Vulnerability Name CVE Severity
WordPress Plugin FileBird-WordPress Media Library Folders & File Manager Cross-Site Scripting (2.4)
WordPress Plugin FileBird-WordPress Media Library Folders & File Manager SQL Injection (4.7.3) CVE-2021-24385
WordPress Plugin File Browser, Manager, Backup (+ Database) Security Bypass (1.23)
WordPress Plugin Filedownload 'download.php' Local File Disclosure (0.1)
WordPress Plugin Filedownload Multiple Vulnerabilities (1.4) CVE-2015-1000002 CVE-2015-1000003 CVE-2015-1000004
WordPress Plugin File Gallery Remote Code Execution (1.7.9) CVE-2014-2558
WordPress Plugin File Groups 'fgid' Parameter SQL Injection (1.1.2)
WordPress Plugin File Manager Advanced Shortcode Arbitrary File Upload (2.5.3) CVE-2023-7061
WordPress Plugin File Manager Advanced Shortcode Directory Traversal (2.4) CVE-2023-7062
WordPress Plugin File Manager Arbitrary File Upload (6.8) CVE-2020-25213
WordPress Plugin File Manager Cross-Site Request Forgery (3.0.1)
WordPress Plugin File Manager Cross-Site Request Forgery (7.2.4) CVE-2024-1538
WordPress Plugin File Manager Cross-Site Scripting (2.9) CVE-2018-16363
WordPress Plugin File Manager Cross-Site Scripting (7.0) CVE-2021-24177
WordPress Plugin File Manager Directory Traversal (7.2.5) CVE-2024-2654
WordPress Plugin File Manager Information Disclosure (6.4) CVE-2020-24312
WordPress Plugin File Manager Multiple Cross-Site Request Forgery Vulnerabilities (5.0)
WordPress Plugin File Manager Multiple Vulnerabilities (4.8)
WordPress Plugin File Manager Pro Arbitrary File Upload (8.3.4) CVE-2023-6846
WordPress Plugin File Manager Remote Code Execution (4.5)
WordPress Plugin File Manager Unspecified Vulnerability (2.2.0)
WordPress Plugin File Manager Unspecified Vulnerability (3.0)
WordPress Plugin File Manager Unspecified Vulnerability (4.1.4)
WordPress Plugin File Manager Unspecified Vulnerability (5.0.0)
WordPress Plugin File Manager Unspecified Vulnerability (5.1.5)
WordPress Plugin File Uploader Arbitrary File Upload (1.1)
WordPress Plugin Fileviewer Cross-Site Request Forgery (2.2) CVE-2021-24491
WordPress Plugin Filter & Grids Local File Inclusion (2.8.32) CVE-2024-6164
WordPress Plugin Filter Custom Fields & Taxonomies Light Unspecified Vulnerability (1.04)
WordPress Plugin Filtre de Surveillance Gouvernemental Cross-Site Scripting (1.1)
WordPress Plugin Find My Blocks Information Disclosure (3.3.2) CVE-2021-24677
WordPress Plugin FireCask Like & Share Button Cross-Site Scripting (1.1.5) CVE-2023-25783
WordPress Plugin FireDrum Email Marketing PHP Object Injection (1.47)
WordPress Plugin FireStats 'firestats-wordpress.php' Remote File Include (1.6.1) CVE-2009-2143
WordPress Plugin FireStats Arbitrary File Download (1.6.5)
WordPress Plugin FireStats Cross-Site Scripting (1.6.4)
WordPress Plugin FireStats Multiple Cross-Site Scripting and Authentication Bypass Vulnerabilities (1.0.2)
WordPress Plugin FireStorm Professional Real Estate 'id' Parameter SQL Injection (2.06.03)
WordPress Plugin FireStorm Professional Real Estate Multiple SQL Injection Vulnerabilities (2.05.01)
WordPress Plugin FireStorm Shopping Cart eCommerce SQL Injection (2.07.02)
WordPress Plugin fitness calculators Cross-Site Request Forgery (1.9.5) CVE-2021-24272
WordPress Plugin Fitness Trainer-Training Membership Cross-Site Scripting (1.0.8)
WordPress Plugin Five Star Restaurant Menu-WordPress Ordering Remote Code Execution (2.2.0) CVE-2020-29045
WordPress Plugin Fixedly Media Gallery Cross-Site Scripting (1.3.1)
WordPress Plugin FL3R FeelBox Multiple Vulnerabilities (8.1) CVE-2022-4445 CVE-2022-4552 CVE-2022-4553
WordPress Plugin Flamingo Code Injection (1.1)
WordPress Plugin Flamingo CSV Injection (2.1)
WordPress Plugin Flash Photo Gallery Cross-Site Scripting (0.7) CVE-2014-4529
WordPress Plugin Flat Preloader Cross-Site Request Forgery (1.5.3) CVE-2021-24685
WordPress Plugin Flat Preloader Cross-Site Scripting (1.5.4) CVE-2021-24789
WordPress Plugin Flexible Captcha Multiple Vulnerabilities (3.3)
WordPress Plugin Flexible Captcha Security Bypass (4.0)
WordPress Plugin Flexible Checkout Fields for WooCommerce Security Bypass (2.3.1)
WordPress Plugin Flexible Custom Post Type Cross-Site Scripting (0.1.5) CVE-2011-5106
WordPress Plugin Flexi Quote Rotator SQL Injection and Cross-Site Request Forgery Vulnerabilities (0.9)
WordPress Plugin Flickr Gallery PHP Object Injection (1.5.2)
WordPress Plugin Flickr Justified Gallery Cross-Site Scripting (3.3.6)
WordPress Plugin flickr picture backup Arbitrary File Upload (0.7) CVE-2017-1002016
WordPress Plugin Flickrpress PHP Object Injection (1.0.2)
WordPress Plugin flickrRSS Multiple Vulnerabilities (5.3.1) CVE-2018-6466 CVE-2018-6467 CVE-2018-6468 CVE-2018-6469
WordPress Plugin FlightLog SQL Injection (3.0.2) CVE-2021-24336
WordPress Plugin Flight Search Widget and Blocks Cross-Site Scripting (1.1.0) CVE-2021-24435
WordPress Plugin Flip Book 'php.php' Arbitrary File Upload (1.0)
WordPress Plugin Flipbox-Awesomes Flip Boxes Image Overlay Security Bypass (2.6.0) CVE-2022-33969
WordPress Plugin Flipbox Builder PHP Object Injection (1.5) CVE-2024-6152
WordPress Plugin Flip Slideshow Cross-Site Scripting (2.2)
WordPress Plugin Floating Cart for WooCommerce Security Bypass (1.2.2)
WordPress Plugin Floating Chat Widget:Contact Chat Icons, Telegram Chat, Line, WeChat, Email, SMS, Call Button-Chaty Multiple Cross-Site Scripting Vulnerabilities (2.8.3) CVE-2021-25016 CVE-2021-36846
WordPress Plugin Floating Chat Widget:Contact Chat Icons, Telegram Chat, Line, WeChat, Email, SMS, Call Button-Chaty SQL Injection (3.0.2) CVE-2022-3858
WordPress Plugin Floating Chat Widget:Contact Chat Icons, Telegram Chat, Line, WeChat, Email, SMS, Call Button-Chaty Unspecified Vulnerability (2.0.5)
WordPress Plugin Floating Social Bar Cross-Site Scripting (1.1.5) CVE-2015-5528
WordPress Plugin Floating Social Bar Cross-Site Scripting (1.1.6) CVE-2015-3299
WordPress Plugin Floating Social Media Links 'wpp' Parameter Multiple Remote File Include Vulnerabilities (1.4.2)
WordPress Plugin Floating Tweets Multiple Vulnerabilities (1.0.1)
WordPress Plugin Float to Top Button Cross-Site Scripting (2.3.6) CVE-2022-2709