Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Arbitrary File Creation Authentication Bypass Bruteforce Possible Buffer Overflow CSRF CSTI Citrix Gateway Open Redirect And XSS Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilities Ldap Injection Malware Missing Update Privilege Escalation SSRF Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity WordPress Plugin Photo Gallery by 10Web-Mobile-Friendly Image Gallery Unspecified Vulnerability (1.5.55) High WordPress Plugin Photo Gallery by Ays-Responsive Image Gallery SQL Injection (1.0.0) CWE-89 CWE-89 High WordPress Plugin Photo Gallery by Ays-Responsive Image Gallery SQL Injection (4.4.3) CVE-2021-24462 CWE-89 CWE-89 High WordPress Plugin Photo Gallery by Supsystic Multiple Vulnerabilities (1.8.5) CWE-79 CWE-352 CWE-79 CWE-352 High WordPress Plugin Photoracer 'id' Parameter SQL Injection (1.0) CVE-2009-2122 CWE-89 CWE-89 High WordPress Plugin Photoracer Multiple Cross-Site Scripting and SQL Injection Vulnerabilities (1.0) CWE-79 CWE-89 CWE-79 CWE-89 High WordPress Plugin PhotoSmash Galleries 'action' Parameter Cross-Site Scripting (1.0.2) CVE-2011-5307 CWE-79 CWE-79 High WordPress Plugin PhotoSmash Galleries Arbitrary File Upload (1.0.7) CWE-434 CWE-434 High WordPress Plugin Photospace Gallery Cross-Site Scripting (2.3.5) CVE-2022-3991 CWE-79 CWE-79 High WordPress Plugin Photospace Responsive Gallery Unspecified Vulnerability (1.1.7) High WordPress Plugin Photoswipe Masonry Gallery Cross-Site Scripting (1.2.14) CVE-2022-0750 CWE-79 CWE-79 High WordPress Plugin Photoswipe Masonry Gallery Unspecified Vulnerability (1.2.17) High WordPress Plugin PhotoXhibit Multiple Cross-Site Scripting Vulnerabilities (2.1.8) CVE-2016-1000143 CVE-2016-1000144 CWE-79 CWE-79 High WordPress Plugin PHP Analytics Arbitrary File Upload (1.0.0.2) CWE-434 CWE-434 High WordPress Plugin PHP Event Calendar for WordPress Arbitrary File Upload (1.6) CWE-434 CWE-434 High WordPress Plugin PHP Everywhere Multiple Remote Code Execution Vulnerabilities (2.0.3) CVE-2022-24663 CVE-2022-24664 CVE-2022-24665 CWE-94 CWE-94 High WordPress Plugin PHP Everywhere Security Bypass (1.3) CWE-264 CWE-264 High WordPress Plugin PHPFreeChat 'url' Parameter Cross-Site Scripting (0.2.8) CWE-79 CWE-79 High WordPress Plugin PHP Speedy 'admin_container.php' Remote PHP Code Execution (0.5.2) CWE-94 CWE-94 High WordPress Plugin PI Button includes Backdoor [Only if downloaded via the vendor website] (3.3.3) CVE-2021-24867 CWE-912 CWE-912 High WordPress Plugin PICA Photo Gallery 'imgname' Parameter Information Disclosure (1.0) CWE-22 CWE-22 High WordPress Plugin PICA Photo Gallery 'picaPhotosResize.php' Arbitrary File Upload (1.0) CWE-434 CWE-434 High WordPress Plugin PICA Photo Gallery SQL Injection (1.0) CWE-89 CWE-89 High WordPress Plugin PickPlugins Product Slider for WooCommerce Cross-Site Scripting (1.13.21) CVE-2021-24300 CWE-79 CWE-79 High WordPress Plugin PickPlugins Product Slider for WooCommerce Unspecified Vulnerability (1.13.23) High WordPress Plugin PictoBrowser Cross-Site Request Forgery (0.3.1) CVE-2014-9392 CWE-352 CWE-352 High WordPress Plugin PictPress 'resize.php' Multiple Local File Include Vulnerabilities (1.0) CVE-2007-6369 CWE-22 CWE-22 High WordPress Plugin Picture Gallery-Frontend Image Uploads, AJAX Photo List Cross-Site Scripting (1.4.2) CWE-79 CWE-79 High WordPress Plugin Picturesurf Gallery 'upload.php' Arbitrary File Upload (1.2) CWE-434 CWE-434 High WordPress Plugin Pierre's Wordspew 'wordspew.php' Multiple SQL Injection Vulnerabilities (5.61) CWE-89 CWE-89 High WordPress Plugin Pike Firewall Information Disclosure (1.4) CWE-200 CWE-200 High WordPress Plugin PIKLIST-Rapid development framework Cross-Site Scripting (0.9.4.25) CWE-79 CWE-79 High WordPress Plugin Pinblocks-Gutenberg blocks with Pinterest widgets Unspecified Vulnerability (1.0.1) High WordPress Plugin Pinpoint Booking System-#1 WordPress Booking SQL Injection (1.2) CVE-2014-3210 CWE-89 CWE-89 High WordPress Plugin Pinpoint Booking System-#1 WordPress Booking SQL Injection (2.0) CWE-89 CWE-89 High WordPress Plugin Pinpoint Booking System-#1 WordPress Booking SQL Injection (2.9.9.2.8) CVE-2023-0220 CWE-89 CWE-89 High WordPress Plugin Pinterest 'Pin It' Button Cross-Site Scripting (2.0.8) CWE-79 CWE-79 High WordPress Plugin Pinterest 'Pin It' Button Multiple Unspecified Vulnerabilities (1.3.1) High WordPress Plugin Pinterest Automatic Pin Security Bypass (4.14.3) CWE-264 CWE-264 High WordPress Plugin Pinterest Badge Cross-Site Scripting (1.9.0) CWE-79 CWE-79 High WordPress Plugin Pinterest by BestWebSoft Cross-Site Scripting (1.0.4) CVE-2017-2171 CWE-79 CWE-79 High WordPress Plugin Pinterest Feed Multiple Vulnerabilities (1.1.1) CVE-2018-5653 CVE-2018-5654 CVE-2018-5655 CVE-2018-5656 CWE-79 CWE-352 CWE-79 CWE-352 High WordPress Plugin pipdig Power pack (p3) Backdoor (4.7.3) CWE-95 CWE-95 High WordPress Plugin PitchPrint Arbitrary File Upload (7.1.1) CWE-434 CWE-434 High WordPress Plugin PitchPrint Arbitrary File Upload (7.2.1) CWE-434 CWE-434 High WordPress Plugin Pixabay Images Multiple Vulnerabilities (2.3) CVE-2015-1365 CVE-2015-1366 CVE-2015-1375 CVE-2015-1376 CWE-22 CWE-79 CWE-434 CWE-592 CWE-22 CWE-79 CWE-434 CWE-592 High WordPress Plugin PixCodes Cross-Site Scripting (2.3.6) CVE-2022-4671 CWE-79 CWE-79 High WordPress Plugin PixelYourSite-Facebook Pixel (Events, WooCommerce & Easy Digital Downloads) Cross-Site Scripting (5.2.1) CVE-2018-0578 CWE-79 CWE-79 High WordPress Plugin PixelYourSite-Facebook Pixel (Events, WooCommerce & Easy Digital Downloads) Multiple Unspecified Vulnerabilities (4.0.2) High WordPress Plugin Placemarks Cross-Site Scripting (2.0.0) CWE-79 CWE-79 High WordPress Plugin Plainview Activity Monitor Remote Command Execution (20161228) CVE-2018-15877 CWE-94 CWE-94 High WordPress Plugin PlanSo Forms Cross-Site Scripting (2.6.3) CVE-2021-24516 CWE-79 CWE-79 High WordPress Plugin Platinum SEO Pack Cross-Site Scripting (1.3.7) CVE-2013-5918 CWE-79 CWE-79 High WordPress Plugin Playbuzz Cross-Site Scripting (0.8.1) CWE-79 CWE-79 High WordPress Plugin Plotly Cross-Site Scripting (1.0.2) CVE-2015-5484 CWE-79 CWE-79 High WordPress Plugin Plug-N-Edit Full Drag & Drop HTML Visual Editor with Web Page Builder WYSIWYG Cross-Site Scripting (5.2.0) CWE-79 CWE-79 High WordPress Plugin Plugin:Newsletter 'data' Parameter Information Disclosure (1.5) CVE-2012-3588 CWE-22 CWE-22 High WordPress Plugin Plugin Central Multiple Cross-Site Scripting Vulnerabilities (2.5) CWE-79 CWE-79 High WordPress Plugin Pluginception Multiple Cross-Site Scripting Vulnerabilities (1.2) CWE-79 CWE-79 High WordPress Plugin Plugmatter Optin Feature Box Multiple SQL Injection Vulnerabilities (2.0.13) CWE-89 CWE-89 High WordPress Plugin Plugmatter Pricing Table Cross-Site Scripting (1.0.32) CVE-2021-34659 CWE-79 CWE-79 High WordPress Plugin Plug your WooCommerce into the largest catalog of customized print products from Helloprint Cross-Site Scripting (1.4.6) CVE-2022-3908 CWE-79 CWE-79 High WordPress Plugin Podcast Channels Cross-Site Scripting (0.20) CVE-2014-4544 CWE-79 CWE-79 High WordPress Plugin Podcast Importer SecondLine SQL Injection (1.3.7) CVE-2022-1023 CWE-89 CWE-89 High WordPress Plugin Podcast Subscribe Buttons Cross-Site Scripting (1.4.1) CVE-2021-24743 CWE-79 CWE-79 High WordPress Plugin Podlove Podcast Publisher Cross-Site Request Forgery (3.8.3) CVE-2023-25472 CWE-352 CWE-352 High WordPress Plugin Podlove Podcast Publisher Cross-Site Scripting (3.8.2) CVE-2023-25046 CWE-79 CWE-79 High WordPress Plugin Podlove Podcast Publisher Multiple Cross-Site Scripting Vulnerabilities (2.1.0) CWE-79 CWE-79 High WordPress Plugin Podlove Podcast Publisher Multiple Vulnerabilities (2.3.15) CVE-2016-10941 CVE-2016-10942 CWE-79 CWE-89 CWE-79 CWE-89 High WordPress Plugin Podlove Podcast Publisher SQL Injection (2.5.3) CVE-2017-12949 CWE-89 CWE-89 High WordPress Plugin Podlove Podcast Publisher SQL Injection (3.5.5) CVE-2021-24666 CWE-89 CWE-89 High WordPress Plugin Podlove Subscribe button Cross-Site Scripting (1.3.6) CWE-79 CWE-79 High WordPress Plugin Podlove Subscribe button Multiple Vulnerabilities (1.3.7) CVE-2023-25479 CVE-2023-25481 CWE-79 CWE-352 CWE-79 CWE-352 High WordPress Plugin podPress Cross-Site Scripting (8.8.10.13) CVE-2013-2714 CWE-79 CWE-79 High WordPress Plugin Pods-Custom Content Types and Fields Multiple Cross-Site Scripting Vulnerabilities (2.7.28) CWE-79 CWE-79 High 1...108109110111...155 109 / 155
