Vulnerability Name CVE Severity
WordPress Plugin Migration, Backup, Staging-WPvivid Directory Traversal (0.9.75) CVE-2022-2863
WordPress Plugin Migration, Backup, Staging-WPvivid PHAR Deserialization (0.9.74) CVE-2022-2442
WordPress Plugin Migration, Backup, Staging-WPvivid Security Bypass (0.9.35)
WordPress Plugin Migration, Backup, Staging-WPvivid SQL Injection (0.9.52)
WordPress Plugin Mikiurl WordPress Eklentisi Cross-Site Request Forgery (2.0) CVE-2014-9337
WordPress Plugin Mimetic Books Cross-Site Scripting (0.2.13)
WordPress Plugin Mingle Forum 'edit_post_id' Parameter SQL Injection (1.0.31)
WordPress Plugin Mingle Forum Cross-Site Scripting (1.0.28)
WordPress Plugin Mingle Forum Multiple Cross-Site Request Forgery Vulnerabilities (1.0.34) CVE-2013-0736
WordPress Plugin Mingle Forum Multiple Cross-Site Scripting and SQL Injection Vulnerabilities (1.0.32.1) CVE-2012-5327 CVE-2012-5328
WordPress Plugin Mingle Forum Multiple Cross-Site Scripting Vulnerabilities (1.0.33)
WordPress Plugin Mingle Forum Multiple Vulnerabilities (1.0.33.3) CVE-2013-0734 CVE-2013-0735
WordPress Plugin Mingle Forum SQL Injection and Security Bypass Vulnerabilities (1.0.26)
WordPress Plugin MiniCart SQL Injection (1.00.1)
WordPress Plugin Mini Mail Dashboard Widget 'abspath' Parameter Remote File Include (1.36)
WordPress Plugin Mini Mail Dashboard Widget Cross-Site Scripting (1.42) CVE-2012-2583
WordPress Plugin Minimal Coming Soon & Maintenance Mode-Coming Soon Page Cross-Site Request Forgery (2.10) CVE-2020-6167 CVE-2020-6168
WordPress Plugin Minimal Coming Soon & Maintenance Mode-Coming Soon Page Open Redirect (1.85)
WordPress Plugin Minimal Coming Soon & Maintenance Mode-Coming Soon Page Security Bypass (1.87)
WordPress Plugin Minimal Coming Soon & Maintenance Mode-Coming Soon Page Security Bypass (2.15) CVE-2020-6166
WordPress Plugin MiniMax-Page Layout Builder Arbitrary File Upload (1.7.1)
WordPress Plugin MiniMax-Page Layout Builder Cross-Site Scripting (1.3.4)
WordPress Plugin MiniMax-Page Layout Builder Cross-Site Scripting (1.9.3) CVE-2016-1000141
WordPress Plugin miniOrange's Google Authenticator-WordPress Two Factor Authentication (2FA, MFA, OTP SMS and Email)-Passwordless login Cross-Site Scripting (5.4.39)
WordPress Plugin miniOrange Discord Integration Security Bypass (2.1.5) CVE-2022-3082
WordPress Plugin Missed Schedule Fix WP Failed Future Posts Multiple Unspecified Vulnerabilities (2014.1231.2015.4)
WordPress Plugin Mitsol Social Post Feed Cross-Site Scripting (1.10) CVE-2022-0209
WordPress Plugin MiwoEvents-Manage & Book Events Unspecified Vulnerability (1.2.0)
WordPress Plugin MiwoFTP-File & Folder Manager Arbitrary File Disclosure (1.0.4)
WordPress Plugin MiwoFTP-File & Folder Manager Arbitrary File Download (1.0.5)
WordPress Plugin MiwoFTP-File & Folder Manager Multiple Vulnerabilities (1.0.5)
WordPress Plugin mklasen's Photobox Cross-Site Scripting (1.0)
WordPress Plugin MM Duplicate 'index.php' SQL Injection (1.2)
WordPress Plugin MM Forms Community 'doajaxfileupload.php' Arbitrary File Upload (2.2.6) CVE-2012-3574
WordPress Plugin MM Forms Community 'edit_details.php' SQL Injection (1.2.3)
WordPress Plugin Mobile App Native (Make a mobile app-Native iPhone & Android Mobile App FREE) Arbitrary File Upload (3.0) CVE-2017-6104
WordPress Plugin Mobile Apps by Wiziapp (Native iPhone & Android mobile Apps) Multiple Unspecified Vulnerabilities (4.1.2)
WordPress Plugin Mobile blocks Security Bypass (1.0)
WordPress Plugin Mobile Booster Security Bypass (1.0)
WordPress Plugin Mobile browser color select Cross-Site Request Forgery (1.0.1) CVE-2022-1969
WordPress Plugin MobileChief-Mobile Site Builder Cross-Site Scripting (1.5.7)
WordPress Plugin Mobile Device Detection by 51Degrees Cross-Site Scripting (3.1.5.2)
WordPress Plugin Mobile Domain Multiple Vulnerabilities (1.5.2) CVE-2015-1581
WordPress Plugin Mobile Events Manager CSV Injection (1.4.7) CVE-2022-1194
WordPress Plugin MobileView by ColorLabs & Company Cross-Site Scripting (1.0.7) CVE-2013-1808
WordPress Plugin Mobiloud-Native Mobile Apps for your WordPress site (iPhone, iPad, Android) Multiple Cross-Site Scripting Vulnerabilities (2.3.7) CVE-2014-5344
WordPress Plugin MobiLoud-WordPress Mobile Apps-Convert your WordPress Website to Native Mobile Apps Remote Code Execution (4.0.1)
WordPress Plugin Modern Events Calendar Lite Cross-Site Scripting (5.22.1) CVE-2021-24687
WordPress Plugin Modern Events Calendar Lite Cross-Site Scripting (5.22.2) CVE-2021-24716
WordPress Plugin Modern Events Calendar Lite Multiple Vulnerabilities (5.16.2) CVE-2021-24146 CVE-2021-24147
WordPress Plugin Modern Events Calendar Lite Multiple Vulnerabilities (5.16.5) CVE-2021-24145 CVE-2021-24149
WordPress Plugin Modern Events Calendar Lite Security Bypass (5.1.6) CVE-2020-9459
WordPress Plugin Modern WPBakery Page Builder Addons (formerly Visual Composer)-Add-ons Arbitrary File Upload (3.0.1) CVE-2021-24284
WordPress Plugin Modula Image Gallery Cross-Site Scripting (1.3.5)
WordPress Plugin Modula Image Gallery Cross-Site Scripting (2.2.4) CVE-2020-9003
WordPress Plugin Monarch Social Sharing Security Bypass (1.2.6)
WordPress Plugin Monetize Multiple Vulnerabilities (1.03)
WordPress Plugin Mongoose Page Cross-Site Scripting (1.8.3) CVE-2022-4675
WordPress Plugin Monsters Editor for WP Super Edit Arbitrary File Upload (1.1)
WordPress Plugin MoodThingy Mood Rating Widget 'postID' Parameter Blind SQL Injection (0.8.7)
WordPress Plugin MoodThingy Mood Rating Widget SQL Injection (0.9.1)
WordPress Plugin MoolaMojo Cross-Site Scripting (0.7.4.1) CVE-2021-38358
WordPress Plugin Moova for WooCommerce Cross-Site Scripting (3.5) CVE-2021-34664
WordPress Plugin moreAds SE Cross-Site Scripting (1.4.6)
WordPress Plugin moreAds SE Open Redirect (1.4.8)
WordPress Plugin More Fields Cross-Site Request Forgery (2.1)
WordPress Plugin More from Google Cross-Site Scripting (0.0.2) CVE-2021-38319
WordPress Plugin Motors-Car Dealer & Classified Ads Multiple Vulnerabilities (1.4.0) CVE-2019-17228 CVE-2019-17229
WordPress Plugin MouseWheel Smooth Scroll Cross-Site Request Forgery (5.6) CVE-2021-24852
WordPress Plugin Movies Cross-Site Scripting (0.6) CVE-2014-4539
WordPress Plugin MP3 Audio Player for Music, Radio & Podcast by Sonaar Cross-Site Scripting (3.0.1)
WordPress Plugin MP3 Audio Player for Music, Radio & Podcast by Sonaar Multiple Cross-Site Scripting Vulnerabilities (2.4.1) CVE-2021-24624
WordPress Plugin MP3-jPlayer Cross-Site Scripting (1.8.3) CVE-2013-1942
WordPress Plugin MP3-jPlayer Information Disclosure (2.3.2) CVE-2015-1000008
WordPress Plugin MP3-jPlayer Local File Disclosure (2.3)