Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Api Bfla Api Bola Api Broken Auth Api Broken Object Prop Auth Api Dos Api Improper Inventory Management Api Misconfiguration Api Ssrf Arbitrary File Creation Arbitrary File Read Authentication Bypass BOLA Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial Of Service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilities LLM Ldap Injection Llm Excessive Agency Llm Insecure Output Handling Llm Prompt Injection Llm Prompt Leakage Llm Sensitive Information Disclosure Malware Missing Update Privilege Escalation SSRF Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity WordPress Plugin Wp-ImageZoom SQL Injection (1.0.7) CWE-89 CWE-89 High WordPress Plugin Wp-Insert Cross-Site Scripting (2.5.0) CVE-2023-25461 CWE-79 CWE-79 High WordPress Plugin WP-Invoice-Web Invoice and Billing Multiple Vulnerabilities (4.1.0) CWE-200 CWE-264 CWE-200 CWE-264 High WordPress Plugin WP-Lister Lite for Amazon Cross-Site Scripting (2.4.3) CVE-2022-4369 CWE-79 CWE-79 High WordPress Plugin WP-Lister Lite for Amazon Directory Traversal (0.9.6.35) CVE-2017-1000170 CWE-22 CWE-22 High WordPress Plugin WP-Lister Lite for eBay Cross-Site Scripting (2.0.8.3) CWE-79 CWE-79 High WordPress Plugin WP-Lister Lite for eBay Directory Traversal (2.0.20) CVE-2017-1000170 CWE-22 CWE-22 High WordPress Plugin WP-Live Chat by 3CX Arbitrary File Upload (8.0.31) CVE-2019-11185 CWE-434 CWE-434 High WordPress Plugin WP-Live Chat by 3CX Cross-Site Request Forgery (8.0.37) CWE-352 CWE-352 High WordPress Plugin WP-Live Chat by 3CX Cross-Site Scripting (4.0.2) CWE-79 CWE-79 High WordPress Plugin WP-Live Chat by 3CX Cross-Site Scripting (6.2.01) CWE-79 CWE-79 High WordPress Plugin WP-Live Chat by 3CX Cross-Site Scripting (6.2.03) CWE-79 CWE-79 High WordPress Plugin WP-Live Chat by 3CX Cross-Site Scripting (7.0.06) CVE-2017-2187 CWE-79 CWE-79 High WordPress Plugin WP-Live Chat by 3CX Cross-Site Scripting (7.1.04) CWE-79 CWE-79 High WordPress Plugin WP-Live Chat by 3CX Cross-Site Scripting (8.0.05) CVE-2018-9864 CWE-79 CWE-79 High WordPress Plugin WP-Live Chat by 3CX Cross-Site Scripting (8.0.07) CVE-2018-11105 CWE-79 CWE-79 High WordPress Plugin WP-Live Chat by 3CX Cross-Site Scripting (8.0.17) CVE-2018-18460 CVE-2019-9913 CWE-79 CWE-79 High WordPress Plugin WP-Live Chat by 3CX Cross-Site Scripting (8.0.27) CWE-79 CWE-79 High WordPress Plugin WP-Live Chat by 3CX Cross-Site Scripting (8.1.9) CWE-79 CWE-79 High WordPress Plugin WP-Live Chat by 3CX Information Disclosure (8.0.28) CWE-200 CWE-200 High WordPress Plugin WP-Live Chat by 3CX Multiple Vulnerabilities (4.3.5) CWE-79 CWE-89 CWE-79 CWE-89 High WordPress Plugin WP-Live Chat by 3CX Remote Code Execution (7.0.01) CVE-2016-10033 CVE-2016-10045 CWE-94 CWE-94 High WordPress Plugin WP-Live Chat by 3CX Security Bypass (8.0.32) CVE-2019-12498 CWE-287 CWE-287 High WordPress Plugin WP-Lytebox 'pg' Parameter Local File Inclusion (1.3) CVE-2009-4672 CWE-22 CWE-22 High WordPress Plugin WP-Matomo (WP-Piwik) Cross-Site Scripting (1.0.4) CWE-79 CWE-79 High WordPress Plugin WP-Matomo (WP-Piwik) Cross-Site Scripting (1.0.10) CWE-79 CWE-79 High WordPress Plugin WP-Matomo (WP-Piwik) Unspecified Vulnerability (1.0.18) High WordPress Plugin WP-Members Membership Cross-Site Request Forgery (3.2.7) CVE-2019-15660 CWE-352 CWE-352 High WordPress Plugin WP-Members Membership Cross-Site Scripting (3.1.4.1) CWE-79 CWE-79 High WordPress Plugin WP-Members Membership Cross-Site Scripting (3.1.4.2) CWE-79 CWE-79 High WordPress Plugin WP-Members Membership Cross-Site Scripting (3.1.7) CVE-2017-2222 CWE-79 CWE-79 High WordPress Plugin WP-Members Membership Cross-Site Scripting (3.4.9.2) CVE-2024-1852 CWE-79 CWE-79 High WordPress Plugin WP-Members Membership Multiple Cross-Site Scripting Vulnerabilities (2.8.9) CWE-79 CWE-79 High WordPress Plugin WP-Members Membership Unspecified Vulnerability (3.1.9.2) High WordPress Plugin wp-microblogs Cross-Site Scripting (0.4.0) CVE-2014-4590 CWE-79 CWE-79 High WordPress Plugin WP-Mon Arbitrary File Disclosure (0.5.1) CWE-22 CWE-22 High WordPress Plugin wp-mpdf Cross-Site Request Forgery (3.5.1) CWE-352 CWE-352 High WordPress Plugin WP-OliveCart Multiple Vulnerabilities (3.1.2) CVE-2016-4903 CVE-2016-4904 CVE-2016-4905 CWE-79 CWE-89 CWE-352 CWE-79 CWE-89 CWE-352 High WordPress Plugin WP-Optimize Multiple Vulnerabilities (1.8.9.9) CWE-79 CWE-352 CWE-79 CWE-352 High WordPress Plugin WP-Paginate Cross-Site Scripting (1.2.1) CWE-79 CWE-79 High WordPress Plugin WP-Paginate Cross-Site Scripting (2.1.3) CWE-79 CWE-79 High WordPress Plugin wp-picasa-image Cross-Site Scripting (1.0) CVE-2014-4591 CWE-79 CWE-79 High WordPress Plugin WP-Polls Cross-Site Scripting (2.60) CWE-79 CWE-79 High WordPress Plugin WP-Polls Cross-Site Scripting (2.69) CWE-79 CWE-79 High WordPress Plugin WP-Polls Cross-Site Scripting (2.73) CWE-79 CWE-79 High WordPress Plugin WP-Polls SQL Injection (2.61) CWE-89 CWE-89 High WordPress Plugin WP-Polls SQL Injection (2.71) CVE-2015-9352 CWE-89 CWE-89 High WordPress Plugin WP-PostRatings '[ratings]' Shortcode SQL Injection (1.61) CVE-2011-4646 CWE-89 CWE-89 High WordPress Plugin WP-PostRatings Cross-Site Scripting (1.50) CWE-79 CWE-79 High WordPress Plugin WP-PostRatings Cross-Site Scripting (1.86) CWE-79 CWE-79 High WordPress Plugin WP-PostRatings SQL Injection (1.83.1) CWE-89 CWE-89 High WordPress Plugin WP-PostViews Cross-Site Request Forgery (1.62) CVE-2013-3252 CWE-352 CWE-352 High WordPress Plugin WP-Predict 'predictId' Parameter Blind SQL Injection (1.0) CWE-89 CWE-89 High WordPress Plugin WP-Print Cross-Site Request Forgery (2.51) CVE-2013-2693 CWE-352 CWE-352 High WordPress Plugin Wp-Pro-Quiz Cross-Site Request Forgery (0.37) CWE-352 CWE-352 High WordPress Plugin WP-Property-WordPress Powered Real Estate and Property Management Arbitrary File Upload (1.35.0) CWE-434 CWE-434 High WordPress Plugin WP-Property-WordPress Powered Real Estate and Property Management Information Disclosure (1.38.3.2) CWE-200 CWE-200 High WordPress Plugin WP-Property-WordPress Powered Real Estate and Property Management SQL Injection (1.36.0) CWE-89 CWE-89 High WordPress Plugin wp-publications Local File Inclusion (0.0) CVE-2021-38360 CWE-22 CWE-22 High WordPress Plugin WP-Recall-Registration, Profile, Commerce & More Cross-Site Scripting (16.24.47) CWE-79 CWE-79 High WordPress Plugin WP-Recall-Registration, Profile, Commerce & More Security Bypass (16.26.6) CVE-2024-1175 CWE-862 CWE-862 High WordPress Plugin WP-Recall-Registration, Profile, Commerce & More SQL Injection (16.26.5) CVE-2024-32709 CWE-89 CWE-89 High WordPress Plugin WP-reCAPTCHA Cross-Site Scripting (3.1.3) CWE-79 CWE-79 High WordPress Plugin WP-reCAPTCHA HTML Injection and Cross-Site Request Forgery Vulnerabilities (2.9.8.2) CVE-2011-0759 CWE-79 CWE-352 CWE-79 CWE-352 High WordPress Plugin WP-RecentComments 'page' Parameter Cross-Site Scripting (2.0.6) CVE-2012-1068 CWE-79 CWE-79 High WordPress Plugin WP-RecentComments Information Disclosure (2.2.7) CVE-2023-23886 CWE-200 CWE-200 High WordPress Plugin WP-RecentComments SQL Injection (2.0.7) CVE-2012-1067 CWE-89 CWE-89 High WordPress Plugin WP-RESTful Multiple Cross-Site Scripting Vulnerabilities (0.1) CVE-2014-4595 CWE-79 CWE-79 High WordPress Plugin WP-SendSMS Cross-Site Request Forgery (1.0) CWE-352 CWE-352 High WordPress Plugin WP-SpamFree Anti-Spam 'id' Parameter SQL Injection (3.2.1) CWE-89 CWE-89 High WordPress Plugin WP-SpamFree Anti-Spam Cross-Site Scripting (2.1.1.6) CWE-79 CWE-79 High WordPress Plugin WP-Spreadplugin Cross-Site Scripting (3.8.6) CWE-79 CWE-79 High WordPress Plugin WP-Spreadplugin Multiple Vulnerabilities (4.4.4) CWE-79 CWE-352 CWE-79 CWE-352 High WordPress Plugin WP-Spreadshirt-Gallery Cross-Site Scripting (1.3) CVE-2014-4553 CWE-79 CWE-79 High WordPress Plugin WP-StarsRateBox 'j' Parameter SQL Injection (1.1) CWE-89 CWE-89 High 1...308309310311...329 309 / 329