Severity High Medium Low Informational Vulnerability Categories 200 Abuse Of Functionality Arbitrary File Creation Authentication Bypass Bruteforce Possible Buffer Overflow CSRF Code Execution Configuration Crlf Injection Default Credentials Denial Of Service Dev Files Directory Listing Directory Traversal Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilities Ldap Injection Malware Missing Update Privilege Escalation SSRF Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity WordPress Plugin WP Source Control Directory Traversal (3.0.0) CVE-2014-5368 CWE-22 CWE-22 High WordPress Plugin WP Spell Check Cross-Site Request Forgery (7.1.9) CVE-2019-6027 CWE-352 CWE-352 High WordPress Plugin WP Staging-DB & File Duplicator & Migration Unspecified Vulnerability (2.4.3) High WordPress Plugin WP Statistics Cross-Site Scripting (8.3) CWE-79 CWE-79 High WordPress Plugin WP Statistics Cross-Site Scripting (9.1.2) CWE-79 CWE-79 High WordPress Plugin WP Statistics Cross-Site Scripting (9.5.1) CWE-79 CWE-79 High WordPress Plugin WP Statistics Cross-Site Scripting (12.0.5) CWE-79 CWE-79 High WordPress Plugin WP Statistics Cross-Site Scripting (12.0.8.1) CWE-79 CWE-79 High WordPress Plugin WP Statistics Cross-Site Scripting (12.0.9) CVE-2017-10991 CWE-79 CWE-79 High WordPress Plugin WP Statistics Cross-Site Scripting (12.6.3) CVE-2019-10864 CWE-79 CWE-79 High WordPress Plugin WP Statistics Cross-Site Scripting (12.6.5) CVE-2019-12566 CWE-79 CWE-79 High WordPress Plugin WP Statistics Cross-Site Scripting (12.6.7) CWE-79 CWE-79 High WordPress Plugin WP Statistics Multiple Cross-Site Scripting Vulnerabilities (2.2.4) CWE-79 CWE-79 High WordPress Plugin WP Statistics Multiple Cross-Site Scripting Vulnerabilities (12.0.1) CVE-2017-2135 CWE-79 CWE-79 High WordPress Plugin WP Statistics Multiple Cross-Site Scripting Vulnerabilities (12.0.4) CVE-2017-2136 CVE-2017-2147 CWE-79 CWE-79 High WordPress Plugin WP Statistics Multiple Unspecified Vulnerabilities (9.6.5) High WordPress Plugin WP Statistics SQL Injection (9.4) CWE-89 CWE-89 High WordPress Plugin WP Statistics SQL Injection (12.0.7) CWE-89 CWE-89 High WordPress Plugin WP Statistics SQL Injection (12.6.6.1) CVE-2019-13275 CWE-89 CWE-89 High WordPress Plugin wpStoreCart 'upload.php' Arbitrary File Upload (2.5.29) CVE-2012-3576 CWE-434 CWE-434 High WordPress Plugin WP Subscribe Cross-Site Scripting (1.0.2) CWE-79 CWE-79 High WordPress Plugin WP Subtitle Unspecified Vulnerability (2.5) High WordPress Plugin WP Sudoku Plus Unspecified Vulnerability (1.4) High WordPress Plugin wp superb Slideshow 'upload.php' Arbitrary File Upload (2.2) CWE-434 CWE-434 High WordPress Plugin wp superb Slideshow Arbitrary File Upload (2.4) CWE-434 CWE-434 High WordPress Plugin wp superb Slideshow Information Disclosure (2.4) CWE-200 CWE-200 High WordPress Plugin WP Super Cache Cross-Site Scripting (1.3) CWE-79 CWE-79 High WordPress Plugin WP Super Cache Cross-Site Scripting (1.4) CWE-79 CWE-79 High WordPress Plugin WP Super Cache Cross-Site Scripting (1.4.2) CWE-79 CWE-79 High WordPress Plugin WP Super Cache Multiple Vulnerabilities (1.4.4) CWE-22 CWE-23 CWE-79 CWE-915 CWE-22 CWE-23 CWE-79 CWE-915 High WordPress Plugin WP Super Cache PHP Code Injection (1.2) CVE-2013-2009 CVE-2013-2011 CWE-95 CWE-95 High WordPress Plugin WP Support Plus Responsive Ticket System Cross-Site Scripting (9.1.1) CVE-2019-7299 CWE-79 CWE-79 High WordPress Plugin WP Support Plus Responsive Ticket System Multiple Vulnerabilities (4.1) CWE-22 CWE-89 CWE-200 CWE-22 CWE-89 CWE-200 High WordPress Plugin WP Support Plus Responsive Ticket System PHP Object Injection (9.0.3) CWE-915 CWE-915 High WordPress Plugin WP Support Plus Responsive Ticket System Privilege Escalation (7.1.4) CWE-264 CWE-264 High WordPress Plugin WP Support Plus Responsive Ticket System Security Bypass (7.1.4) CWE-287 CWE-287 High WordPress Plugin WP Support Plus Responsive Ticket System SQL Injection (7.1.4) CWE-89 CWE-89 High WordPress Plugin WP Support Plus Responsive Ticket System Unspecified Vulnerability (8.0.7) High WordPress Plugin WP Survey And Quiz Tool 'action' Parameter Cross-Site Scripting (1.2.1) CVE-2010-4630 CWE-79 CWE-79 High WordPress Plugin WP Survey And Quiz Tool 'rowcount' Parameter Cross-Site Scripting (2.9.2) CWE-79 CWE-79 High WordPress Plugin WP SVG Icons Cross-Site Request Forgery (3.2.1) CVE-2019-14216 CWE-352 CWE-352 High WordPress Plugin WP SVG Icons Multiple Unspecified Vulnerabilities (3.1.8.1) High WordPress Plugin WP Symposium 'get_profile_avatar.php' SQL Injection (0.64) CWE-89 CWE-89 High WordPress Plugin WP Symposium Arbitrary File Upload (14.11) CVE-2014-10021 CWE-434 CWE-434 High WordPress Plugin WP Symposium Arbitrary File Upload Vulnerabilities (11.11.26) CVE-2011-5051 CWE-434 CWE-434 High WordPress Plugin WP Symposium A Social Network For WordPress Multiple Cross-Site Scripting Vulnerabilities (12.07.07) CWE-79 CWE-79 High WordPress Plugin WP Symposium A Social Network For WordPress Multiple SQL Injection Vulnerabilities (12.06.16) CWE-89 CWE-89 High WordPress Plugin WP Symposium Cross-Site Scripting (11.11.26) CVE-2011-3841 CWE-79 CWE-79 High WordPress Plugin WP Symposium Cross-Site Scripting (13.02) CVE-2013-2695 CWE-79 CWE-79 High WordPress Plugin WP Symposium Cross-Site Scripting (15.8.1) CWE-79 CWE-79 High WordPress Plugin WP Symposium Multiple SQL Injection Vulnerabilities (12.09) CWE-89 CWE-89 High WordPress Plugin WP Symposium Multiple Vulnerabilities (14.05.02) CWE-79 CWE-352 CWE-79 CWE-352 High WordPress Plugin WP Symposium Multiple Vulnerabilities (14.10) CVE-2014-8809 CVE-2014-8810 CWE-79 CWE-89 CWE-79 CWE-89 High WordPress Plugin WP Symposium Open Redirect (13.04) CVE-2013-2694 CWE-601 CWE-601 High WordPress Plugin WP Symposium Open Redirect (13.12) CWE-601 CWE-601 High WordPress Plugin WP Symposium Pro Social Network Cross-Site Scripting (16.01) CWE-79 CWE-79 High WordPress Plugin WP Symposium Pro Social Network Multiple Vulnerabilities (15.12) CWE-79 CWE-352 CWE-79 CWE-352 High WordPress Plugin WP Symposium SQL Injection (15.1) CVE-2015-3325 CWE-89 CWE-89 High WordPress Plugin WP Symposium SQL Injection (15.5.1) CWE-89 CWE-89 High WordPress Plugin WP Symposium Toolbar Unspecified Vulnerability (0.26.0) High WordPress Plugin WP Telegram (Auto Post and Notifications) Unspecified Vulnerability (2.1.8) High WordPress Plugin wptf-image-gallery Arbitrary File Download (1.0.3) CVE-2015-1000007 CWE-538 CWE-538 High WordPress Plugin WP to Twitter Authorization Bypass (2.9.3) CWE-264 CWE-264 High WordPress Plugin WP to Twitter Cross-Site Request Forgery (3.2.9) CWE-352 CWE-352 High WordPress Plugin WP to Twitter Cross-Site Scripting (3.0.5) CWE-79 CWE-79 High WordPress Plugin WPtouch 'wptouch_settings' Parameter Cross-Site Scripting (1.9.20) CVE-2010-4779 CWE-79 CWE-79 High WordPress plugin WPtouch insecure nonce generation CWE-287 CWE-287 High WordPress Plugin WPtouch Mobile 'wptouch_redirect' Parameter URI Redirection (1.9.32) CWE-601 CWE-601 High WordPress Plugin WPtouch Mobile Arbitrary File Upload (3.4.6) CWE-20 CWE-20 High WordPress Plugin WPtouch Mobile Backdoor (1.9.28) CWE-95 CWE-95 High WordPress Plugin WPtouch Mobile Cross-Site Request Forgery (1.9.31) CWE-352 CWE-352 High WordPress Plugin WPtouch Mobile Cross-Site Scripting (3.7.5.3) CWE-79 CWE-79 High WordPress Plugin WPtouch Mobile Multiple Cross-Site Scripting Vulnerabilities (3.7.3) CWE-79 CWE-79 High WordPress Plugin WPtouch Mobile Open Redirect (3.4.9) CWE-601 CWE-601 High WordPress Plugin WPtouch Mobile Security Bypass (3.4.2) CWE-264 CWE-264 High 1...8687888990 87 / 90