High Severity Vulnerabilities

Vulnerability Name	CVE CWE	CWE	Severity
WordPress Plugin Profile Builder Pro SQL Injection (3.3.2)	CWE-89	CWE-89	High
WordPress Plugin Profile Extra Fields by BestWebSoft Cross-Site Scripting (1.0.7)	CVE-2017-2171 CWE-79	CWE-79	High
WordPress Plugin ProfileGrid-User Profiles, Memberships, Groups and Communities Cross-Site Scripting (2.6.6)	CWE-79	CWE-79	High
WordPress Plugin ProfileGrid-User Profiles, Memberships, Groups and Communities Cross-Site Scripting (4.7.4)	CVE-2022-0233 CWE-79	CWE-79	High
WordPress Plugin ProfileGrid-User Profiles, Memberships, Groups and Communities Remote Code Execution (2.8.5)	CVE-2019-15873 CWE-94	CWE-94	High
WordPress Plugin ProfileGrid-User Profiles, Memberships, Groups and Communities Unspecified Vulnerability (2.6.4)			High
WordPress Plugin Profiles 'bio-img.php' SQL Injection (2.0RC1)	CWE-89	CWE-89	High
WordPress Plugin Project2App-Turn Your WordPress Site into an Android App Cross-Site Scripting (2.0.2)	CVE-2021-24435 CWE-79	CWE-79	High
WordPress Plugin Project Status Cross-Site Scripting (1.6)	CVE-2021-24558 CWE-79	CWE-79	High
WordPress Plugin Project Supremacy V3 Lite Cross-Site Scripting (1.1)	CWE-79	CWE-79	High
WordPress Plugin PromoBar by BestWebSoft Cross-Site Scripting (1.1.0)	CVE-2017-2171 CWE-79	CWE-79	High
WordPress Plugin Properties and Agents-Real Estate Manager Cross-Site Scripting (6.7.1)	CWE-79	CWE-79	High
WordPress Plugin PropertyHive Cross-Site Scripting (1.4.14)	CVE-2018-6465 CWE-79	CWE-79	High
WordPress Plugin PropertyHive Remote Code Execution (1.4.25)	CWE-94	CWE-94	High
WordPress Plugin ProPlayer 'pp_playlist_id' Parameter SQL Injection (4.7.7)	CWE-89	CWE-89	High
WordPress Plugin ProPlayer SQL Injection (4.7.9.1)	CWE-89	CWE-89	High
WordPress Plugin Pro Quoter Multiple Cross-Site Scripting Vulnerabilities (1.0)	CVE-2014-4545 CWE-79	CWE-79	High
WordPress Plugin Protected Posts Logout Button Cross-Site Request Forgery (1.4.4)	CWE-352	CWE-352	High
WordPress Plugin Protected Posts Logout Button Security Bypass (1.4.5)	CVE-2023-25454 CWE-862	CWE-862	High
WordPress Plugin PS PHPCaptcha WP Denial of Service (1.1.0)	CVE-2019-7412 CWE-400	CWE-400	High
WordPress Plugin PublishPress:Editorial Calendar, Workflow, Comments, Notifications and Statuses Cross-Site Scripting (3.5.0)	CWE-79	CWE-79	High
WordPress Plugin PublishPress Capabilities-User Role Access, Editor Permissions, Admin Menus Cross-Site Request Forgery (2.3.1)	CWE-352	CWE-352	High
WordPress Plugin PublishPress Capabilities-User Role Access, Editor Permissions, Admin Menus Security Bypass (2.3)	CVE-2021-25032 CWE-264	CWE-264	High
WordPress Plugin PublishPress Future: Automatically Unpublish WordPress Posts Cross-Site Scripting (2.7.0)	CWE-79	CWE-79	High
WordPress Plugin PublishPress Future: Automatically Unpublish WordPress Posts Multiple Vulnerabilities (2.1.1)	CWE-79 CWE-352	CWE-79 CWE-352	High
WordPress Plugin PublishPress Future: Automatically Unpublish WordPress Posts Security Bypass (2.5.1)	CVE-2021-24783 CWE-264	CWE-264	High
WordPress Plugin Publish to Schedule Cross-Site Request Forgery (4.4.2)	CVE-2023-25994 CWE-352	CWE-352	High
WordPress Plugin Publish to Schedule Cross-Site Scripting (4.5.4)	CVE-2023-26519 CWE-79	CWE-79	High
WordPress Plugin PureHTML 'alter.php' SQL Injection (1.0.0)	CWE-89	CWE-89	High
WordPress Plugin PushEngage Web Push Notifications Cross-Site Scripting (1.5.8)	CWE-79	CWE-79	High
WordPress Plugin Push Notifications for WordPress (Lite) Cross-Site Request Forgery (6.0)	CVE-2021-20846 CWE-352	CWE-352	High
WordPress Plugin PWA for WP & AMP Security Bypass (1.7.32)	CWE-264	CWE-264	High
WordPress Plugin PWA for WP & AMP Unspecified Vulnerability (1.0.8)			High
WordPress Plugin PWAMP PHP Object Injection (1.0.0)	CWE-915	CWE-915	High
WordPress Plugin PWG Random Cross-Site Request Forgery (1.11)	CVE-2014-9394 CWE-352	CWE-352	High
WordPress Plugin Pym.js Embeds Cross-Site Scripting (1.3.2)	CWE-79	CWE-79	High
WordPress Plugin Q and A FAQ and Knowledge Base for WordPress Multiple SQL Injection Vulnerabilities (1.0.6.2)	CWE-89	CWE-89	High
WordPress Plugin Qards Cross-Site Scripting (1.4.3)	CWE-79	CWE-79	High
WordPress Plugin Qe SEO Handyman SQL Injection (1.0)	CVE-2022-4352 CWE-89	CWE-89	High
WordPress Plugin Qiniu Cloudtuchuang Cross-Site Scripting (1.8)	CWE-79	CWE-79	High
WordPress Plugin Qiniu Uploader Cross-Site Scripting (0.1)	CWE-79	CWE-79	High
WordPress Plugin QIWI payment module for Woocommerce Cross-Site Scripting (0.0.9)	CVE-2021-30134 CWE-79	CWE-79	High
WordPress Plugin Qode Instagram Widget (embeded in Bridge-Creative Multi-Purpose WordPress Theme) Open Redirect (2.0.1)	CWE-601	CWE-601	High
WordPress Plugin Qode Twitter Feed (embeded in Bridge-Creative Multi-Purpose WordPress Theme) Open Redirect (2.0.1)	CWE-601	CWE-601	High
WordPress Plugin QR Redirector Cross-Site Scripting (1.6)	CVE-2021-24854 CWE-79	CWE-79	High
WordPress Plugin QR Redirector Security Bypass (1.5)	CVE-2021-24853 CWE-264	CWE-264	High
WordPress Plugin qTranslate Cross-Site Request Forgery (2.5.34)	CVE-2013-3251 CWE-352	CWE-352	High
WordPress Plugin qTranslate Cross-Site Scripting (2.5.39)	CVE-2015-5535 CWE-79	CWE-79	High
WordPress Plugin Qtranslate Slug Cross-Site Request Forgery (1.1.18)	CWE-352	CWE-352	High
WordPress Plugin Qtranslate Slug Unspecified Vulnerability (1.1.16)			High
WordPress Plugin qTranslate X Cross-Site Scripting (3.4.3)	CWE-79	CWE-79	High
WordPress Plugin qTranslate X Multiple Cross-Site Scripting Vulnerabilities (3.4.6.8)	CWE-79	CWE-79	High
WordPress Plugin Quartz SQL Injection (1.01.1)	CVE-2014-5185 CWE-89	CWE-89	High
WordPress Plugin Query Interface Security Bypass (1.1)	CWE-701	CWE-701	High
WordPress Plugin QueryWall:Plug'n Play Firewall Cross-Site Scripting (1.1.0)	CWE-79	CWE-79	High
WordPress Plugin Question and Answer Forum 'title' Variable Cross-Site Scripting (1.2.4)	CWE-79	CWE-79	High
WordPress Plugin Question Answer Multiple Cross-Site Scripting Vulnerabilities (1.2.30)	CWE-79	CWE-79	High
WordPress Plugin Quick Buy For Woocommerce Arbitrary File Disclosure (2.0)	CWE-538	CWE-538	High
WordPress Plugin Quick Cache (Speed Without Compromise) Unspecified Vulnerability (140725)			High
WordPress Plugin Quick Chat Cross-Site Scripting (4.14)	CWE-79	CWE-79	High
WordPress Plugin Quick Contact Form Cross-Site Scripting (6.0)	CWE-79	CWE-79	High
WordPress Plugin Quick Contact Form Multiple Vulnerabilities (8.0.3.1)	CVE-2022-47608 CVE-2023-23885 CVE-2023-25035 CWE-79 CWE-352	CWE-79 CWE-352	High
WordPress Plugin Quick Contact Form Security Bypass (8.0.1)	CWE-862	CWE-862	High
WordPress Plugin Quick Event Manager Cross-Site Scripting (9.6.4)	CVE-2022-46863 CWE-79	CWE-79	High
WordPress Plugin Quick Event Manager Multiple Vulnerabilities (9.7.4)	CVE-2023-23491 CVE-2023-23974 CVE-2023-23975 CVE-2023-23979 CWE-79 CWE-352 CWE-862	CWE-79 CWE-352 CWE-862	High
WordPress Plugin Quick Event Manager Security Bypass (9.2.16)	CWE-862	CWE-862	High
WordPress Plugin Quick Featured Images Cross-Site Scripting (12.3.5)	CWE-79	CWE-79	High
WordPress Plugin Quick Page/Post Redirect Cross-Site Request Forgery (5.0.4)	CVE-2014-2598 CWE-352	CWE-352	High
WordPress Plugin Quick Page/Post Redirect Open Redirect (5.1.5)	CWE-601	CWE-601	High
WordPress Plugin Quick Page/Post Redirect Security Bypass (5.1.9)	CWE-264	CWE-264	High
WordPress Plugin Quick Paypal Payments Cross-Site Scripting (3.0)	CWE-79	CWE-79	High
WordPress Plugin Quick Paypal Payments Multiple Vulnerabilities (5.7.25)	CVE-2023-23889 CVE-2023-25702 CVE-2023-25714 CWE-79 CWE-352	CWE-79 CWE-352	High
WordPress Plugin Quick Paypal Payments Security Bypass (5.7.21)	CWE-862	CWE-862	High
WordPress Plugin Quick Post Widget Multiple Cross-Site Scripting and Cross-Site Request Forgery Vulnerabilities (1.9.1)	CVE-2012-4226 CWE-79 CWE-352	CWE-79 CWE-352	High
WordPress Plugin Quick Restaurant Menu Multiple Vulnerabilities (2.0.2)	CVE-2023-0550 CVE-2023-0553 CVE-2023-0554 CVE-2023-0555 CWE-79 CWE-352 CWE-639	CWE-79 CWE-352 CWE-639	High