Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Api Bfla Api Bola Api Broken Auth Api Broken Object Prop Auth Api Dos Api Improper Inventory Management Api Misconfiguration Api Ssrf Arbitrary File Creation Arbitrary File Read Arbitrary File Write Authentication Bypass BOLA Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities LLM Ldap Injection Llm Excessive Agency Llm Insecure Output Handling Llm Prompt Injection Llm Sensitive Information Disclosure Malware Missing Update Path Traversal Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Xss - Known Vulnerabilities Vulnerability Name CVE CWE CWE Severity WordPress Plugin Include Me Remote Code Execution (1.2.1) CVE-2021-24453 CWE-94 CWE-94 High WordPress Plugin Indeed Job Importer Cross-Site Scripting (1.0.5) CVE-2021-39355 CWE-79 CWE-79 High WordPress Plugin Indexisto WordPress Site Search Cross-Site Scripting (1.0.5) CVE-2016-1000138 CWE-79 CWE-79 High WordPress Plugin Indieweb Post Kinds Cross-Site Scripting (1.3.1) CWE-79 CWE-79 High WordPress Plugin InfiniteWP Client PHP Object Injection (1.6.0) CWE-915 CWE-915 High WordPress Plugin InfiniteWP Client Security Bypass (1.3.7) CWE-264 CWE-264 High WordPress Plugin InfiniteWP Client Security Bypass (1.9.4.4) CVE-2020-8772 CWE-287 CWE-287 High WordPress Plugin InfiniteWP Client Unspecified Vulnerability (1.3.14) High WordPress Plugin Influencer Marketing & Press Release System Cross-Site Scripting (2.2) CWE-79 CWE-79 High WordPress Plugin Infographic Maker-iList Unspecified Vulnerability (2.7.0) High WordPress Plugin Infusionsoft Gravity Forms Add-on Arbitrary File Upload (1.5.10) CVE-2014-6446 CWE-94 CWE-94 High WordPress Plugin Infusionsoft Gravity Forms Add-on Cross-Site Scripting (1.5.11) CVE-2016-1000139 CWE-79 CWE-79 High WordPress Plugin Infusionsoft Gravity Forms Add-on Multiple Cross-Site Scripting Vulnerabilities (1.5.6) CVE-2014-4536 CWE-79 CWE-79 High WordPress Plugin Injectbody Spam Injection (All) CWE-610 CWE-610 High WordPress Plugin Injectscr Spam Injection (All) CWE-610 CWE-610 High WordPress Plugin InJob-Multi features for recruitment WordPress Theme (Themeforest) Cross-Site Scripting (3.3.7) CWE-79 CWE-79 High WordPress Plugin Inline Call To Action Builder Lite-Free Call To Action Layer for WordPress includes Backdoor [Only if downloaded via the vendor website] (1.1.0) CVE-2021-24867 CWE-912 CWE-912 High WordPress Plugin Inline Gallery 'do' Parameter Cross-Site Scripting (0.3.9) CWE-79 CWE-79 High WordPress Plugin Inline Related Posts Multiple Cross-Site Scripting Vulnerabilities (3.0.4) CVE-2021-35470 CWE-79 CWE-79 High WordPress Plugin Inline Tweet Sharer-Twitter Sharing Cross-Site Scripting (2.5.3) CVE-2023-24005 CWE-79 CWE-79 High WordPress Plugin InLinks SQL Injection (1.0) CVE-2017-16955 CWE-89 CWE-89 High WordPress Plugin InPost Gallery Multiple Vulnerabilities (2.1.2) CWE-22 CWE-79 CWE-22 CWE-79 High WordPress Plugin Insert Html Snippet Cross-Site Request Forgery (1.2) CWE-352 CWE-352 High WordPress Plugin Insert or Embed Articulate Content into WordPress Arbitrary File Upload (4.3000000023) CVE-2024-0757 CWE-434 CWE-434 High WordPress Plugin Insert or Embed Articulate Content into WordPress Directory Traversal (4.2999) CVE-2019-15648 CWE-22 CWE-22 High WordPress Plugin Insert or Embed Articulate Content into WordPress Remote Code Execution (4.2997) CVE-2019-15649 CWE-94 CWE-94 High WordPress Plugin Insert or Embed Articulate Content into WordPress Security Bypass (4.2996) CWE-264 CWE-264 High WordPress Plugin Insert or Embed Articulate Content into WordPress Unspecified Vulnerability (4.299993) High WordPress Plugin Insert Pages Cross-Site Scripting (3.7.4) CVE-2022-4483 CWE-79 CWE-79 High WordPress Plugin Insert Pages Directory Traversal (3.2.3) CWE-22 CWE-22 High WordPress Plugin Insert Pages Multiple Vulnerabilities (3.6.1) CVE-2021-24850 CVE-2021-24851 CWE-79 CWE-264 CWE-79 CWE-264 High WordPress Plugin Instagram Feed Cross-Site Scripting (1.4.6.2) CWE-79 CWE-79 High WordPress Plugin Instagram Feed Cross-Site Scripting (1.5.1) CWE-79 CWE-79 High WordPress Plugin Instagram Feed Unspecified Vulnerability (1.10.2) High WordPress Plugin Instagram Feed Unspecified Vulnerability (1.11.3) High WordPress Plugin Instagram Plugin-InstaLinker Cross-Site Scripting (1.1.1) CWE-79 CWE-79 High WordPress Plugin Instant Images-One Click Unsplash Uploads Cross-Site Scripting (4.4.0) CVE-2021-24334 CWE-79 CWE-79 High WordPress Plugin InstaWP Connect-1-click WP Staging & Migration Arbitrary File Upload (0.1.0.22) CVE-2024-2667 CWE-434 CWE-434 High WordPress Plugin InstaWP Connect-1-click WP Staging & Migration Arbitrary File Upload (0.1.0.38) CVE-2024-37228 CWE-434 CWE-434 High WordPress Plugin InstaWP Connect-1-click WP Staging & Migration Security Bypass (0.1.0.8) CVE-2024-22145 CWE-862 CWE-862 High WordPress Plugin InstaWP Connect-1-click WP Staging & Migration Security Bypass (0.1.0.24) CVE-2024-32701 CWE-862 CWE-862 High WordPress Plugin InstaWP Connect-1-click WP Staging & Migration Security Bypass (0.1.0.38) CVE-2024-4898 CWE-862 CWE-862 High WordPress Plugin InstaWP Connect-1-click WP Staging & Migration Security Bypass (0.1.0.44) CVE-2024-6397 CWE-269 CWE-269 High WordPress Plugin Instinct e-Commerce Arbitrary File Upload (3.4) CVE-2008-6811 CWE-434 CWE-434 High WordPress Plugin Integration for Contact Form 7 and ActiveCampaign Cross-Site Scripting (1.0.3) CWE-79 CWE-79 High WordPress Plugin Integration for Contact Form 7 and Constant Contact Cross-Site Scripting (1.0.8) CWE-79 CWE-79 High WordPress Plugin Integration for Contact Form 7 and Infusionsoft Cross-Site Scripting (1.1.2) CWE-79 CWE-79 High WordPress Plugin Integration for Contact Form 7 and Mailchimp Cross-Site Scripting (1.0.9) CWE-79 CWE-79 High WordPress Plugin Integration for Contact Form 7 and Pipedrive Cross-Site Scripting (1.0.9) CWE-79 CWE-79 High WordPress Plugin Integration for Contact Form 7 and Salesforce Cross-Site Scripting (1.2.4) CWE-79 CWE-79 High WordPress Plugin Integration for Contact Form 7 and Zoho Cross-Site Scripting (1.1.7) CWE-79 CWE-79 High WordPress Plugin Integration for Contact Form 7 HubSpot Cross-Site Scripting (1.1.9) CWE-79 CWE-79 High WordPress Plugin Integration for Gravity Forms and Pipedrive Cross-Site Scripting (1.0.6) CWE-79 CWE-79 High WordPress Plugin Integration for HubSpot and WooCommerce Cross-Site Scripting (1.0.4) CWE-79 CWE-79 High WordPress Plugin Integration for WooCommerce and QuickBooks Cross-Site Scripting (1.1.8) CWE-79 CWE-79 High WordPress Plugin Integration of Moneybird for WooCommerce Cross-Site Scripting (2.1.1) CVE-2021-38349 CWE-79 CWE-79 High WordPress Plugin Integrator 'redirect_to' Parameter Cross-Site Scripting (1.32) CVE-2012-5913 CWE-79 CWE-79 High WordPress Plugin Interactive Geo Maps Cross-Site Scripting (1.5.8) CVE-2023-23866 CWE-79 CWE-79 High WordPress Plugin Interactive Geo Maps Cross-Site Scripting (1.5.10) CVE-2023-0731 CWE-79 CWE-79 High WordPress Plugin Interactive SVG Image Map Builder Cross-Site Scripting (1.0) CVE-2023-25704 CWE-79 CWE-79 High WordPress Plugin Internal Links Manager Multiple Cross-Site Scripting Vulnerabilities (2.1.0) CWE-79 CWE-79 High WordPress Plugin Internal Links Manager Unspecified Vulnerability (2.0.1) High WordPress Plugin Intuitive Custom Post Order Multiple Vulnerabilities (3.1.3) CVE-2022-4385 CVE-2022-4386 CWE-352 CWE-862 CWE-352 CWE-862 High WordPress Plugin Invit0r 'ofc_upload_image.php' Arbitrary File Upload (0.22) CWE-434 CWE-434 High WordPress Plugin Invite Anyone Multiple Vulnerabilities (1.3.15) CWE-79 CWE-264 CWE-352 CWE-79 CWE-264 CWE-352 High WordPress Plugin Invite Anyone PHP Object Injection (1.3.18) CWE-915 CWE-915 High WordPress Plugin Invite Anyone Security Bypass (1.3.14) CVE-2017-6955 CWE-264 CWE-264 High WordPress Plugin Invoicing with InvoiceXpress for WooCommerce-Free Cross-Site Scripting (3.0.2) CVE-2021-30134 CWE-79 CWE-79 High WordPress Plugin iPages Flipbook For WordPress Cross-Site Scripting (1.4.2) CWE-79 CWE-79 High WordPress Plugin iPanorama 360 WordPress Virtual Tour Builder Cross-Site Scripting (1.6.21) CWE-79 CWE-79 High WordPress Plugin IP Ban Cross-Site Request Forgery (1.2.3) CVE-2014-9413 CWE-352 CWE-352 High WordPress Plugin IP Blacklist Cloud Arbitrary File Disclosure (3.42) CWE-22 CWE-22 High WordPress Plugin IP Geo Block Security Bypass (2.2.2) CWE-264 CWE-264 High WordPress Plugin IP Logger 'map-details.php' SQL Injection (3.0) CWE-89 CWE-89 High WordPress Plugin IP Logger Arbitrary File Upload (3.1) CWE-434 CWE-434 High 1...103104105106...169 104 / 169
