Severity High Medium Low Informational Vulnerability Categories 200 Abuse Of Functionality Arbitrary File Creation Authentication Bypass Bruteforce Possible Buffer Overflow CSRF Code Execution Configuration Crlf Injection Default Credentials Denial Of Service Dev Files Directory Listing Directory Traversal Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilities Ldap Injection Malware Missing Update Privilege Escalation SSRF Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity WordPress Plugin WP ULike Cross-Site Scripting (3.1) CWE-79 CWE-79 High WordPress Plugin WP ULike Multiple Vulnerabilities (3.1) CWE-264 CWE-352 CWE-264 CWE-352 High WordPress Plugin WP Ultimate Email Marketer Multiple Vulnerabilities (1.1.0) CVE-2013-3263 CVE-2013-3264 CVE-2014-4600 CWE-79 CWE-264 CWE-79 CWE-264 High WordPress Plugin WP Ultimate Exporter Cross-Site Scripting (1.0) CWE-79 CWE-79 High WordPress Plugin WP Ultimate Exporter SQL Injection (1.1) CWE-89 CWE-89 High WordPress Plugin WP Ultimate Recipe Cross-Site Scripting (3.12.6) CVE-2019-15836 CWE-79 CWE-79 High WordPress Plugin WP Unique Article Header Image Cross-Site Request Forgery (1.0) CVE-2014-9400 CWE-352 CWE-352 High WordPress Plugin WP User Avatar Cross-Site Scripting (1.9.18) CWE-79 CWE-79 High WordPress Plugin WP User Frontend Arbitrary File Upload (2.3.10) CWE-434 CWE-434 High WordPress Plugin WP User Groups Cross-Site Request Forgery (2.0.0) CWE-352 CWE-352 High WordPress Plugin WP Vault Local File Inclusion (0.8.6.6) CWE-22 CWE-22 High WordPress Plugin WP Video Lightbox Cross-Site Scripting (1.7.4) CWE-79 CWE-79 High WordPress Plugin WP w3all phpBB Multiple Unspecified Vulnerabilities (1.6.3) High WordPress Plugin WP Web Scraper Unspecified Vulnerability (2.4) High WordPress Plugin WP Whois Domain Cross-Site Scripting (1.0.0) CWE-79 CWE-79 High WordPress Plugin WP Widget Cache Cross-Site Scripting (0.26) CWE-79 CWE-79 High WordPress Plugin WP with Spritz Local/Remote File Inclusion (1.0) CWE-98 CWE-98 High WordPress Plugin WR ContactForm SQL Injection (1.1.9) CWE-89 CWE-89 High WordPress Plugin wSecure Lite Remote Code Execution (2.3) CWE-94 CWE-94 High WordPress Plugin WTI Like Post Cross-Site Scripting (1.4.4) CWE-79 CWE-79 High WordPress Plugin WTI Like Post SQL Injection (1.4.2) CWE-89 CWE-89 High WordPress Plugin Wu-Rating Cross-Site Scripting (1.0 12319) CVE-2014-4601 CWE-79 CWE-79 High WordPress Plugin Wunderbar Basic Cross-Site Scripting (1.1.3) CWE-79 CWE-79 High WordPress Plugin XCloner-Backup and Restore Multiple Vulnerabilities (3.1.2) CVE-2015-4336 CVE-2015-4337 CVE-2015-4338 CWE-79 CWE-94 CWE-79 CWE-94 High WordPress Plugin XData Toolkit Arbitrary File Upload (1.9) CWE-434 CWE-434 High WordPress Plugin XEN Carousel Multiple Cross-Site Scripting Vulnerabilities (0.12.2) CVE-2014-4602 CWE-79 CWE-79 High WordPress Plugin Xerte Online 'save.php' Arbitrary File Upload (0.32) CWE-434 CWE-434 High WordPress Plugin Xhanch-My Twitter Cross-Site Request Forgery (2.7.6) CVE-2013-3253 CWE-352 CWE-352 High WordPress Plugin Xhanch-My Twitter Multiple Cross-Site Request Forgery Vulnerabilities (2.7.7) CWE-352 CWE-352 High WordPress Plugin xili-language Multiple Unspecified Vulnerabilities (2.17.0) High WordPress Plugin XML File Export Import for Stamps.com and WooCommerce Cross-Site Request Forgery (1.1.8) CWE-352 CWE-352 High WordPress Plugin XML Sitemap & Google News feeds Cross-Site Scripting (3.9) CWE-79 CWE-79 High WordPress Plugin XML Sitemap & Google News feeds Cross-Site Scripting (4.5) CWE-79 CWE-79 High WordPress Plugin Xorbin Analog Flash Clock Cross-Site Scripting (1.0) CVE-2013-4692 CWE-79 CWE-79 High WordPress Plugin Xorbin Digital Flash Clock Cross-Site Scripting (1.0) CVE-2013-4693 CWE-79 CWE-79 High WordPress Plugin XO Security Cross-Site Scripting (1.5.2) CWE-79 CWE-79 High WordPress Plugin xPinner Lite Multiple Vulnerabilities (2.2) CWE-79 CWE-352 CWE-79 CWE-352 High WordPress Plugin Xtreme Locator Dealer Locator SQL Injection (1.5) CWE-89 CWE-89 High WordPress Plugin XVE Various Embed Multiple Cross-Site Scripting Vulnerabilities (1.0.3) CWE-79 CWE-79 High WordPress Plugin Yahoo! Updates for WordPress Multiple Cross-Site Scripting Vulnerabilities (1.0) CVE-2014-4603 CWE-79 CWE-79 High WordPress Plugin Yakadanda Google+ Hangout Events Cross-Site Scripting (0.3.7) CWE-79 CWE-79 High WordPress Plugin Yasr-Yet Another Stars Rating PHP Object Injection (1.8.6) CWE-915 CWE-915 High WordPress Plugin Yasr-Yet Another Stars Rating SQL Injection (0.9.0) CWE-89 CWE-89 High WordPress Plugin Yasr-Yet Another Stars Rating Unspecified Vulnerability (0.9.1) High WordPress Plugin Yasr-Yet Another Stars Rating Unspecified Vulnerability (1.3.2) High WordPress Plugin Yasr-Yet Another Stars Rating Unspecified Vulnerability (1.7.0) High WordPress Plugin YAS Slideshow Arbitrary File Upload (3.4) CWE-434 CWE-434 High WordPress Plugin YAWPP (Yet Another WordPress Petition Plugin) SQL Injection (1.2) CVE-2014-5182 CWE-89 CWE-89 High WordPress Plugin Yes-co ORES Cross-Site Scripting (1.3.44) CWE-79 CWE-79 High WordPress Plugin Yet Another Photoblog Unspecified Vulnerability (1.10.6) High WordPress Plugin Yet Another Related Posts (YARPP) Multiple Vulnerabilities (4.2.4) CWE-79 CWE-352 CWE-79 CWE-352 High WordPress Plugin Yet Another Related Posts Plugin (YARPP) PHP Object Injection (4.4) CWE-915 CWE-915 High WordPress Plugin YITH Advanced Refund System for WooCommerce Security Bypass (1.0.10) CVE-2019-16251 CWE-264 CWE-264 High WordPress Plugin YITH Color and Label Variations for WooCommerce Security Bypass (1.8.11) CVE-2019-16251 CWE-264 CWE-264 High WordPress Plugin YITH Custom Thank You Page for Woocommerce Security Bypass (1.1.6) CVE-2019-16251 CWE-264 CWE-264 High WordPress Plugin YITH Desktop Notifications for WooCommerce Security Bypass (1.2.7) CVE-2019-16251 CWE-264 CWE-264 High WordPress Plugin YITH Maintenance Mode Cross-Site Scripting (1.1.4) CWE-79 CWE-79 High WordPress Plugin YITH PayPal Express Checkout for WooCommerce Security Bypass (1.2.5) CVE-2019-16251 CWE-264 CWE-264 High WordPress Plugin YITH Pre-Order for WooCommerce Security Bypass (1.1.9) CVE-2019-16251 CWE-264 CWE-264 High WordPress Plugin YITH Product Size Charts for WooCommerce Security Bypass (1.1.11) CVE-2019-16251 CWE-264 CWE-264 High WordPress Plugin YITH WooCommerce Added to Cart Popup Security Bypass (1.3.11) CVE-2019-16251 CWE-264 CWE-264 High WordPress Plugin YITH WooCommerce Advanced Reviews Security Bypass (1.3.9) CVE-2019-16251 CWE-264 CWE-264 High WordPress Plugin YITH WooCommerce Affiliates Security Bypass (1.6.3) CVE-2019-16251 CWE-264 CWE-264 High WordPress Plugin YITH WooCommerce Ajax Product Filter Cross-Site Scripting (3.11.0) CWE-79 CWE-79 High WordPress Plugin YITH WooCommerce Ajax Search Security Bypass (1.6.9) CVE-2019-16251 CWE-264 CWE-264 High WordPress Plugin YITH WooCommerce Ajax Search Unspecified Vulnerability (1.2.7) High WordPress Plugin YITH WooCommerce Authorize.net Payment Gateway Security Bypass (1.1.12) CVE-2019-16251 CWE-264 CWE-264 High WordPress Plugin YITH WooCommerce Badge Management Security Bypass (1.3.19) CVE-2019-16251 CWE-264 CWE-264 High WordPress Plugin YITH WooCommerce Best Sellers Security Bypass (1.1.11) CVE-2019-16251 CWE-264 CWE-264 High WordPress Plugin YITH WooCommerce Brands Add-On Security Bypass (1.3.6) CVE-2019-16251 CWE-264 CWE-264 High WordPress Plugin YITH WooCommerce Bulk Product Editing Security Bypass (1.2.13) CVE-2019-16251 CWE-264 CWE-264 High WordPress Plugin YITH WooCommerce Cart Messages Security Bypass (1.4.3) CVE-2019-16251 CWE-264 CWE-264 High WordPress Plugin YITH WooCommerce Compare PHP Object Injection (2.0.9) CWE-915 CWE-915 High WordPress Plugin YITH WooCommerce Compare Security Bypass (2.3.13) CVE-2019-16251 CWE-264 CWE-264 High WordPress Plugin YITH WooCommerce Frequently Bought Together Security Bypass (1.2.10) CVE-2019-16251 CWE-264 CWE-264 High 1...87888990 88 / 90