Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Arbitrary File Read Arbitrary File Write Authentication Bypass BOLA Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities Ldap Injection Malware Missing Update Path Traversal Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity WordPress Plugin Bliss Gallery Arbitrary File Upload (2.3) CWE-434 CWE-434 High WordPress Plugin Block wp-login Cross-Site Request Forgery (1.3.0) CWE-352 CWE-352 High WordPress Plugin Blog2Social:Social Media Auto Post & Scheduler Cross-Site Scripting (5.0.2) CVE-2019-9576 CWE-79 CWE-79 High WordPress Plugin Blog2Social:Social Media Auto Post & Scheduler Cross-Site Scripting (5.8.1) CVE-2019-17550 CWE-79 CWE-79 High WordPress Plugin Blog2Social:Social Media Auto Post & Scheduler Multiple Vulnerabilities (6.9.9) CVE-2022-3246 CVE-2022-3247 CWE-89 CWE-918 CWE-89 CWE-918 High WordPress Plugin Blog2Social:Social Media Auto Post & Scheduler PHP Object Injection (5.0.0) CWE-915 CWE-915 High WordPress Plugin Blog2Social:Social Media Auto Post & Scheduler PHP Object Injection (5.7.0) CWE-915 CWE-915 High WordPress Plugin Blog2Social:Social Media Auto Post & Scheduler Security Bypass (6.9.11) CVE-2022-3622 CWE-862 CWE-862 High WordPress Plugin Blog2Social:Social Media Auto Post & Scheduler SQL Injection (5.5.0) CVE-2019-13572 CWE-89 CWE-89 High WordPress Plugin Blog2Social:Social Media Auto Post & Scheduler SQL Injection (6.3.0) CVE-2021-24137 CWE-89 CWE-89 High WordPress Plugin Blog2Social:Social Media Auto Post & Scheduler Unspecified Vulnerability (5.1.2) High WordPress Plugin Blog Designer Cross-Site Scripting (1.8.11) CWE-79 CWE-79 High WordPress Plugin Blogger To WordPress SQL Injection (2.2.1) CWE-89 CWE-89 High WordPress Plugin Blogomatic Cross-Site Scripting (1.0) CWE-79 CWE-79 High WordPress Plugin Blogroll Fun-Show Last Post and Last Update Time Cross-Site Scripting (0.8.4) CWE-79 CWE-79 High WordPress Plugin Blog social sharing component Cross-Site Request Forgery (1.4.5) CWE-352 CWE-352 High WordPress Plugin Blog social sharing component Cross-Site Scripting (1.4.4) CVE-2021-24618 CWE-79 CWE-79 High WordPress Plugin Blogstand Banner Cross-Site Scripting (1.0) CVE-2014-4848 CWE-79 CWE-79 High WordPress Plugin Blogtopdf Local File Inclusion (1.0.2) CVE-2014-2383 CWE-22 CWE-22 High WordPress Plugin blogVault Real-time Backup PHP Object Injection (1.44) CWE-915 CWE-915 High WordPress Plugin Bloom eMail Opt-In Security Bypass (1.1) CWE-264 CWE-264 High WordPress Plugin Blue Admin Cross-Site Request Forgery (21.06.01) CVE-2021-24581 CWE-352 CWE-352 High WordPress Plugin BLUE ORIGAMI CRM (Formerly Application Maker/APM-CRM edition) Cross-Site Scripting (1.5.15) CWE-79 CWE-79 High WordPress Plugin Blue Wrench Video Widget Cross-Site Request Forgery (1.0.5) CVE-2013-6797 CWE-352 CWE-352 High WordPress Plugin Blue Wrench Video Widget Cross-Site Scripting (2.1.0) CWE-79 CWE-79 High WordPress Plugin Blunt GA Cross-Site Scripting (4.0.0) CWE-79 CWE-79 High WordPress Plugin bodi0`s Bots visits counter Cross-Site Scripting (0.8.1) CWE-79 CWE-79 High WordPress Plugin bodi0`s Easy cache Cross-Site Scripting (0.8) CWE-79 CWE-79 High WordPress Plugin Bold Page Builder PHP Object Injection (3.1.5) CVE-2021-24579 CWE-915 CWE-915 High WordPress Plugin Bold Page Builder Security Bypass (2.3.1) CVE-2019-15821 CWE-264 CWE-264 High WordPress Plugin Bold Timeline Lite Cross-Site Scripting (1.1.4) CVE-2022-4828 CWE-79 CWE-79 High WordPress Plugin Bongolive SMS Cross-Site Scripting (1.0.5) CWE-79 CWE-79 High WordPress Plugin Book appointment online Cross-Site Scripting (1.38) CVE-2021-24614 CWE-79 CWE-79 High WordPress Plugin Booked-Appointment Booking for WordPress Security Bypass (2.2.5) CWE-264 CWE-264 High WordPress Plugin Booking.com Banner Creator Cross-Site Scripting (1.4.2) CVE-2021-24646 CWE-79 CWE-79 High WordPress Plugin Booking.com Banner Creator Unspecified Vulnerability (1.4.5) High WordPress Plugin Booking.com Product Helper Cross-Site Scripting (1.0.1) CVE-2021-24645 CWE-79 CWE-79 High WordPress Plugin Booking.com Product Helper Unspecified Vulnerability (1.0.3) High WordPress Plugin Booking calendar, Appointment Booking System Multiple Vulnerabilities (2.1.7) CVE-2018-5670 CVE-2018-5671 CVE-2018-5672 CVE-2018-5673 CWE-79 CWE-352 CWE-79 CWE-352 High WordPress Plugin Booking calendar, Appointment Booking System Security Bypass (2.2.2) CVE-2018-10363 CWE-264 CWE-264 High WordPress Plugin Booking Calendar-Appointment Booking-BookIt Security Bypass (2.3.7) CVE-2023-2834 CWE-287 CWE-287 High WordPress Plugin Booking Calendar-Appointment Booking-BookIt Unspecified Vulnerability (2.3.8) High WordPress Plugin Booking Calendar-Clockwork SMS Cross-Site Scripting (1.0.5) CVE-2017-17780 CWE-79 CWE-79 High WordPress Plugin Booking Calendar Contact Form Cross-Site Scripting (1.0.24) CWE-79 CWE-79 High WordPress Plugin Booking Calendar Contact Form Multiple Vulnerabilities (1.0.2) CWE-79 CWE-89 CWE-79 CWE-89 High WordPress Plugin Booking Calendar Contact Form Multiple Vulnerabilities (1.0.23) CWE-79 CWE-89 CWE-79 CWE-89 High WordPress Plugin Booking Calendar Cross-Site Request Forgery (4.1.5) CWE-352 CWE-352 High WordPress Plugin Booking Calendar Cross-Site Request Forgery (9.2.1) CVE-2022-33177 CWE-352 CWE-352 High WordPress Plugin Booking Calendar Cross-Site Scripting (7.1) CVE-2017-2151 CWE-79 CWE-79 High WordPress Plugin Booking Calendar Directory Traversal (7.0) CVE-2017-2150 CWE-22 CWE-22 High WordPress Plugin Booking Calendar Local File Inclusion (7.0) CWE-22 CWE-22 High WordPress Plugin Booking Calendar Multiple Vulnerabilities (6.2) CWE-79 CWE-89 CWE-79 CWE-89 High WordPress Plugin Booking Calendar PHP Object Injection (9.1) CVE-2022-1463 CWE-915 CWE-915 High WordPress Plugin Booking Calendar SQL Injection (6.2.2) CWE-89 CWE-89 High WordPress Plugin Booking Calendar SQL Injection (8.4.4) CVE-2018-20556 CWE-89 CWE-89 High WordPress Plugin Booking Multiple Vulnerabilities (2.5) CWE-79 CWE-89 CWE-352 CWE-79 CWE-89 CWE-352 High WordPress Plugin Booking Package-Appointment Booking Calendar System Cross-Site Scripting (1.5.10) CVE-2021-20840 CWE-79 CWE-79 High WordPress Plugin Booking Privilege Escalation (2.4) CVE-2019-15774 CWE-264 CWE-264 High WordPress Plugin Bookings Cross-Site Scripting (1.8.2) CWE-79 CWE-79 High WordPress Plugin Booking Ultra Pro Appointments Booking Calendar Local File Inclusion (1.1.13) CVE-2024-38717 CWE-22 CWE-22 High WordPress Plugin Booking Ultra Pro Appointments Booking Calendar Multiple Cross-Site Request Forgery Vulnerabilities (1.1.4) CVE-2021-36854 CVE-2021-36855 CWE-352 CWE-352 High WordPress Plugin Booking Ultra Pro Appointments Booking Calendar Multiple Cross-Site Scripting Vulnerabilities (1.0.19) CWE-79 CWE-79 High WordPress Plugin Bookly #1 WordPress Booking Plugin (Lite Version) Cross-Site Scripting (14.4) CVE-2018-6891 CWE-79 CWE-79 High WordPress Plugin Bookmarkify Multiple Vulnerabilities (2.9.2) CWE-79 CWE-352 CWE-79 CWE-352 High WordPress Plugin Bookshelf Cross-Site Scripting (2.0.4) CWE-79 CWE-79 High WordPress Plugin BookX Local File Inclusion (1.7) CVE-2014-4937 CWE-22 CWE-22 High WordPress Plugin Booster Elite for WooCommerce Multiple Cross-Site Request Forgery Vulnerabilities (6.0.0) CVE-2022-4017 CWE-352 CWE-352 High WordPress Plugin Booster for WooCommerce Cross-Site Scripting (5.6.1) CWE-79 CWE-79 High WordPress Plugin Booster for WooCommerce Cross-Site Scripting (5.6.2) CVE-2022-4227 CWE-79 CWE-79 High WordPress Plugin Booster for WooCommerce Multiple Cross-Site Request Forgery Vulnerabilities (6.0.0) CVE-2022-4017 CWE-352 CWE-352 High WordPress Plugin Booster for WooCommerce Multiple Cross-Site Scripting Vulnerabilities (5.4.8) CVE-2021-24999 CVE-2021-25000 CVE-2021-25001 CWE-79 CWE-79 High WordPress Plugin Booster for WooCommerce Multiple Vulnerabilities (5.6.6) CVE-2022-3762 CVE-2022-3763 CVE-2022-4016 CVE-2022-41805 CWE-22 CWE-352 CWE-22 CWE-352 High WordPress Plugin Booster for WooCommerce PHP Object Injection (3.0.1) CWE-915 CWE-915 High WordPress Plugin Booster for WooCommerce Security Bypass (5.4.3) CVE-2021-34646 CWE-264 CWE-264 High WordPress Plugin Booster Plus for WooCommerce Multiple Cross-Site Request Forgery Vulnerabilities (6.0.0) CVE-2022-4017 CWE-352 CWE-352 High 1...207208209210...307 208 / 307
