Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Arbitrary File Read Arbitrary File Write Authentication Bypass BOLA Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities Ldap Injection Malware Missing Update Path Traversal Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity WordPress Plugin WooCommerce Unspecified Vulnerability (4.2.0) High WordPress Plugin WooCommerce Upload Files Arbitrary File Upload (59.3) CVE-2021-24171 CWE-434 CWE-434 High WordPress Plugin WooCommerce Upload My File Cross-Site Request Forgery (0.3.9) CWE-352 CWE-352 High WordPress Plugin Woocommerce User Email Verification Security Bypass (3.3.0) CWE-264 CWE-264 High WordPress Plugin WooCommerce Weight Based Shipping Cross-Site Request Forgery (5.4.1) CVE-2022-46794 CWE-352 CWE-352 High WordPress Plugin WooCommerce Zoho Integration-CRM, Books, Invoice, Inventory Cross-Site Scripting (1.2.3) CWE-79 CWE-79 High WordPress Plugin WOOCS-Currency Switcher for WooCommerce Professional Cross-Site Scripting (1.1.5.1) CWE-79 CWE-79 High WordPress Plugin WOOCS-Currency Switcher for WooCommerce Professional Cross-Site Scripting (1.3.7) CVE-2021-24938 CWE-79 CWE-79 High WordPress Plugin WOOCS-Currency Switcher for WooCommerce Professional Cross-Site Scripting (1.3.7.2) CVE-2021-25043 CWE-79 CWE-79 High WordPress Plugin WOOCS-Currency Switcher for WooCommerce Professional Cross-Site Scripting (1.3.7.4) CVE-2022-0234 CWE-79 CWE-79 High WordPress Plugin WOOCS-Currency Switcher for WooCommerce Professional Local File Inclusion (1.3.6.2) CVE-2021-24566 CWE-98 CWE-98 High WordPress Plugin Woo Custom Checkout Field Multiple Vulnerabilities (1.3.2) CWE-79 CWE-352 CWE-79 CWE-352 High WordPress Plugin Woody ad snippets-Insert Header Footer Code, AdSense Ads Cross-Site Request Forgery (2.3.9) CWE-352 CWE-352 High WordPress Plugin Woody ad snippets-Insert Header Footer Code, AdSense Ads Cross-Site Scripting (2.2.7) CVE-2019-16289 CWE-79 CWE-79 High WordPress Plugin Woody ad snippets-Insert Header Footer Code, AdSense Ads Multiple Vulnerabilities (2.2.4) CVE-2019-15858 CWE-79 CWE-264 CWE-79 CWE-264 High WordPress Plugin Woody ad snippets-Insert Header Footer Code, AdSense Ads PHP Code Injection (1.3) CWE-95 CWE-95 High WordPress Plugin Woody ad snippets-Insert Header Footer Code, AdSense Ads Security Bypass (2.2.5) CVE-2019-14773 CWE-264 CWE-264 High WordPress Plugin Woo Email Control Cross-Site Scripting (1.01) CWE-79 CWE-79 High WordPress Plugin Woo Import Export Arbitrary File Deletion (1.0) CWE-73 CWE-73 High WordPress Plugin WooPay-Inicis Cross-Site Scripting (1.1.3) CWE-79 CWE-79 High WordPress Plugin Woopra Analytics Arbitrary File Upload (1.4.3.1) CVE-2009-4140 CWE-434 CWE-434 High WordPress Plugin Woosaleskit Bar Cross-Site Scripting (1.0.0) CVE-2021-24435 CWE-79 CWE-79 High WordPress Plugin WooSidebars Cross-Site Scripting (1.4.1) CWE-79 CWE-79 High WordPress Plugin Wordable Security Bypass (3.1.1) CWE-264 CWE-264 High WordPress Plugin WordApp Mobile App-Convert your WordPress Site to a Mobile App Cross-Site Scripting (2.0.3) CWE-79 CWE-79 High WordPress Plugin Word Balloon Cross-Site Scripting (4.19.2) CVE-2022-4751 CWE-79 CWE-79 High WordPress Plugin Wordfence Security-Firewall & Malware Scan Cross-Site Scripting (3.3.5) CWE-79 CWE-79 High WordPress Plugin Wordfence Security-Firewall & Malware Scan Cross-Site Scripting (3.8.1) CWE-79 CWE-79 High WordPress Plugin Wordfence Security-Firewall & Malware Scan Cross-Site Scripting (3.8.6) CWE-79 CWE-79 High WordPress Plugin Wordfence Security-Firewall & Malware Scan Cross-Site Scripting (5.1.2) CVE-2014-4664 CWE-79 CWE-79 High WordPress Plugin Wordfence Security-Firewall & Malware Scan Cross-Site Scripting (5.1.4) CVE-2014-4932 CWE-79 CWE-79 High WordPress Plugin Wordfence Security-Firewall & Malware Scan Cross-Site Scripting (5.2.2) CWE-79 CWE-79 High WordPress Plugin Wordfence Security-Firewall & Malware Scan Cross-Site Scripting (6.0.21) CWE-79 CWE-79 High WordPress Plugin Wordfence Security-Firewall & Malware Scan Cross-Site Scripting (6.1.6) CWE-79 CWE-79 High WordPress Plugin Wordfence Security-Firewall & Malware Scan Cross-Site Scripting (7.6.0) CVE-2022-3144 CWE-79 CWE-79 High WordPress Plugin Wordfence Security-Firewall & Malware Scan Multiple Vulnerabilities (5.2.3) CWE-79 CWE-693 CWE-79 CWE-693 High WordPress Plugin Wordfence Security-Firewall & Malware Scan Multiple Vulnerabilities (5.2.4) CWE-79 CWE-264 CWE-79 CWE-264 High WordPress Plugin Wordfence Security-Firewall & Malware Scan Multiple Vulnerabilities (7.1.12) CWE-79 CWE-264 CWE-79 CWE-264 High WordPress Plugin Wordfence Security-Firewall & Malware Scan Unspecified Vulnerability (5.3.2) High WordPress Plugin WordLift-AI powered SEO-Schema Cross-Site Scripting (3.37.1) CVE-2022-3069 CWE-79 CWE-79 High WordPress Plugin Word of the day Arbitrary File Upload (1.0) CWE-434 CWE-434 High WordPress Plugin WordPoints Multiple Vulnerabilities (1.7.0) CWE-79 CWE-352 CWE-79 CWE-352 High WordPress Plugin WordPoints Multiple Vulnerabilities (1.10.2) CWE-79 CWE-89 CWE-79 CWE-89 High WordPress Plugin WordPress+Microsoft Office 365/Azure AD-LOGIN Cross-Site Scripting (15.3) CVE-2021-43409 CWE-79 CWE-79 High WordPress Plugin WordPress+Microsoft Office 365/Azure AD-LOGIN Unspecified Vulnerability (11.6) CVE-2020-26511 High WordPress Plugin WordPress-Amazon-Associate (WPAA) Cross-Site Scripting (2.0) CWE-79 CWE-79 High WordPress Plugin WordPress-Amazon-Associate (WPAA) Multiple Cross-Site Scripting Vulnerabilities (1.7.3) CWE-79 CWE-79 High WordPress Plugin WordPress.com Custom CSS Cross-Site Scripting (1.5) CWE-79 CWE-79 High WordPress Plugin WordPress Access Areas Security Bypass (1.3.0) CWE-284 CWE-284 High WordPress Plugin WordPress Advanced Ticket System, Elite Support Helpdesk Cross-Site Scripting (1.0.63) CVE-2021-24623 CWE-79 CWE-79 High WordPress Plugin WordPress Ad Widget Local File Inclusion (2.11.0) CWE-22 CWE-22 High WordPress Plugin WordPress Affiliates-SliceWP Cross-Site Scripting (1.0.45) CWE-79 CWE-79 High WordPress Plugin WordPress Alipay/Tenpay/PayPal Cross-Site Scripting (3.6.0) CVE-2014-4514 CWE-79 CWE-79 High WordPress Plugin WordPress Alipay/Tenpay/PayPal SQL Injection (3.7.2) CVE-2021-24390 CWE-89 CWE-89 High WordPress Plugin WordPress Appointment Booking and Online Scheduling by Appointy Cross-Site Scripting (2.40) CWE-79 CWE-79 High WordPress Plugin WordPress Appointment Schedule Booking System Cross-Site Scripting (1.0) CWE-79 CWE-79 High WordPress Plugin WordPress Automatic 'q' Parameter SQL Injection (2.0.3) CWE-89 CWE-89 High WordPress Plugin WordPress Automatic Security Bypass (3.53.2) CWE-264 CWE-264 High WordPress Plugin WordPress Automatic SQL Injection (3.92.0) CVE-2024-27956 CWE-89 CWE-89 High WordPress Plugin WordPress Backend Customizer-Everest Admin Theme Lite includes Backdoor [Only if downloaded via the vendor website] (1.0.7) CVE-2021-24867 CWE-912 CWE-912 High WordPress Plugin WordPress Backup and Migrate-Backup Guard Arbitrary File Upload (1.0.2) CWE-434 CWE-434 High WordPress Plugin WordPress Backup and Migrate-Backup Guard Arbitrary File Upload (1.5.9) CVE-2021-24155 CWE-434 CWE-434 High WordPress Plugin WordPress Backup and Migrate-Backup Guard Cross-Site Request Forgery (1.1.90) CWE-352 CWE-352 High WordPress Plugin WordPress Backup and Migrate-Backup Guard Cross-Site Scripting (1.1.46) CVE-2017-10837 CWE-79 CWE-79 High WordPress Plugin WordPress Backup and Migrate-Backup Guard Multiple Unspecified Vulnerabilities (1.1.29) High WordPress Plugin WordPress Backup and Migrate-Backup Guard Multiple Unspecified Vulnerabilities (1.1.32) High WordPress Plugin WordPress Backup and Migrate-Backup Guard Unspecified Vulnerability (1.0.6) High WordPress Plugin WordPress Backup to Dropbox Cross-Site Scripting (4.0) CVE-2014-9310 CWE-79 CWE-79 High WordPress Plugin WordPress Backup to Dropbox Information Disclosure (4.7.1) CWE-200 CWE-200 High WordPress Plugin WordPress Backup to Ziddu Cross-Site Scripting (1) CWE-79 CWE-79 High WordPress Plugin WordPress Bitcoin Payments-Blockonomics Cross-Site Scripting (3.2) CWE-79 CWE-79 High WordPress Plugin WordPress Bitcoin Payments-Blockonomics Cross-Site Scripting (3.5.7) CVE-2022-47145 CWE-79 CWE-79 High WordPress Plugin WordPress Book List Arbitrary File Upload (5.0.11) CWE-434 CWE-434 High WordPress Plugin WordPress Books Gallery Cross-Site Request Forgery (4.4.8) CVE-2023-23705 CWE-352 CWE-352 High WordPress Plugin WordPress Books Gallery Security Bypass (3.5) CWE-862 CWE-862 High 1...281282283284...306 282 / 306
