703
WordPress Plugin Download Plugin Unspecified Vulnerability (1.6.1)
WordPress Plugin Download Shortcode Arbitrary File Disclosure (0.1)
WordPress Plugin Download Shortcode Local File Inclusion (0.2.3) CVE-2014-5465
WordPress Plugin Downloads Manager 'upload.php' Arbitrary File Upload (0.2) CVE-2008-3362
WordPress Plugin Downloads Manager Arbitrary File Upload (1.0)
WordPress Plugin Download Theme Arbitrary Directory Download (1.0.2)
WordPress Plugin Download Zip Attachments Arbitrary File Download (1.0.0) CVE-2015-4704
WordPress Plugin DP Maintenance Mode Lite Cross-Site Scripting (1.3.2)
WordPress Plugin DP Thumbnail TimThumb Arbitrary File Upload (1.0) CVE-2011-4106
WordPress Plugin Drag & Drop File Uploader 'dnd-upload.php' Arbitrary File Upload (0.1)
WordPress Plugin Drag and Drop Multiple File Upload-Contact Form 7 Arbitrary File Upload (1.3.3.2) CVE-2020-12800
WordPress Plugin Drag and Drop Multiple File Upload-Contact Form 7 Arbitrary File Upload (1.3.5.4) CVE-2020-24389
WordPress Plugin Drag and Drop Multiple File Upload-Contact Form 7 Cross-Site Scripting (1.3.6.2) CVE-2022-0595
WordPress Plugin Drag and Drop Multiple File Upload-Contact Form 7 Security Bypass (1.3.6.4) CVE-2022-3282
WordPress Plugin Dropbox Folder Share Local File Inclusion (1.9.7) CVE-2023-4488
WordPress Plugin Dropbox Folder Share Server-Side Request Forgery (1.9.7) CVE-2023-3025
WordPress Plugin Dropdown and scrollable Text Cross-Site Scripting (2.0) CVE-2021-38353
WordPress Plugin Dropdown Menu Widget Cross-Site Request Forgery (1.9.1) CVE-2013-2704
WordPress Plugin Drop Shadow Boxes Security Bypass (1.7.1)
WordPress Plugin Dropshix Security Bypass (4.0.13)
WordPress Plugin Drug Search Cross-Site Scripting (1.0.0)
WordPress Plugin DS.DownloadList PHP Object Injection (1.2)
WordPress Plugin DSGVO All in one for WP Cross-Site Scripting (3.9) CVE-2021-24294
WordPress Plugin DSGVO All in one for WP Cross-Site Scripting (4.1)
WordPress Plugin dsIDXpress IDX Cross-Site Scripting (2.1.0) CVE-2014-4521
WordPress Plugin dsIDXpress IDX Multiple Unspecified Vulnerabilities (2.1.32)
WordPress Plugin dsSearchAgent:WordPress Edition Cross-Site Scripting (1.0-beta10) CVE-2014-4522
WordPress Plugin DSubscribers SQL Injection (1.2)
WordPress Plugin Dtracker Multiple Vulnerabilities (1.5) CVE-2017-1002004 CVE-2017-1002005 CVE-2017-1002006 CVE-2017-1002007
WordPress Plugin DukaPress Directory Traversal (2.5.2) CVE-2014-8799
WordPress Plugin DukaPress Multiple Cross-Site Scripting Vulnerabilities (2.5.9)
WordPress Plugin DukaPress PHP Object Injection (3.1.20)
WordPress Plugin DukaPress SQL Injection (2.5.9) CVE-2015-1000011
WordPress Plugin DukaPress TimThumb Arbitrary File Upload (2.3.2) CVE-2011-4106
WordPress Plugin Duo Two-Factor Authentication Security Bypass (1.8.1)
WordPress Plugin Duplicate Page and Post Spam Injection (2.1.1)
WordPress Plugin Duplicate Page and Post SQL Injection (2.5.6)
WordPress Plugin Duplicate Page Cross-Site Scripting (4.4.2) CVE-2021-24681
WordPress Plugin Duplicate Page Multiple Vulnerabilities (2.3)
WordPress Plugin Duplicate Page SQL Injection (3.3)
WordPress Plugin Duplicate Page Unspecified Vulnerability (3.5)
WordPress Plugin Duplicate Post Cross-Site Scripting (2.6)
WordPress Plugin Duplicate Post Multiple Vulnerabilities (2.5)
WordPress Plugin Duplicate Post SQL Injection (1.1.9) CVE-2021-43408
WordPress Plugin Duplicate Theme Unspecified Vulnerability (0.1.4)
WordPress Plugin Duplicator-WordPress Migration Arbitrary File Disclosure (0.3.0)
WordPress Plugin Duplicator-WordPress Migration Arbitrary File Download (1.3.26) CVE-2020-11738
WordPress Plugin Duplicator-WordPress Migration Cross-Site Request Forgery (1.1.2)
WordPress Plugin Duplicator-WordPress Migration Cross-Site Scripting (0.4.4) CVE-2013-4625
WordPress Plugin Duplicator-WordPress Migration Cross-Site Scripting (0.5.26)
WordPress Plugin Duplicator-WordPress Migration Cross-Site Scripting (1.2.28) CVE-2017-16815
WordPress Plugin Duplicator-WordPress Migration Cross-Site Scripting (1.2.32) CVE-2018-7543
WordPress Plugin Duplicator-WordPress Migration Remote Code Execution (1.2.40)
WordPress Plugin Duplicator-WordPress Migration Security Bypass (0.5.8) CVE-2014-9262
WordPress Plugin Duplicator-WordPress Migration SQL Injection (0.5.14)