Vulnerability Name CVE Severity
WordPress Plugin Drag and Drop Multiple File Upload-Contact Form 7 Arbitrary File Upload (1.3.3.2) CVE-2020-12800
WordPress Plugin Drag and Drop Multiple File Upload-Contact Form 7 Arbitrary File Upload (1.3.5.4) CVE-2020-24389
WordPress Plugin Drag and Drop Multiple File Upload-Contact Form 7 Cross-Site Scripting (1.3.6.2) CVE-2022-0595
WordPress Plugin Drag and Drop Multiple File Upload-Contact Form 7 Security Bypass (1.3.6.4) CVE-2022-3282
WordPress Plugin Dropbox Folder Share Local File Inclusion (1.9.7) CVE-2023-4488
WordPress Plugin Dropbox Folder Share Server-Side Request Forgery (1.9.7) CVE-2023-3025
WordPress Plugin Dropdown and scrollable Text Cross-Site Scripting (2.0) CVE-2021-38353
WordPress Plugin Dropdown Menu Widget Cross-Site Request Forgery (1.9.1) CVE-2013-2704
WordPress Plugin Drop Shadow Boxes Security Bypass (1.7.1)
WordPress Plugin Dropshix Security Bypass (4.0.13)
WordPress Plugin Drug Search Cross-Site Scripting (1.0.0)
WordPress Plugin DS.DownloadList PHP Object Injection (1.2)
WordPress Plugin DSGVO All in one for WP Cross-Site Scripting (3.9) CVE-2021-24294
WordPress Plugin DSGVO All in one for WP Cross-Site Scripting (4.1)
WordPress Plugin dsIDXpress IDX Cross-Site Scripting (2.1.0) CVE-2014-4521
WordPress Plugin dsIDXpress IDX Multiple Unspecified Vulnerabilities (2.1.32)
WordPress Plugin dsSearchAgent:WordPress Edition Cross-Site Scripting (1.0-beta10) CVE-2014-4522
WordPress Plugin DSubscribers SQL Injection (1.2)
WordPress Plugin Dtracker Multiple Vulnerabilities (1.5) CVE-2017-1002004 CVE-2017-1002005 CVE-2017-1002006 CVE-2017-1002007
WordPress Plugin DukaPress Directory Traversal (2.5.2) CVE-2014-8799
WordPress Plugin DukaPress Multiple Cross-Site Scripting Vulnerabilities (2.5.9)
WordPress Plugin DukaPress PHP Object Injection (3.1.20)
WordPress Plugin DukaPress SQL Injection (2.5.9) CVE-2015-1000011
WordPress Plugin DukaPress TimThumb Arbitrary File Upload (2.3.2) CVE-2011-4106
WordPress Plugin Duo Two-Factor Authentication Security Bypass (1.8.1)
WordPress Plugin Duplicate Page and Post Spam Injection (2.1.1)
WordPress Plugin Duplicate Page and Post SQL Injection (2.5.6)
WordPress Plugin Duplicate Page Cross-Site Scripting (4.4.2) CVE-2021-24681
WordPress Plugin Duplicate Page Multiple Vulnerabilities (2.3)
WordPress Plugin Duplicate Page SQL Injection (3.3)
WordPress Plugin Duplicate Page Unspecified Vulnerability (3.5)
WordPress Plugin Duplicate Post Cross-Site Scripting (2.6)
WordPress Plugin Duplicate Post Multiple Vulnerabilities (2.5)
WordPress Plugin Duplicate Post SQL Injection (1.1.9) CVE-2021-43408
WordPress Plugin Duplicate Theme Unspecified Vulnerability (0.1.4)
WordPress Plugin Duplicator-WordPress Migration Arbitrary File Disclosure (0.3.0)
WordPress Plugin Duplicator-WordPress Migration Arbitrary File Download (1.3.26) CVE-2020-11738
WordPress Plugin Duplicator-WordPress Migration Cross-Site Request Forgery (1.1.2)
WordPress Plugin Duplicator-WordPress Migration Cross-Site Scripting (0.4.4) CVE-2013-4625
WordPress Plugin Duplicator-WordPress Migration Cross-Site Scripting (0.5.26)
WordPress Plugin Duplicator-WordPress Migration Cross-Site Scripting (1.2.28) CVE-2017-16815
WordPress Plugin Duplicator-WordPress Migration Cross-Site Scripting (1.2.32) CVE-2018-7543
WordPress Plugin Duplicator-WordPress Migration Remote Code Execution (1.2.40)
WordPress Plugin Duplicator-WordPress Migration Security Bypass (0.5.8) CVE-2014-9262
WordPress Plugin Duplicator-WordPress Migration SQL Injection (0.5.14)
WordPress Plugin Duplicator-WordPress Migration Unspecified Vulnerability (1.1.34)
WordPress Plugin DVS Custom Notification Multiple Cross-Site Request Forgery Vulnerabilities (1.0.1) CVE-2012-4921
WordPress Plugin DW Mega Menu Cross-Site Request Forgery (1.0.1)
WordPress Plugin dwnldr Cross-Site Scripting (1.0)
WordPress Plugin DW Question & Answer Cross-Site Request Forgery (1.5.7)
WordPress Plugin DW Question & Answer Cross-Site Scripting (1.4.2.2)
WordPress Plugin DW Question & Answer Multiple Unspecified Vulnerabilities (1.4.4)
WordPress Plugin DW Question & Answer Security Bypass (1.2.9)
WordPress Plugin DX-Contribute Cross-Site Request Forgery (1.2.0)
WordPress Plugin DX Share Selection Cross-Site Request Forgery (1.4) CVE-2022-2001
WordPress Plugin Dynamic Content for Elementor Remote Code Execution (1.9.5.6) CVE-2020-26596
WordPress Plugin Dynamic Featured Image Unspecified Vulnerability (1.0.3)
WordPress Plugin Dynamic Widgets 'id' Parameter Cross-Site Scripting (1.5.1)
WordPress Plugin Dynamic Widgets Multiple Cross-Site Scripting Vulnerabilities (1.5.10)
WordPress Plugin Dynamic Widgets Multiple Unspecified Vulnerabilities (1.5.7)
WordPress Plugin DZS Video Gallery Information Disclosure (3.1.3)
WordPress Plugin DZS Video Gallery Multiple Cross-Site Scripting Vulnerabilities (All) CVE-2014-3923 CVE-2014-9094
WordPress Plugin E-Search Multiple Cross-Site Scripting Vulnerabilities (1.0) CVE-2016-1000130 CVE-2016-1000131
WordPress Plugin Easiest Contact Form for WordPress-AP Contact Form includes Backdoor [Only if downloaded via the vendor website] (1.0.6) CVE-2021-24867
WordPress Plugin Easing Slider Multiple Cross-Site Scripting Vulnerabilities (2.2.0.6) CVE-2015-1436
WordPress Plugin Easy2Map Cross-Site Scripting (1.5.5)
WordPress Plugin Easy2Map Multiple SQL Injection Vulnerabilities (1.2.4) CVE-2015-4614 CVE-2015-4616
WordPress Plugin Easy2Map Multiple Vulnerabilities (1.2.9) CVE-2015-7668 CVE-2015-7669
WordPress Plugin Easy2Map Photos Cross-Site Scripting (2.0.6)
WordPress Plugin Easy2Map Photos Multiple Vulnerabilities (1.0.9) CVE-2015-4615 CVE-2015-4617
WordPress Plugin Easy Accept Payments for PayPal Cross-Site Scripting (4.9.9) CVE-2023-0275
WordPress Plugin Easy Accordion-Best Accordion FAQ Cross-Site Scripting (2.0.21) CVE-2021-24576
WordPress Plugin Easy Affiliate Links Cross-Site Scripting (3.7.0) CVE-2023-0375
WordPress Plugin Easy Appointments Cross-Site Scripting (1.11.7) CVE-2017-15812
WordPress Plugin Easy Appointments Cross-Site Scripting (3.11.0) CVE-2022-4668