Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Arbitrary File Read Arbitrary File Write Authentication Bypass BOLA Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities Ldap Injection Malware Missing Update Path Traversal Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity WordPress Plugin WP Glossary 'ajax.php' SQL Injection (0.1) CWE-89 CWE-89 High WordPress Plugin WP Google Fonts Cross-Site Scripting (3.1.3) CWE-79 CWE-79 High WordPress Plugin WP Google Maps Cross-Site Request Forgery (7.11.27) CWE-352 CWE-352 High WordPress Plugin WP Google Maps Cross-Site Scripting (6.3.14) CWE-79 CWE-79 High WordPress Plugin WP Google Maps Cross-Site Scripting (7.10.41) CVE-2019-9912 CWE-79 CWE-79 High WordPress Plugin WP Google Maps Cross-Site Scripting (7.11.34) CVE-2019-14792 CWE-79 CWE-79 High WordPress Plugin WP Google Maps Cross-Site Scripting (8.1.11) CVE-2021-24383 CWE-79 CWE-79 High WordPress Plugin WP Google Maps Multiple Cross-Site Scripting Vulnerabilities (6.0.26) CVE-2014-7182 CWE-79 CWE-79 High WordPress Plugin WP Google Maps Multiple Cross-Site Scripting Vulnerabilities (8.1.12) CWE-79 CWE-79 High WordPress Plugin WP Google Maps SQL Injection (7.11.17) CVE-2019-10692 CWE-89 CWE-89 High WordPress Plugin WP Google Maps Unspecified Vulnerability (6.2.1) High WordPress Plugin WP Google Maps Unspecified Vulnerability (8.0.25) High WordPress Plugin WP Google Review Slider Cross-Site Scripting (11.5) CVE-2022-4242 CWE-79 CWE-79 High WordPress Plugin WP Google Review Slider SQL Injection (6.1) CWE-89 CWE-89 High WordPress Plugin WP Google Review Slider SQL Injection (11.7) CVE-2023-0259 CWE-89 CWE-89 High WordPress Plugin WP GPX Maps 'wp-gpx-maps_admin_tracks.php' Arbitrary File Upload (1.1.22) CVE-2012-6649 CWE-434 CWE-434 High WordPress Plugin WPGraphQL Denial of Service (1.3.5) CVE-2021-31157 CWE-400 CWE-400 High WordPress Plugin WPGraphQL Security Bypass (0.2.3) CVE-2019-9879 CVE-2019-9880 CVE-2019-9881 CWE-264 CWE-264 High WordPress Plugin WP Gravity Forms Insightly Cross-Site Scripting (1.0.6) CWE-79 CWE-79 High WordPress Plugin WP Gravity Forms Zendesk Cross-Site Scripting (1.0.7) CWE-79 CWE-79 High WordPress Plugin WP Gravity Forms Zoho CRM Add-on Cross-Site Scripting (1.1.5) CWE-79 CWE-79 High WordPress Plugin WP GuestMap Multiple Cross-Site Scripting Vulnerabilities (1.8) CVE-2014-4587 CWE-79 CWE-79 High WordPress Plugin WP Hardening-Fix Your WordPress Security Cross-Site Scripting (1.2.1) CVE-2021-24373 CWE-79 CWE-79 High WordPress Plugin WP Header Images Cross-Site Scripting (2.0.0) CVE-2021-24798 CWE-79 CWE-79 High WordPress Plugin WP Helper Premium Cross-Site Scripting (4.2) CVE-2023-0448 CWE-79 CWE-79 High WordPress Plugin wp heyloyalty Remote Code Execution (1.1.4) CVE-2017-9841 CWE-94 CWE-94 High WordPress Plugin WP Hide & Security Enhancer Arbitrary File Download (1.3.9.2) CWE-538 CWE-538 High WordPress Plugin WPhone Cross-Site Scripting (1.5.2) CWE-79 CWE-79 High WordPress Plugin WP Hotel Booking Cross-Site Request Forgery (1.10.1) CWE-352 CWE-352 High WordPress Plugin WP Hotel Booking Cross-Site Request Forgery (1.10.5) CVE-2021-36852 CWE-352 CWE-352 High WordPress Plugin WP Hotel Booking PHP Object Injection (1.10.3) CVE-2020-29047 CWE-915 CWE-915 High WordPress Plugin WP Hotel Booking Remote Code Execution (1.10.2) CVE-2020-29047 CWE-502 CWE-502 High WordPress Plugin WP Hotel Booking SQL Injection (2.1.0) CVE-2024-3605 CWE-89 CWE-89 High WordPress Plugin WP htaccess Control Unspecified Vulnerability (2.4) High WordPress Plugin WP Htaccess Editor Unspecified Vulnerability (1.0.1) High WordPress Plugin WP HTML Author Bio Cross-Site Scripting (1.2.0) CVE-2021-24545 CWE-79 CWE-79 High WordPress Plugin WP HTML Sitemap Cross-Site Request Forgery (1.2) CVE-2014-2675 CWE-352 CWE-352 High WordPress Plugin WP Human Resource Management Security Bypass (2.2.5) CVE-2019-9573 CVE-2019-9574 CWE-264 CWE-264 High WordPress Plugin WP Human Resource Management Security Bypass (2.2.14) CWE-264 CWE-264 High WordPress Plugin WP Humans.txt Cross-Site Scripting (1.0.6) CVE-2022-3392 CWE-79 CWE-79 High WordPress Plugin WP iCommerce-the first interactive ecommerce for wordpress SQL Injection (1.1.1) CVE-2021-24402 CWE-89 CWE-89 High WordPress Plugin WP Idea Stream Cross-Site Scripting (2.1.1) CWE-79 CWE-79 High WordPress Plugin WP Image Zoom Denial of Service (1.23) CWE-400 CWE-400 High WordPress Plugin WP Image Zoom Local File Inclusion (1.46) CVE-2021-24447 CWE-22 CWE-22 High WordPress Plugin WP Import Export Information Disclosure (3.9.15) CVE-2022-0236 CWE-200 CWE-200 High WordPress Plugin WP Import Export Lite Information Disclosure (3.9.15) CVE-2022-0236 CWE-200 CWE-200 High WordPress Plugin WP Import Export Lite Security Bypass (3.9.4) CWE-284 CWE-284 High WordPress Plugin WP Infusionsoft WooCommerce Cross-Site Scripting (1.0.8) CWE-79 CWE-79 High WordPress Plugin WP Inimat Cross-Site Scripting (1.0) CWE-79 CWE-79 High WordPress Plugin WP Insightly for Contact Form 7 and Ninja Forms Cross-Site Scripting (1.0.7) CWE-79 CWE-79 High WordPress Plugin WP Instagram-Best Instagram Feeds Cross-Site Scripting (1.0.19) CWE-79 CWE-79 High WordPress Plugin WP Intercom-Slack for WordPress Information Disclosure (1.2.1) CVE-2019-14365 CWE-200 CWE-200 High WordPress Plugin WP Inventory Manager Cross-Site Scripting (1.7.8) CWE-79 CWE-79 High WordPress Plugin WP Inventory Manager Unspecified Vulnerability (1.8.1) High WordPress Plugin WPJobBoard Cross-Site Scripting (5.5.3) CVE-2020-9019 CWE-79 CWE-79 High WordPress Plugin WPJobBoard Cross-Site Scripting (5.6.4) CWE-79 CWE-79 High WordPress Plugin WPJobBoard Multiple Cross-Site Scripting Vulnerabilities (4.5.1) CVE-2017-15375 CWE-79 CWE-79 High WordPress Plugin WPJobBoard SQL Injection (5.6.4) CWE-89 CWE-89 High WordPress Plugin WP Job Manager Cross-Site Request Forgery (1.25.2) CWE-352 CWE-352 High WordPress Plugin WP Job Manager Cross-Site Scripting (1.23.7) CWE-79 CWE-79 High WordPress Plugin WP Job Manager Cross-Site Scripting (1.26.1) CWE-79 CWE-79 High WordPress Plugin WP Job Manager PHP Object Injection (1.29.2) CWE-915 CWE-915 High WordPress Plugin WP Job Manager PHP Object Injection (1.31.2) CWE-915 CWE-915 High WordPress Plugin WP Job Manager Privilege Escalation (1.34.3) CWE-264 CWE-264 High WordPress Plugin WP Job Manager Privilege Escalation (1.34.4) CWE-264 CWE-264 High WordPress Plugin WP Job Manager Unspecified Vulnerability (1.32.2) High WordPress Plugin WP Jobs Cross-Site Scripting (1.6) CVE-2017-14751 CWE-79 CWE-79 High WordPress Plugin WP Jobs SQL Injection (1.4) CVE-2017-9603 CWE-89 CWE-89 High WordPress Plugin WP jPlayer Cross-Site Scripting (0.1) CVE-2013-1942 CWE-79 CWE-79 High WordPress Plugin WP JS Cross-Site Scripting (2.0.6) CVE-2022-1567 CWE-79 CWE-79 High WordPress Plugin WP Js External Link Info Cross-Site Scripting (1.21) CWE-79 CWE-79 High WordPress Plugin WP Js External Link Info Open Redirect (1.21) CWE-601 CWE-601 High WordPress Plugin WP Keyword Link Multiple Cross-Site Scripting Vulnerabilities (1.7) CWE-79 CWE-79 High WordPress Plugin WP Last Modified Info Cross-Site Scripting (1.6.5) CWE-79 CWE-79 High WordPress Plugin WP Lead Management Cross-Site Scripting (3.0.0) CWE-79 CWE-79 High 1...290291292293...306 291 / 306
