Vulnerability Name CVE Severity
WordPress Plugin Event Espresso 4 Decaf-Event Registration Event Ticketing Cross-Site Request Forgery (4.10.11.decaf)
WordPress Plugin Event Espresso Lite-Event Management and Registration System SQL Injection (3.1.37.11) CVE-2017-1002026
WordPress Plugin Event Espresso Lite-Event Management and Registration System SQL Injection (3.1.37.12) CVE-2017-14760
WordPress Plugin Eventify-Simple Events 'fetcheventdetails.php' SQL Injection (1.7.f)
WordPress Plugin Eventify-Simple Events 'npath' Parameter Remote File Include (1.7.g)
WordPress Plugin Event List Cross-Site Scripting (0.7.9) CVE-2017-12068
WordPress Plugin Event List PHP Object Injection (0.7.10)
WordPress Plugin Event List SQL Injection (0.7.8) CVE-2017-9429
WordPress Plugin Event Management Tickets Booking By Event Monster Cross-Site Scripting (1.0.7)
WordPress Plugin Event Notifier Cross-Site Scripting (1.2.0)
WordPress Plugin EventON Cross-Site Scripting (3.0.5) CVE-2020-29395
WordPress Plugin eventON Multiple Cross-Site Scripting Vulnerabilities (2.6.11)
WordPress Plugin Event Organiser Cross-Site Scripting (2.12.4)
WordPress Plugin Event post Local File Inclusion (5.9.5) CVE-2024-38735
WordPress Plugin Event Registration 'event_id' Parameter SQL Injection (5.32) CVE-2010-4839
WordPress Plugin Event Registration 'event_id' Parameter SQL Injection (5.44) CVE-2010-4839
WordPress Plugin Event Registration 'id' Parameter SQL Injection (5.43)
WordPress Plugin Event Registration Multiple Vulnerabilities (6.02.03)
WordPress Plugin Eventr SQL Injection (1.02.2) CVE-2017-1002018 CVE-2017-1002019
WordPress Plugin Events by Devllo Cross-Site Scripting (1.0.4.2)
WordPress Plugin Events Calendar 'ec_management.class.php' Cross-Site Scripting (6.7.11)
WordPress Plugin Events Calendar for Google Local File Inclusion (2.1.0) CVE-2024-38716
WordPress Plugin Event Single Page Templates Addon For The Events Calendar Security Bypass (1.5)
WordPress Plugin Events Made Easy Arbitrary File Upload (2.1.1)
WordPress Plugin Events Made Easy Cross-Site Scripting (1.6.20)
WordPress Plugin Events Made Easy Cross-Site Scripting (2.2.23) CVE-2021-24813
WordPress Plugin Events Made Easy Multiple Vulnerabilities (1.5.49)
WordPress Plugin Events Made Easy PHP Object Injection (2.0.52)
WordPress Plugin Events Made Easy SQL Injection (2.2.35) CVE-2021-25030
WordPress Plugin Events Manager 'events-manager.php' SQL Injection (2.1)
WordPress Plugin Events Manager Cross-Site Request Forgery (5.9.8.1)
WordPress Plugin Events Manager Cross-Site Scripting (5.8.1.1) CVE-2018-9020
WordPress Plugin Events Manager Cross-Site Scripting (5.8.1.3) CVE-2018-0576
WordPress Plugin Events Manager Cross-Site Scripting (5.9.5) CVE-2019-16523
WordPress Plugin Events Manager CSV Injection (5.9.7.1)
WordPress Plugin Events Manager Extended 'admin.php' SQL Injection (3.1.2)
WordPress Plugin Events Manager Extended Multiple HTML Injection Vulnerabilities (3.1.2)
WordPress Plugin Events Manager Multiple Cross-Site Scripting Vulnerabilities (5.3.3) CVE-2013-1407
WordPress Plugin Events Manager Multiple Vulnerabilities (5.5.7.1)
WordPress Plugin Events Manager Multiple Vulnerabilities (5.9.7.3)
WordPress Plugin Events Manager Pro CSV Injection (2.6.7.1)
WordPress Plugin Events Manager Unspecified Vulnerability (5.5.5)
WordPress Plugin Events Registration with PayPal IPN Multiple SQL Injection Vulnerabilities (2.1.2)
WordPress Plugin Events Search For The Events Calendar Security Bypass (1.1.3)
WordPress Plugin Events Shortcodes For The Events Calendar Cross-Site Scripting (1.7.1) CVE-2021-24435
WordPress Plugin Events Shortcodes For The Events Calendar Security Bypass (1.9.4)
WordPress Plugin Events Shortcodes For The Events Calendar Unspecified Vulnerability (1.7.2)
WordPress Plugin Events SQL Injection (2.3.4)
WordPress Plugin Events Widgets For Elementor And The Events Calendar Security Bypass (1.4.3)
WordPress Plugin Event Tickets CSV Injection (4.10.7.1) CVE-2019-16120
WordPress Plugin Everest GPlaces Business Reviews includes Backdoor [Only if downloaded via the vendor website] (1.0.9) CVE-2021-24867
WordPress Plugin Everest Review Lite-User/Admin review for WordPress includes Backdoor [Only if downloaded via the vendor website] (1.0.7) CVE-2021-24867
WordPress Plugin EWWW Image Optimizer Cloud Cross-Site Scripting (2.0.1)
WordPress Plugin EWWW Image Optimizer Cross-Site Request Forgery (5.8.1)
WordPress Plugin EWWW Image Optimizer Cross-Site Scripting (2.0.1) CVE-2014-6243
WordPress Plugin EWWW Image Optimizer Denial of Service (6.0.1) CVE-2020-29384
WordPress Plugin EWWW Image Optimizer Remote Code Execution (2.8.3)
WordPress Plugin Excel-Like Price Changer for WooCommerce and WP E-commerce-Light Multiple Vulnerabilities (2.1.5)
WordPress Plugin Exit Popups & Onsite Retargeting by OptiMonk Cross-Site Scripting (1.2.5)
WordPress Plugin Exit Popup Show Cross-Site Scripting (1.0) CVE-2021-24435
WordPress Plugin Export any WordPress data to XML/CSV Arbitrary File Upload (0.9)
WordPress Plugin Export any WordPress data to XML/CSV Cross-Site Scripting (1.3.0) CVE-2021-24708
WordPress Plugin Export any WordPress data to XML/CSV Cross-Site Scripting (1.3.5)
WordPress Plugin Export any WordPress data to XML/CSV SQL Injection (1.3.4) CVE-2022-1800
WordPress Plugin Export customers list csv for WooCommerce, WordPress users csv, export Guest customer list CSV Injection (2.0.68) CVE-2022-3603
WordPress Plugin Export Post Info Cross-Site Scripting (1.1.0) CVE-2022-38068
WordPress Plugin Export Post Info CSV Injection (1.2.0) CVE-2022-38061
WordPress Plugin Export User Data Cross-Site Scripting (1.3.1)
WordPress Plugin Export Users to CSV CSV Injection (1.1.1) CVE-2018-15571
WordPress Plugin Export Users to CSV CSV Injection (1.4.2) CVE-2020-9466
WordPress Plugin Export Users to CSV Unspecified Vulnerability (1.3)
WordPress Plugin Export Users With Meta SQL Injection (0.6.4) CVE-2021-24451
WordPress Plugin Exquisite PayPal Donation Cross-Site Scripting (2.0.0) CVE-2023-23785
WordPress Plugin ExS Widgets Local File Inclusion (0.3.1) CVE-2024-38715
WordPress Plugin Extend WordPress-Various Shortcodes & Widgets TimThumb Arbitrary File Upload (2.1.01) CVE-2011-4106