High Severity Vulnerabilities

Vulnerability Name	CVE CWE	CWE	Severity
WordPress Plugin Organizer Multiple Cross-Site Scripting and Information Disclosure Vulnerabilities (1.2.1)	CVE-2012-6511 CVE-2012-6512 CWE-79 CWE-200	CWE-79 CWE-200	High
WordPress Plugin OSD Subscribe Cross-Site Scripting (1.2.3)	CVE-2021-38351 CWE-79	CWE-79	High
WordPress Plugin Otter-Gutenberg Blocks-Page Builder for Gutenberg Editor & FSE PHAR Deserialization (2.2.5)	CVE-2023-2288 CWE-502	CWE-502	High
WordPress Plugin Our Team Showcase Cross-Site Request Forgery (1.2)	CVE-2014-9523 CWE-352	CWE-352	High
WordPress Plugin P3 (Plugin Performance Profiler) Cross-Site Scripting (1.5.3.8)	CWE-79	CWE-79	High
WordPress Plugin Package Quantity Discount Security Bypass (1.1.2)	CWE-264	CWE-264	High
WordPress Plugin Page-list Cross-Site Scripting (5.2)	CVE-2022-4485 CWE-79	CWE-79	High
WordPress Plugin Page and Post Clone Information Disclosure (1.1)	CWE-200	CWE-200	High
WordPress Plugin Page Animations And Transitions Unspecified Vulnerability (2.1.8)			High
WordPress Plugin Page Builder, Website Builder:Simply Symphony! & Flux Live!-Full Drag And Drop Front End Vi Cross-Site Scripting (0.2.7.9)	CWE-79	CWE-79	High
WordPress Plugin Page Builder:KingComposer-Free Drag and Drop page builder by King-Theme Arbitrary File Upload (2.7.4)	CWE-434	CWE-434	High
WordPress Plugin Page Builder:KingComposer-Free Drag and Drop page builder by King-Theme Cross-Site Scripting (2.7.6)	CWE-79	CWE-79	High
WordPress Plugin Page Builder:KingComposer-Free Drag and Drop page builder by King-Theme Cross-Site Scripting (2.7.9)	CVE-2019-9910 CWE-79	CWE-79	High
WordPress Plugin Page Builder:KingComposer-Free Drag and Drop page builder by King-Theme Cross-Site Scripting (2.8.2)	CWE-79	CWE-79	High
WordPress Plugin Page Builder:KingComposer-Free Drag and Drop page builder by King-Theme Cross-Site Scripting (2.9.4)	CVE-2020-15299 CWE-79	CWE-79	High
WordPress Plugin Page Builder:KingComposer-Free Drag and Drop page builder by King-Theme Multiple Vulnerabilities (2.9.2)	CWE-73 CWE-79 CWE-94 CWE-264	CWE-73 CWE-79 CWE-94 CWE-264	High
WordPress Plugin Page Builder:Live Composer Cross-Site Scripting (1.5.22)	CVE-2022-4669 CWE-79	CWE-79	High
WordPress Plugin Page Builder:PageLayer-Drag and Drop website builder Cross-Site Request Forgery (1.1.1)	CVE-2020-35944 CVE-2020-35947 CWE-352	CWE-352	High
WordPress Plugin Page Builder:PageLayer-Drag and Drop website builder Cross-Site Scripting (1.3.4)	CWE-79	CWE-79	High
WordPress Plugin Page Builder by SiteOrigin Cross-Site Request Forgery (2.10.15)	CVE-2020-13642 CVE-2020-13643 CWE-352	CWE-352	High
WordPress Plugin Page Builder by SiteOrigin Cross-Site Scripting (2.0.4)	CWE-79	CWE-79	High
WordPress Plugin Page Flip Image Gallery 'book_id' Parameter Remote File Disclosure (0.2.2)	CVE-2008-5752 CWE-22	CWE-22	High
WordPress Plugin Page Generator Cross-Site Scripting (1.5.8)	CWE-79	CWE-79	High
WordPress Plugin Page Restrict Cross-Site Scripting (2.2.1)	CWE-79	CWE-79	High
WordPress Plugin Page Restrict Open Redirect (2.2.3)	CWE-601	CWE-601	High
WordPress Plugin Page Showcaser Boxes Cross-Site Scripting (1.1)	CWE-79	CWE-79	High
WordPress Plugin Page Visit Counter SQL Injection (4.0.9)	CWE-89	CWE-89	High
WordPress Plugin Pagination by BestWebSoft Cross-Site Scripting (1.0.6)	CVE-2017-2171 CWE-79	CWE-79	High
WordPress Plugin Paid Business Listings Blind SQL Injection (1.0.2)	CWE-89	CWE-89	High
WordPress Plugin Paid Downloads 'download_key' Parameter SQL Injection (2.01)	CWE-89	CWE-89	High
WordPress Plugin Paid Membership, Ecommerce, Registration Form, Login Form, User Profile & Restrict Content-ProfilePress Cross-Site Scripting (1.9.18)	CWE-79	CWE-79	High
WordPress Plugin Paid Membership, Ecommerce, Registration Form, Login Form, User Profile & Restrict Content-ProfilePress Cross-Site Scripting (3.1.10)	CVE-2021-24522 CWE-79	CWE-79	High
WordPress Plugin Paid Membership, Ecommerce, Registration Form, Login Form, User Profile & Restrict Content-ProfilePress Cross-Site Scripting (3.2.15)	CWE-79	CWE-79	High
WordPress Plugin Paid Membership, Ecommerce, Registration Form, Login Form, User Profile & Restrict Content-ProfilePress Cross-Site Scripting (4.5.3)	CVE-2023-23996 CWE-79	CWE-79	High
WordPress Plugin Paid Membership, Ecommerce, Registration Form, Login Form, User Profile & Restrict Content-ProfilePress Cross-Site Scripting (4.5.4)	CVE-2023-23820 CWE-79	CWE-79	High
WordPress Plugin Paid Membership, Ecommerce, Registration Form, Login Form, User Profile & Restrict Content-ProfilePress Multiple Cross-Site Scripting Vulnerabilities (3.2.2)	CVE-2021-24954 CVE-2021-24955 CWE-79	CWE-79	High
WordPress Plugin Paid Membership, Ecommerce, Registration Form, Login Form, User Profile & Restrict Content-ProfilePress Multiple Cross-Site Scripting Vulnerabilities (4.5.0)	CVE-2022-4697 CVE-2022-4698 CWE-79	CWE-79	High
WordPress Plugin Paid Membership, Ecommerce, Registration Form, Login Form, User Profile & Restrict Content-ProfilePress Multiple Vulnerabilities (3.1.3)	CVE-2021-34621 CVE-2021-34622 CVE-2021-34623 CVE-2021-34624 CWE-264 CWE-434	CWE-264 CWE-434	High
WordPress Plugin Paid Membership, Ecommerce, Registration Form, Login Form, User Profile & Restrict Content-ProfilePress PHP Object Injection (4.3.2)	CVE-2022-45083 CWE-915	CWE-915	High
WordPress Plugin Paid Memberships Pro-Restrict Member Access to Content, Courses, Communities-Free or Paid Subscriptions 'memberslist-csv.php' Information Disclosure (1.4.9)	CWE-538	CWE-538	High
WordPress Plugin Paid Memberships Pro-Restrict Member Access to Content, Courses, Communities-Free or Paid Subscriptions Cross-Site Request Forgery (2.4.2)	CWE-352	CWE-352	High
WordPress Plugin Paid Memberships Pro-Restrict Member Access to Content, Courses, Communities-Free or Paid Subscriptions Cross-Site Scripting (1.8.9.3)	CWE-79	CWE-79	High
WordPress Plugin Paid Memberships Pro-Restrict Member Access to Content, Courses, Communities-Free or Paid Subscriptions Cross-Site Scripting (2.5)	CWE-79	CWE-79	High
WordPress Plugin Paid Memberships Pro-Restrict Member Access to Content, Courses, Communities-Free or Paid Subscriptions Cross-Site Scripting (2.5.9.1)	CWE-79	CWE-79	High
WordPress Plugin Paid Memberships Pro-Restrict Member Access to Content, Courses, Communities-Free or Paid Subscriptions Cross-Site Scripting (2.6.5)	CVE-2021-24979 CWE-79	CWE-79	High
WordPress Plugin Paid Memberships Pro-Restrict Member Access to Content, Courses, Communities-Free or Paid Subscriptions Cross-Site Scripting (2.9.8)	CVE-2022-4830 CWE-79	CWE-79	High
WordPress Plugin Paid Memberships Pro-Restrict Member Access to Content, Courses, Communities-Free or Paid Subscriptions Directory Traversal (1.7.14.2)	CVE-2014-8801 CWE-22	CWE-22	High
WordPress Plugin Paid Memberships Pro-Restrict Member Access to Content, Courses, Communities-Free or Paid Subscriptions Information Disclosure (2.5.2)	CWE-200	CWE-200	High
WordPress Plugin Paid Memberships Pro-Restrict Member Access to Content, Courses, Communities-Free or Paid Subscriptions Multiple Cross-Site Scripting Vulnerabilities (1.8.4.2)	CVE-2015-5532 CWE-79	CWE-79	High
WordPress Plugin Paid Memberships Pro-Restrict Member Access to Content, Courses, Communities-Free or Paid Subscriptions Multiple Vulnerabilities (1.9.2.2)	CWE-79 CWE-352	CWE-79 CWE-352	High
WordPress Plugin Paid Memberships Pro-Restrict Member Access to Content, Courses, Communities-Free or Paid Subscriptions Open Redirect (2.0.5)	CWE-601	CWE-601	High
WordPress Plugin Paid Memberships Pro-Restrict Member Access to Content, Courses, Communities-Free or Paid Subscriptions SQL Injection (2.3.2)	CVE-2020-5579 CWE-89	CWE-89	High
WordPress Plugin Paid Memberships Pro-Restrict Member Access to Content, Courses, Communities-Free or Paid Subscriptions SQL Injection (2.5.5)	CVE-2021-20678 CWE-89	CWE-89	High
WordPress Plugin Paid Memberships Pro-Restrict Member Access to Content, Courses, Communities-Free or Paid Subscriptions SQL Injection (2.6.6)	CVE-2021-25114 CWE-89	CWE-89	High
WordPress Plugin Paid Memberships Pro-Restrict Member Access to Content, Courses, Communities-Free or Paid Subscriptions SQL Injection (2.9.7)	CVE-2023-23488 CWE-89	CWE-89	High
WordPress Plugin Parallax Scroll Cross-Site Scripting (2.0.1)	CVE-2019-7413 CWE-79	CWE-79	High
WordPress Plugin Parcel Tracker eCourier Cross-Site Request Forgery (1.0.1)	CWE-352	CWE-352	High
WordPress Plugin Pardakht Delkhah Cross-Site Scripting (2.9.2)	CVE-2022-4307 CWE-79	CWE-79	High
WordPress Plugin Parsian Bank Woocommerce Cross-Site Scripting (1.0)	CVE-2021-39309 CWE-79	CWE-79	High
WordPress Plugin Parsi Date Cross-Site Scripting (4.0.1)	CWE-79	CWE-79	High
WordPress Plugin Participants Database Cross-Site Scripting (1.7.5.9)	CVE-2017-14126 CWE-79	CWE-79	High
WordPress Plugin Participants Database Multiple Vulnerabilities (1.7.5.3)	CWE-352 CWE-434	CWE-352 CWE-434	High
WordPress Plugin Participants Database SQL Injection (1.5.4.8)	CVE-2014-3961 CWE-89	CWE-89	High
WordPress Plugin Participants Database SQL Injection (1.9.5.5)	CVE-2020-8596 CWE-89	CWE-89	High
WordPress Plugin Party Hall Booking Manager SQL Injection (1.1)	CWE-89	CWE-89	High
WordPress Plugin Passster-Password Protection Cross-Site Scripting (3.5.5.7)	CVE-2021-24837 CWE-79	CWE-79	High
WordPress Plugin Passster-Password Protection Security Bypass (3.5.5.8)	CVE-2021-24881 CWE-284	CWE-284	High
WordPress Plugin Passster-Password Protection Weak Encoding (3.5.5.5.1)	CVE-2022-3206 CWE-326	CWE-326	High
WordPress Plugin Passster Age Gate Security Bypass (4.0.6)	CWE-264	CWE-264	High
WordPress Plugin Password Protected Open Redirect (1.4)	CWE-601	CWE-601	High
WordPress Plugin Password Protected Unspecified Vulnerability (2.0)			High
WordPress Plugin Password Vault Cross-Site Scripting (1.8.2)	CWE-79	CWE-79	High
WordPress Plugin Patreon WordPress Multiple Cross-Site Scripting Vulnerabilities (1.7.1)	CVE-2021-24228 CVE-2021-24229 CWE-79	CWE-79	High
WordPress Plugin Patreon WordPress Multiple Vulnerabilities (1.6.9)	CVE-2021-24227 CVE-2021-24230 CVE-2021-24231 CWE-352 CWE-538	CWE-352 CWE-538	High
WordPress Plugin Patreon WordPress PHP Object Injection (1.2.1)	CWE-915	CWE-915	High