Acunetix Web Vulnerabilities Index

Vulnerability Name CVE CWE Severity
WordPress Plugin WP Jobs SQL Injection (1.4) CVE-2017-9603 CWE-89 High
WordPress Plugin WP jPlayer Cross-Site Scripting (0.1) CVE-2013-1942 CWE-79 High
WordPress Plugin WP Js External Link Info Cross-Site Scripting (1.21) CWE-79 High
WordPress Plugin WP Js External Link Info Open Redirect (1.21) CWE-601 High
WordPress Plugin WP Keyword Link Multiple Cross-Site Scripting Vulnerabilities (1.7) CWE-79 High
WordPress Plugin WP Lead Management Cross-Site Scripting (3.0.0) CWE-79 High
WordPress Plugin WP Legal Pages Cross-Site Scripting (1.0.1) CWE-79 High
WordPress Plugin WP Limit Login Attempts SQL Injection (2.0.0) CVE-2015-6829 CWE-89 High
WordPress Plugin WP Limit Posts Automatically Cross-Site Request Forgery (0.7) CVE-2014-9401 CWE-352 High
WordPress Plugin WP Link To Us Multiple Cross-Site Scripting Vulnerabilities (2.0) CVE-2013-1808 CWE-79 High
WordPress Plugin WP Live.php 's' Parameter Cross-Site Scripting (1.2.1) CVE-2012-5346 CWE-79 High
WordPress Plugin WP Live Chat Support Cross-Site Scripting (4.0.2) CWE-79 High
WordPress Plugin WP Live Chat Support Cross-Site Scripting (6.2.01) CWE-79 High
WordPress Plugin WP Live Chat Support Cross-Site Scripting (6.2.03) CWE-79 High
WordPress Plugin WP Live Chat Support Cross-Site Scripting (7.0.06) CVE-2017-2187 CWE-79 High
WordPress Plugin WP Live Chat Support Cross-Site Scripting (7.1.04) CWE-79 High
WordPress Plugin WP Live Chat Support Cross-Site Scripting (8.0.05) CVE-2018-9864 CWE-79 High
WordPress Plugin WP Live Chat Support Cross-Site Scripting (8.0.07) CVE-2018-11105 CWE-79 High
WordPress Plugin WP Live Chat Support Cross-Site Scripting (8.0.17) CVE-2018-18460 CWE-79 High
WordPress Plugin WP Live Chat Support Multiple Vulnerabilities (4.3.5) CWE-79 CWE-89 High
WordPress Plugin WP Live Chat Support Pro Arbitrary File Upload (8.0.06) CVE-2018-12426 CWE-434 High
WordPress Plugin WP Live Chat Support Pro Unspecified Vulnerability (8.0.07) High
WordPress Plugin WP Live Chat Support Remote Code Execution (7.0.01) CVE-2016-10033 CVE-2016-10045 CWE-94 High
WordPress Plugin WP Mail Cross-Site Scripting (1.1) CVE-2017-5942 CWE-79 High
WordPress Plugin WP Mail Logging Cross-Site Scripting (1.8.2) CWE-79 High
WordPress Plugin WP Mail Logging Multiple Unspecified Vulnerabilities (1.5.0) High
WordPress Plugin WP Mail SMTP by WPForms Cross-Site Scripting (1.3.3) CWE-79 High
WordPress Plugin WP Mail SMTP by WPForms Unspecified Vulnerability (0.9.5) High
WordPress Plugin WP Mailster Cross-Site Scripting (1.5.4.0) CVE-2017-17451 CWE-79 High
WordPress Plugin WP Mailto Links-Manage Email Links Cross-Site Scripting (2.0.1) CWE-79 High
WordPress Plugin WP Maintenance Mode Cross-Site Request Forgery (1.8.7) CVE-2013-3250 CWE-352 High
WordPress Plugin WP Maintenance Mode Multiple Vulnerabilities (2.0.3) CVE-2018-20154 CVE-2018-20155 CWE-200 CWE-264 High
WordPress Plugin WP Maintenance Mode Remote Code Execution (2.0.6) CVE-2018-20156 CWE-94 High
WordPress Plugin WP Marketplace-Complete Shopping Cart/eCommerce Solution 'uploadify.php' Arbitrary File Upload (1.6.1) CWE-434 High
WordPress Plugin WP Marketplace-Complete Shopping Cart/eCommerce Solution Arbitrary File Download (2.4.0) CVE-2014-9013 CVE-2014-9014 CWE-22 High
WordPress Plugin WP Marketplace-Complete Shopping Cart/eCommerce Solution Arbitrary File Upload (1.2.1) CWE-434 High
WordPress Plugin WP Marketplace-Complete Shopping Cart/eCommerce Solution Arbitrary File Upload (2.4.1) CWE-434 High
WordPress Plugin WP Marketplace TimThumb Arbitrary File Upload (1.1.0) CVE-2011-4106 CWE-20 High
WordPress Plugin WP Mass Mail Open Email Relay (2.45) CWE-264 High
WordPress Plugin WP Media Cleaner Multiple Cross-Site Scripting Vulnerabilities (2.2.6) CVE-2015-2195 CWE-79 High
WordPress Plugin WP Membership Multiple Vulnerabilities (1.2.3) CVE-2015-4038 CVE-2015-4039 CWE-79 CWE-264 High
WordPress Plugin WP Migrate DB Security Bypass (0.6) CWE-264 High
WordPress Plugin WPML (WordPress Multilingual) Cross-Site Scripting (3.2.6) CWE-79 High
WordPress Plugin WPML (WordPress Multilingual) Multiple Vulnerabilities (3.1.8.6) CVE-2015-2314 CVE-2015-2315 CVE-2015-2791 CVE-2015-2792 CWE-79 CWE-89 CWE-284 High
WordPress Plugin WPML (WordPress Multilingual CMS) Cross-Site Scripting (3.6.3) CVE-2018-18069 CWE-79 High
WordPress Plugin WPML Translation Management PHP Object Injection (2.4.1) CWE-915 High
WordPress Plugin WPML Unauthenticated Stored XSS CVE-2018-18069 CWE-80 High
WordPress Plugin WP Mobile Detector Arbitrary File Upload (3.5) CWE-434 High
WordPress Plugin WP Mobile Detector Cross-Site Scripting (3.2) CWE-79 High
WordPress Plugin WP Mobile Detector Multiple Vulnerabilities (3.8) CWE-79 CWE-352 High
WordPress Plugin WP Mobile Detector Unspecified Vulnerability (2.1) High
WordPress Plugin WP Mobile Edition Arbitrary File Disclosure (2.2.7) CWE-22 High
WordPress Plugin WP Mobile Edition Multiple Vulnerabilities (2.4) CWE-22 CWE-79 High
WordPress Plugin WP Mobile Menu Security Bypass (2.7.2) CWE-264 High
WordPress Plugin WPMovieLibrary Multiple Cross-Site Scripting Vulnerabilities (2.1.4.1) CWE-79 High
WordPress Plugin Wp Multiple Meta Box SQL Injection (1.0.0) CWE-89 High
WordPress Plugin WP No External Links Cross-Site Scripting (3.5.15) CWE-79 High
WordPress Plugin WP No External Links Cross-Site Scripting (3.5.18) CVE-2017-15863 CWE-79 High
WordPress Plugin WP No External Links Spam Injection (4.2.2) CWE-610 High
WordPress Plugin WP OAuth Server Security Bypass (3.1.4) CWE-326 High
WordPress Plugin WP Online Store Local File Include and Multiple File Disclosure Vulnerabilities (1.3.1) CWE-22 CWE-538 High
WordPress Plugin WP Page Widget Cross-Site Scripting (2.7) CWE-79 High
WordPress Plugin WP Payeezy Pay Local File Inclusion (2.97) CWE-22 High
WordPress Plugin WP People 'wp-people-popup.php' SQL Injection (2.0) CWE-89 High
WordPress Plugin WP Photo Album 'id' Parameter Cross-Site Scripting (1.5.1) CWE-79 High
WordPress Plugin WP Photo Album 'photo' Parameter SQL Injection (1.0) CVE-2008-0939 CWE-89 High
WordPress Plugin WP Photo Album Plus 'wppa-album' Parameter SQL Injection (4.1.1) CWE-89 High
WordPress Plugin WP Photo Album Plus Cross-Site Request Forgery (4.8.11) CWE-352 High
WordPress Plugin WP Photo Album Plus Cross-Site Scripting (4.9.2) CWE-79 High
WordPress Plugin WP Photo Album Plus Cross-Site Scripting (5.0.2) CVE-2013-3254 CWE-79 High
WordPress Plugin WP Photo Album Plus Cross-Site Scripting (5.0.10) CWE-79 High
WordPress Plugin WP Photo Album Plus Cross-Site Scripting (5.4.7) CWE-79 High
WordPress Plugin WP Photo Album Plus Cross-Site Scripting (5.4.17) CVE-2014-8814 CWE-79 High
WordPress Plugin WP Photo Album Plus Cross-Site Scripting (6.1.2) CVE-2015-3647 CWE-79 High
WordPress Plugin WP Photo Album Plus Multiple Cross-Site Scripting Vulnerabilities (5.4.4) CWE-79 High