Vulnerability Name CVE Severity
WordPress Plugin Product Catalog PHP Object Injection (4.2.25)
WordPress Plugin Product Catalog Privilege Escalation (3.8.1)
WordPress Plugin Product Catalog SQL Injection (3.1.2)
WordPress Plugin Product Catalog SQL Injection (3.9.8)
WordPress Plugin Product Catalog SQL Injection (4.2.2)
WordPress Plugin Product Catalog Unspecified Vulnerability (3.1.3)
WordPress Plugin Product Catalog X Cross-Site Request Forgery (1.5.12)
WordPress Plugin Product Feed on WooCommerce for Google, Awin, Shareasale, Bing, and More SQL Injection (3.3.0.3) CVE-2021-24511
WordPress Plugin Product Filter for WooCommerce Security Bypass (8.1.1)
WordPress Plugin Product Import Export for WooCommerce Cross-Site Request Forgery (1.7.4)
WordPress Plugin Product Input Fields for WooCommerce Arbitrary File Download (1.2.6)
WordPress Plugin Product Limited Time Availability Date for woocommerce Cross-Site Scripting (1.0.1) CVE-2021-24435
WordPress Plugin Product Lister for Walmart Remote Code Execution (1.0.1) CVE-2017-9841
WordPress Plugin Product list Widget for Woocommerce Cross-Site Scripting (1.0) CVE-2022-4329
WordPress Plugin Product Loops for WooCommerce-100+ Awesome styles and options for your WooCommerce products Security Bypass (1.6.1)
WordPress Plugin Product Reviews Import Export for WooCommerce Cross-Site Request Forgery (1.3.2)
WordPress Plugin Product Reviews Import Export for WooCommerce CSV Injection (1.4.8) CVE-2022-46802
WordPress Plugin Product Size charts for Woocommerce Unspecified Vulnerability (1.0)
WordPress Plugin Product Slider and Carousel with Category for WooCommerce Cross-Site Scripting (2.7.1) CVE-2022-4791
WordPress Plugin Product Slider for WooCommerce by PickPlugins Cross-Site Scripting (1.13.41) CVE-2023-0166
WordPress Plugin Product Slider for WooCommerce Cross-Site Scripting (2.6.3) CVE-2022-4629
WordPress Plugin Product Slider For WooCommerce Lite includes Backdoor [Only if downloaded via the vendor website] (1.1.5) CVE-2021-24867
WordPress Plugin Product Slider for WooCommerce Security Bypass (2.5.6) CVE-2022-2382
WordPress Plugin Product Subtitle For WooCommerce Arbitrary File Disclosure (4.1)
WordPress Plugin Product Table by WBW Remote Code Execution (2.0.1) CVE-2024-6365
WordPress Plugin Profile Builder Pro Security Bypass (3.1.0)
WordPress Plugin Profile Builder Pro SQL Injection (3.3.2)
WordPress Plugin Profile Extra Fields by BestWebSoft Cross-Site Scripting (1.0.7) CVE-2017-2171
WordPress Plugin ProfileGrid-User Profiles, Groups and Communities Cross-Site Scripting (2.6.6)
WordPress Plugin ProfileGrid-User Profiles, Groups and Communities Cross-Site Scripting (4.7.4) CVE-2022-0233
WordPress Plugin ProfileGrid-User Profiles, Groups and Communities Privilege Escalation (5.8.9) CVE-2024-6411
WordPress Plugin ProfileGrid-User Profiles, Groups and Communities Remote Code Execution (2.8.5) CVE-2019-15873
WordPress Plugin ProfileGrid-User Profiles, Groups and Communities Unspecified Vulnerability (2.6.4)
WordPress Plugin Profiles 'bio-img.php' SQL Injection (2.0RC1)
WordPress Plugin Project2App-Turn Your WordPress Site into an Android App Cross-Site Scripting (2.0.2) CVE-2021-24435
WordPress Plugin Project Status Cross-Site Scripting (1.6) CVE-2021-24558
WordPress Plugin Project Supremacy V3 Lite Cross-Site Scripting (1.1)
WordPress Plugin PromoBar by BestWebSoft Cross-Site Scripting (1.1.0) CVE-2017-2171 CVE-2017-2171 CVE-2017-18529
WordPress Plugin Properties and Agents-Real Estate Manager Cross-Site Scripting (6.7.1)
WordPress Plugin PropertyHive Cross-Site Scripting (1.4.14) CVE-2018-6465
WordPress Plugin PropertyHive Remote Code Execution (1.4.25)
WordPress Plugin ProPlayer 'pp_playlist_id' Parameter SQL Injection (4.7.7)
WordPress Plugin ProPlayer SQL Injection (4.7.9.1)
WordPress Plugin Pro Quoter Multiple Cross-Site Scripting Vulnerabilities (1.0) CVE-2014-4545
WordPress Plugin Protected Posts Logout Button Cross-Site Request Forgery (1.4.4)
WordPress Plugin Protected Posts Logout Button Security Bypass (1.4.5) CVE-2023-25454
WordPress Plugin PS PHPCaptcha WP Denial of Service (1.1.0) CVE-2019-7412
WordPress Plugin PublishPress:Editorial Calendar, Workflow, Comments, Notifications and Statuses Cross-Site Scripting (3.5.0)
WordPress Plugin PublishPress Capabilities-User Role Access, Editor Permissions, Admin Menus Cross-Site Request Forgery (2.3.1)
WordPress Plugin PublishPress Capabilities-User Role Access, Editor Permissions, Admin Menus Security Bypass (2.3) CVE-2021-25032
WordPress Plugin PublishPress Future: Automatically Unpublish WordPress Posts Cross-Site Scripting (2.7.0)
WordPress Plugin PublishPress Future: Automatically Unpublish WordPress Posts Multiple Vulnerabilities (2.1.1)
WordPress Plugin PublishPress Future: Automatically Unpublish WordPress Posts Security Bypass (2.5.1) CVE-2021-24783
WordPress Plugin Publish to Schedule Cross-Site Request Forgery (4.4.2) CVE-2023-25994
WordPress Plugin Publish to Schedule Cross-Site Scripting (4.5.4) CVE-2023-26519
WordPress Plugin PureHTML 'alter.php' SQL Injection (1.0.0)
WordPress Plugin PushEngage Web Push Notifications Cross-Site Scripting (1.5.8)
WordPress Plugin Push Notifications for WordPress (Lite) Cross-Site Request Forgery (6.0) CVE-2021-20846
WordPress Plugin PWA for WP & AMP Security Bypass (1.7.32)
WordPress Plugin PWA for WP & AMP Unspecified Vulnerability (1.0.8)
WordPress Plugin PWAMP PHP Object Injection (1.0.0)
WordPress Plugin PWG Random Cross-Site Request Forgery (1.11) CVE-2014-9394
WordPress Plugin Pym.js Embeds Cross-Site Scripting (1.3.2)
WordPress Plugin Q and A FAQ and Knowledge Base for WordPress Multiple SQL Injection Vulnerabilities (1.0.6.2)
WordPress Plugin Qards Cross-Site Scripting (1.4.3) CVE-2017-18598
WordPress Plugin Qe SEO Handyman SQL Injection (1.0) CVE-2022-4352
WordPress Plugin Qiniu Cloudtuchuang Cross-Site Scripting (1.8)
WordPress Plugin Qiniu Uploader Cross-Site Scripting (0.1)
WordPress Plugin QIWI payment module for Woocommerce Cross-Site Scripting (0.0.9) CVE-2021-30134
WordPress Plugin Qode Instagram Widget (embeded in Bridge-Creative Multi-Purpose WordPress Theme) Open Redirect (2.0.1)
WordPress Plugin Qode Twitter Feed (embeded in Bridge-Creative Multi-Purpose WordPress Theme) Open Redirect (2.0.1)
WordPress Plugin QR Redirector Cross-Site Scripting (1.6) CVE-2021-24854
WordPress Plugin QR Redirector Security Bypass (1.5) CVE-2021-24853
WordPress Plugin qTranslate Cross-Site Request Forgery (2.5.34) CVE-2013-3251
WordPress Plugin qTranslate Cross-Site Scripting (2.5.39) CVE-2015-5535