Vulnerability Name CVE Severity
WordPress Plugin Woo Custom Checkout Field Multiple Vulnerabilities (1.3.2)
WordPress Plugin Woody ad snippets-Insert Header Footer Code, AdSense Ads Cross-Site Request Forgery (2.3.9)
WordPress Plugin Woody ad snippets-Insert Header Footer Code, AdSense Ads Cross-Site Scripting (2.2.7) CVE-2019-16289
WordPress Plugin Woody ad snippets-Insert Header Footer Code, AdSense Ads Multiple Vulnerabilities (2.2.4) CVE-2019-15858
WordPress Plugin Woody ad snippets-Insert Header Footer Code, AdSense Ads PHP Code Injection (1.3)
WordPress Plugin Woody ad snippets-Insert Header Footer Code, AdSense Ads Security Bypass (2.2.5) CVE-2019-14773
WordPress Plugin Woo Email Control Cross-Site Scripting (1.01)
WordPress Plugin Woo Import Export Arbitrary File Deletion (1.0)
WordPress Plugin WooPay-Inicis Cross-Site Scripting (1.1.3)
WordPress Plugin Woopra Analytics Arbitrary File Upload (1.4.3.1) CVE-2009-4140
WordPress Plugin Woosaleskit Bar Cross-Site Scripting (1.0.0) CVE-2021-24435
WordPress Plugin WooSidebars Cross-Site Scripting (1.4.1)
WordPress Plugin Wordable Security Bypass (3.1.1)
WordPress Plugin WordApp Mobile App-Convert your WordPress Site to a Mobile App Cross-Site Scripting (2.0.3)
WordPress Plugin Word Balloon Cross-Site Scripting (4.19.2) CVE-2022-4751
WordPress Plugin Wordfence Security-Firewall & Malware Scan Cross-Site Scripting (3.3.5)
WordPress Plugin Wordfence Security-Firewall & Malware Scan Cross-Site Scripting (3.8.1)
WordPress Plugin Wordfence Security-Firewall & Malware Scan Cross-Site Scripting (3.8.6)
WordPress Plugin Wordfence Security-Firewall & Malware Scan Cross-Site Scripting (5.1.2) CVE-2014-4664
WordPress Plugin Wordfence Security-Firewall & Malware Scan Cross-Site Scripting (5.1.4) CVE-2014-4932
WordPress Plugin Wordfence Security-Firewall & Malware Scan Cross-Site Scripting (5.2.2)
WordPress Plugin Wordfence Security-Firewall & Malware Scan Cross-Site Scripting (6.0.21)
WordPress Plugin Wordfence Security-Firewall & Malware Scan Cross-Site Scripting (6.1.6)
WordPress Plugin Wordfence Security-Firewall & Malware Scan Cross-Site Scripting (7.6.0) CVE-2022-3144
WordPress Plugin Wordfence Security-Firewall & Malware Scan Multiple Vulnerabilities (5.2.3)
WordPress Plugin Wordfence Security-Firewall & Malware Scan Multiple Vulnerabilities (5.2.4)
WordPress Plugin Wordfence Security-Firewall & Malware Scan Multiple Vulnerabilities (7.1.12)
WordPress Plugin Wordfence Security-Firewall & Malware Scan Unspecified Vulnerability (5.3.2)
WordPress Plugin WordLift-AI powered SEO-Schema Cross-Site Scripting (3.37.1) CVE-2022-3069
WordPress Plugin Word of the day Arbitrary File Upload (1.0)
WordPress Plugin WordPoints Multiple Vulnerabilities (1.7.0)
WordPress Plugin WordPoints Multiple Vulnerabilities (1.10.2)
WordPress Plugin WordPress+Microsoft Office 365/Azure AD-LOGIN Cross-Site Scripting (15.3) CVE-2021-43409
WordPress Plugin WordPress+Microsoft Office 365/Azure AD-LOGIN Unspecified Vulnerability (11.6) CVE-2020-26511
WordPress Plugin WordPress-Amazon-Associate (WPAA) Cross-Site Scripting (2.0)
WordPress Plugin WordPress-Amazon-Associate (WPAA) Multiple Cross-Site Scripting Vulnerabilities (1.7.3)
WordPress Plugin WordPress.com Custom CSS Cross-Site Scripting (1.5)
WordPress Plugin WordPress Access Areas Security Bypass (1.3.0)
WordPress Plugin WordPress Advanced Ticket System, Elite Support Helpdesk Cross-Site Scripting (1.0.63) CVE-2021-24623
WordPress Plugin WordPress Ad Widget Local File Inclusion (2.11.0)
WordPress Plugin WordPress Affiliates-SliceWP Cross-Site Scripting (1.0.45)
WordPress Plugin WordPress Alipay/Tenpay/PayPal Cross-Site Scripting (3.6.0) CVE-2014-4514
WordPress Plugin WordPress Alipay/Tenpay/PayPal SQL Injection (3.7.2) CVE-2021-24390
WordPress Plugin WordPress Appointment Booking and Online Scheduling by Appointy Cross-Site Scripting (2.40)
WordPress Plugin WordPress Appointment Schedule Booking System Cross-Site Scripting (1.0)
WordPress Plugin WordPress Automatic 'q' Parameter SQL Injection (2.0.3)
WordPress Plugin WordPress Automatic Security Bypass (3.53.2)
WordPress Plugin WordPress Automatic SQL Injection (3.92.0) CVE-2024-27956
WordPress Plugin WordPress Backend Customizer-Everest Admin Theme Lite includes Backdoor [Only if downloaded via the vendor website] (1.0.7) CVE-2021-24867
WordPress Plugin WordPress Backup and Migrate-Backup Guard Arbitrary File Upload (1.0.2)
WordPress Plugin WordPress Backup and Migrate-Backup Guard Arbitrary File Upload (1.5.9) CVE-2021-24155
WordPress Plugin WordPress Backup and Migrate-Backup Guard Cross-Site Request Forgery (1.1.90)
WordPress Plugin WordPress Backup and Migrate-Backup Guard Cross-Site Scripting (1.1.46) CVE-2017-10837
WordPress Plugin WordPress Backup and Migrate-Backup Guard Multiple Unspecified Vulnerabilities (1.1.29)
WordPress Plugin WordPress Backup and Migrate-Backup Guard Multiple Unspecified Vulnerabilities (1.1.32)
WordPress Plugin WordPress Backup and Migrate-Backup Guard Unspecified Vulnerability (1.0.6)
WordPress Plugin WordPress Backup to Dropbox Cross-Site Scripting (4.0) CVE-2014-9310
WordPress Plugin WordPress Backup to Dropbox Information Disclosure (4.7.1)
WordPress Plugin WordPress Backup to Ziddu Cross-Site Scripting (1)
WordPress Plugin WordPress Bitcoin Payments-Blockonomics Cross-Site Scripting (3.2)
WordPress Plugin WordPress Bitcoin Payments-Blockonomics Cross-Site Scripting (3.5.7) CVE-2022-47145
WordPress Plugin WordPress Book List Arbitrary File Upload (5.0.11)
WordPress Plugin WordPress Books Gallery Cross-Site Request Forgery (4.4.8) CVE-2023-23705
WordPress Plugin WordPress Books Gallery Security Bypass (3.5)
WordPress Plugin WordPress Books Gallery Unspecified Vulnerability (4.4.1)
WordPress Plugin WordPress Button Plugin MaxButtons Cross-Site Scripting (1.26.0) CVE-2014-7181
WordPress Plugin WordPress Button Plugin MaxButtons Cross-Site Scripting (6.18) CVE-2017-2169
WordPress Plugin WordPress Button Plugin MaxButtons Multiple Cross-Site Scripting Vulnerabilities (1.36)
WordPress Plugin WordPress Button Plugin MaxButtons Security Bypass (1.19.0)
WordPress Plugin WordPress Calls to Action Cross-Site Scripting (2.2.7)
WordPress Plugin WordPress Calls to Action Multiple Cross-Site Scripting Vulnerabilities (2.5.0) CVE-2015-8350
WordPress Plugin WordPress Calls to Action Multiple Vulnerabilities (2.3.7)
WordPress Plugin WordPress Calls to Action Unspecified Vulnerability (2.3.1)
WordPress Plugin WordPress Calls to Action Unspecified Vulnerability (2.3.5)
WordPress Plugin WordPress Clean Up & Optimizer-Clean Up Optimizer Multiple Unspecified Vulnerabilities (4.0.12)