Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Arbitrary File Read Arbitrary File Write Authentication Bypass BOLA Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities Ldap Injection Malware Missing Update Path Traversal Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity WordPress Plugin Watu Quiz Cross-Site Scripting (3.3.8.1) CVE-2023-0428 CWE-79 CWE-79 High WordPress Plugin Watu Quiz Cross-Site Scripting (3.3.8.2) CVE-2023-0429 CWE-79 CWE-79 High WordPress Plugin Watu Quiz Cross-Site Scripting (3.3.9) CVE-2023-0968 CWE-79 CWE-79 High WordPress Plugin Watu Quiz Cross-Site Scripting (3.3.9.2) CVE-2023-30483 CWE-79 CWE-79 High WordPress Plugin Watu Quiz Unspecified Vulnerability (2.6) High WordPress Plugin Wbcom Designs-BuddyPress Group Reviews Security Bypass (2.8.3) CVE-2022-2108 CWE-264 CWE-264 High WordPress Plugin WBW Currency Switcher for WooCommerce Cross-Site Scripting (1.6.5) CVE-2022-2575 CWE-79 CWE-79 High WordPress Plugin WC Duplicate Order Security Bypass (1.5) CWE-264 CWE-264 High WordPress Plugin WC Duplicate Order Unspecified Vulnerability (1.3) High WordPress Plugin WCFM-Frontend Manager for WooCommerce along with Bookings Subscription Listings Compatible SQL Injection (6.5.11) CVE-2021-24835 CWE-89 CWE-89 High WordPress Plugin WCFM-Frontend Manager for WooCommerce along with Bookings Subscription Listings Compatible Unspecified Vulnerability (6.5.12) High WordPress Plugin WCFM Membership-WooCommerce Memberships for Multivendor Marketplace Cross-Site Request Forgery (2.9.10) CVE-2022-4941 CWE-352 CWE-352 High WordPress Plugin WCFM Membership-WooCommerce Memberships for Multivendor Marketplace Insecure Direct Object Reference (2.10.7) CVE-2023-2276 CWE-639 CWE-639 High WordPress Plugin WCFM Membership-WooCommerce Memberships for Multivendor Marketplace Privilege Escalation (2.10.0) CVE-2022-4939 CWE-269 CWE-269 High WordPress Plugin Weather Effect-Christmas Santa Snow Falling Cross-Site Request Forgery (1.3.3) CVE-2021-24683 CWE-352 CWE-352 High WordPress Plugin Weather Effect-Christmas Santa Snow Falling Cross-Site Scripting (1.3.5) CVE-2021-24709 CWE-79 CWE-79 High WordPress Plugin Weather for us-animated weather widget Crypto Mining (1.8) CWE-829 CWE-829 High WordPress Plugin Weaver Show Posts Cross-Site Scripting (1.6) CVE-2023-1404 CWE-79 CWE-79 High WordPress Plugin Weaver Xtreme Theme Support Cross-Site Scripting (6.2.6) CVE-2023-0276 CWE-79 CWE-79 High WordPress Plugin Webapp builder (Free mobile apps native iPhone iOS & Android Winphone mobile apps) Arbitrary File Upload (2.0) CVE-2017-1002002 CWE-434 CWE-434 High WordPress Plugin Web Application Firewall-website security Privilege Escalation (2.1.1) CVE-2024-2172 CWE-269 CWE-269 High WordPress Plugin Web Application Firewall-website security Unspecified Vulnerability (2.1.2) High WordPress Plugin WebARX Cross-Site Scripting (1.3.0) CVE-2019-17213 CWE-79 CWE-79 High WordPress Plugin Web Directory Free SQL Injection (1.6.9) CVE-2024-3552 CWE-89 CWE-89 High WordPress Plugin WebEngage Feedback, Survey and Notification Cross-Site Scripting (2.0.0) CVE-2014-4574 CWE-79 CWE-79 High WordPress Plugin Web Forms for Vtiger wordpress Lead capture and Contacts Sync Unspecified Vulnerability (1.0.0) High WordPress Plugin WebHotelier for WordPress Cross-Site Scripting (1.5) CVE-2021-24435 CWE-79 CWE-79 High WordPress Plugin Web Invoice-Invoicing and billing for WordPress Multiple SQL Injection Vulnerabilities (2.1.3) CVE-2022-4371 CVE-2022-4372 CWE-89 CWE-89 High WordPress Plugin WebLibrarian Cross-Site Scripting (3.4.8.6) CWE-79 CWE-79 High WordPress Plugin WebLibrarian Multiple Unspecified Vulnerabilities (2.6.3.1) High WordPress Plugin WebLibrarian SQL Injection (3.5.4) CVE-2019-1010034 CWE-89 CWE-89 High WordPress Plugin Webmention Cross-Site Scripting (4.0.8) CWE-79 CWE-79 High WordPress Plugin WebP Converter for Media Cross-Site Request Forgery (1.0.2) CVE-2019-15834 CWE-352 CWE-352 High WordPress Plugin WebP Express Arbitrary File Disclosure (0.14.10) CVE-2019-15330 CWE-538 CWE-538 High WordPress Plugin WebP Express Cross-Site Scripting (0.14.4) CVE-2019-15837 CWE-79 CWE-79 High WordPress Plugin WebP Express Unspecified Vulnerability (0.14.21) High WordPress Plugin Websimon Tables Cross-Site Scripting (1.3.4) CWE-79 CWE-79 High WordPress Plugin Website FAQ 'website-faq-widget.php' SQL Injection (1.0) CWE-89 CWE-89 High WordPress Plugin Web Stories Server-Side Request Forgery (1.24.0) CVE-2022-3708 CWE-918 CWE-918 High WordPress Plugin Web to Print Online Designer Security Bypass (2.3.0) CWE-264 CWE-264 High WordPress Plugin Web Tripwire Arbitrary File Upload (0.1.1) CWE-434 CWE-434 High WordPress Plugin Wechat Broadcast Local/Remote File Inclusion (1.2.0) CVE-2018-16283 CWE-98 CWE-98 High WordPress Plugin Wechat Reward Cross-Site Request Forgery (1.7) CVE-2021-24615 CWE-352 CWE-352 High WordPress Plugin Weekly Schedule Cross-Site Scripting (3.4.2) CVE-2021-24309 CWE-79 CWE-79 High WordPress Plugin weForms-Easy Drag & Drop Contact Form Builder For WordPress CSV Injection (1.4.7) CVE-2020-22276 CWE-20 CWE-20 High WordPress Plugin weForms-Easy Drag & Drop Contact Form Builder For WordPress CSV Injection (1.6.3) CWE-20 CWE-20 High WordPress Plugin weForms-Easy Drag & Drop Contact Form Builder For WordPress Supply Chain Attack [Polyfill.io] (1.6.23) CWE-1372 CWE-1372 High WordPress Plugin weForms-Easy Drag & Drop Contact Form Builder For WordPress Unspecified Vulnerability (1.5.3) High WordPress Plugin Welcart e-Commerce Cross-Site Scripting (2.2.3) CVE-2021-20734 CWE-79 CWE-79 High WordPress Plugin Welcart e-Commerce Cross-Site Scripting and Cross-Site Request Forgery Vulnerabilities (1.2.1) CVE-2012-5177 CVE-2012-5178 CWE-79 CWE-352 CWE-79 CWE-352 High WordPress Plugin Welcart e-Commerce Information Disclosure (2.2.7) CWE-200 CWE-200 High WordPress Plugin Welcart e-Commerce Multiple SQL Injection Vulnerabilities (1.5.2) CVE-2015-7791 CWE-89 CWE-89 High WordPress Plugin Welcart e-Commerce Multiple Vulnerabilities (1.3.12) CVE-2014-10016 CVE-2014-10017 CWE-79 CWE-89 CWE-79 CWE-89 High WordPress Plugin Welcart e-Commerce Multiple Vulnerabilities (1.4.17) CWE-79 CWE-89 CWE-79 CWE-89 High WordPress Plugin Welcart e-Commerce Multiple Vulnerabilities (1.8.2) CVE-2016-4825 CVE-2016-4826 CVE-2016-4827 CVE-2016-4828 CWE-20 CWE-79 CWE-287 CWE-20 CWE-79 CWE-287 High WordPress Plugin Welcart e-Commerce PHP Object Injection (1.9.3) CWE-915 CWE-915 High WordPress Plugin Welcart e-Commerce PHP Object Injection (1.9.9) CWE-915 CWE-915 High WordPress Plugin Welcart e-Commerce PHP Object Injection (1.9.35) CVE-2020-28339 CWE-915 CWE-915 High WordPress Plugin Welcart e-Commerce SQL Injection (2.0.0) CWE-89 CWE-89 High WordPress Plugin Welcome Announcement Multiple Cross-Site Scripting Vulnerabilities (1.0.5) CWE-79 CWE-79 High WordPress Plugin We�re Open! Cross-Site Scripting (1.41) CVE-2022-3139 CWE-79 CWE-79 High WordPress Plugin WF Cookie Consent Cross-Site Scripting (1.1.3) CVE-2018-10371 CWE-79 CWE-79 High WordPress Plugin White Label CMS Cross-Site Request Forgery (1.5) CVE-2012-5387 CVE-2012-5388 CWE-352 CWE-352 High WordPress Plugin White Label CMS Cross-Site Scripting (1.5.2) CWE-79 CWE-79 High WordPress Plugin White Label CMS Cross-Site Scripting (2.2.8) CVE-2022-0422 CWE-79 CWE-79 High WordPress Plugin White Label CMS PHP Object Injection (2.4) CVE-2022-4302 CWE-915 CWE-915 High WordPress Plugin WHIZZ Cross-Site Request Forgery (1.1) CVE-2017-8099 CWE-352 CWE-352 High WordPress Plugin WHIZZ Cross-Site Scripting (1.0.7) CVE-2016-1000154 CWE-79 CWE-79 High WordPress Plugin WHMCS Bridge Cross-Site Scripting (6.2) CVE-2021-4074 CWE-79 CWE-79 High WordPress Plugin WHOIS 'domain' Parameter Cross-Site Scripting (1.4.2.2) CVE-2011-5194 CWE-79 CWE-79 High WordPress Plugin Wholesale Market Arbitrary File Download (2.2.0) CVE-2022-4298 CWE-552 CWE-552 High WordPress Plugin Wholesale Market for WooCommerce Arbitrary File Download (1.0.6) CVE-2022-4106 CWE-552 CWE-552 High WordPress Plugin Wholesale Market for WooCommerce Arbitrary File Download (1.0.7) CVE-2022-4108 CWE-552 CWE-552 High WordPress Plugin Wholesale Market for WooCommerce Directory Traversal (1.0.8) CVE-2022-4109 CWE-22 CWE-22 High WordPress Plugin WH Testimonials Cross-Site Scripting (3.0.0) CVE-2023-1372 CWE-79 CWE-79 High 1...279280281282...307 280 / 307
