Vulnerability Name CVE Severity
WordPress Plugin Processing Embed 'pluginurl' Parameter Cross-Site Scripting (0.5) CVE-2010-4747
WordPress Plugin Process Steps Template Designer Cross-Site Request Forgery (1.2.1)
WordPress Plugin Product Addons & Fields for WooCommerce Arbitrary File Upload (1.1)
WordPress Plugin Product Addons & Fields for WooCommerce Cross-Site Scripting (18.3) CVE-2019-14948
WordPress Plugin Product Addons & Fields for WooCommerce Cross-Site Scripting (32.0.5) CVE-2023-1839
WordPress Plugin Product Addons & Fields for WooCommerce Cross-Site Scripting (32.0.6) CVE-2023-2256
WordPress Plugin Product Addons & Fields for WooCommerce Same Origin Method Execution (SOME) (14.0) CVE-2016-4566
WordPress Plugin Product Addons & Fields for WooCommerce Security Bypass (23.9) CVE-2021-25018
WordPress Plugin Product Addons & Fields for WooCommerce Unspecified Vulnerability (13.7)
WordPress Plugin Product Catalog 8 SQL Injection (1.2.0)
WordPress Plugin Product Catalog Arbitrary File Upload (3.1.1)
WordPress Plugin Product Catalog Arbitrary File Upload (3.8.6)
WordPress Plugin Product Catalog Cross-Site Scripting (4.2.8)
WordPress Plugin Product Catalog for WordPress Unspecified Vulnerability (1.4.5)
WordPress Plugin Product Catalog Multiple SQL Injection Vulnerabilities (2.1)
WordPress Plugin Product Catalog Multiple Vulnerabilities (3.1.2)
WordPress Plugin Product Catalog Multiple Vulnerabilities (4.2.11) CVE-2017-12199 CVE-2017-12200
WordPress Plugin Product Catalog PHP Object Injection (4.2.25)
WordPress Plugin Product Catalog Privilege Escalation (3.8.1)
WordPress Plugin Product Catalog SQL Injection (3.1.2)
WordPress Plugin Product Catalog SQL Injection (3.9.8)
WordPress Plugin Product Catalog SQL Injection (4.2.2)
WordPress Plugin Product Catalog Unspecified Vulnerability (3.1.3)
WordPress Plugin Product Catalog X Cross-Site Request Forgery (1.5.12)
WordPress Plugin Product Feed on WooCommerce for Google, Awin, Shareasale, Bing, and More SQL Injection (3.3.0.3) CVE-2021-24511
WordPress Plugin Product Filter for WooCommerce Security Bypass (8.1.1)
WordPress Plugin Product Import Export for WooCommerce Cross-Site Request Forgery (1.7.4)
WordPress Plugin Product Input Fields for WooCommerce Arbitrary File Download (1.2.6)
WordPress Plugin Product Limited Time Availability Date for woocommerce Cross-Site Scripting (1.0.1) CVE-2021-24435
WordPress Plugin Product Lister for Walmart Remote Code Execution (1.0.1) CVE-2017-9841
WordPress Plugin Product list Widget for Woocommerce Cross-Site Scripting (1.0) CVE-2022-4329
WordPress Plugin Product Loops for WooCommerce-100+ Awesome styles and options for your WooCommerce products Security Bypass (1.6.1)
WordPress Plugin Product Reviews Import Export for WooCommerce Cross-Site Request Forgery (1.3.2)
WordPress Plugin Product Reviews Import Export for WooCommerce CSV Injection (1.4.8) CVE-2022-46802
WordPress Plugin Product Size charts for Woocommerce Unspecified Vulnerability (1.0)
WordPress Plugin Product Slider and Carousel with Category for WooCommerce Cross-Site Scripting (2.7.1) CVE-2022-4791
WordPress Plugin Product Slider for WooCommerce by PickPlugins Cross-Site Scripting (1.13.41) CVE-2023-0166
WordPress Plugin Product Slider for WooCommerce Cross-Site Scripting (2.6.3) CVE-2022-4629
WordPress Plugin Product Slider For WooCommerce Lite includes Backdoor [Only if downloaded via the vendor website] (1.1.5) CVE-2021-24867
WordPress Plugin Product Slider for WooCommerce Security Bypass (2.5.6) CVE-2022-2382
WordPress Plugin Product Subtitle For WooCommerce Arbitrary File Disclosure (4.1)
WordPress Plugin Product Table by WBW Remote Code Execution (2.0.1) CVE-2024-6365
WordPress Plugin Profile Builder Pro Security Bypass (3.1.0)
WordPress Plugin Profile Builder Pro SQL Injection (3.3.2)
WordPress Plugin Profile Extra Fields by BestWebSoft Cross-Site Scripting (1.0.7) CVE-2017-2171
WordPress Plugin ProfileGrid-User Profiles, Groups and Communities Cross-Site Scripting (2.6.6)
WordPress Plugin ProfileGrid-User Profiles, Groups and Communities Cross-Site Scripting (4.7.4) CVE-2022-0233
WordPress Plugin ProfileGrid-User Profiles, Groups and Communities Privilege Escalation (5.8.9) CVE-2024-6411
WordPress Plugin ProfileGrid-User Profiles, Groups and Communities Remote Code Execution (2.8.5) CVE-2019-15873
WordPress Plugin ProfileGrid-User Profiles, Groups and Communities Unspecified Vulnerability (2.6.4)
WordPress Plugin Profiles 'bio-img.php' SQL Injection (2.0RC1)
WordPress Plugin Project2App-Turn Your WordPress Site into an Android App Cross-Site Scripting (2.0.2) CVE-2021-24435
WordPress Plugin Project Status Cross-Site Scripting (1.6) CVE-2021-24558
WordPress Plugin Project Supremacy V3 Lite Cross-Site Scripting (1.1)
WordPress Plugin PromoBar by BestWebSoft Cross-Site Scripting (1.1.0) CVE-2017-2171 CVE-2017-2171 CVE-2017-18529
WordPress Plugin Properties and Agents-Real Estate Manager Cross-Site Scripting (6.7.1)
WordPress Plugin PropertyHive Cross-Site Scripting (1.4.14) CVE-2018-6465
WordPress Plugin PropertyHive Remote Code Execution (1.4.25)
WordPress Plugin ProPlayer 'pp_playlist_id' Parameter SQL Injection (4.7.7)
WordPress Plugin ProPlayer SQL Injection (4.7.9.1)
WordPress Plugin Pro Quoter Multiple Cross-Site Scripting Vulnerabilities (1.0) CVE-2014-4545
WordPress Plugin Protected Posts Logout Button Cross-Site Request Forgery (1.4.4)
WordPress Plugin Protected Posts Logout Button Security Bypass (1.4.5) CVE-2023-25454
WordPress Plugin PS PHPCaptcha WP Denial of Service (1.1.0) CVE-2019-7412
WordPress Plugin PublishPress:Editorial Calendar, Workflow, Comments, Notifications and Statuses Cross-Site Scripting (3.5.0)
WordPress Plugin PublishPress Capabilities-User Role Access, Editor Permissions, Admin Menus Cross-Site Request Forgery (2.3.1)
WordPress Plugin PublishPress Capabilities-User Role Access, Editor Permissions, Admin Menus Security Bypass (2.3) CVE-2021-25032
WordPress Plugin PublishPress Future: Automatically Unpublish WordPress Posts Cross-Site Scripting (2.7.0)
WordPress Plugin PublishPress Future: Automatically Unpublish WordPress Posts Multiple Vulnerabilities (2.1.1)
WordPress Plugin PublishPress Future: Automatically Unpublish WordPress Posts Security Bypass (2.5.1) CVE-2021-24783
WordPress Plugin Publish to Schedule Cross-Site Request Forgery (4.4.2) CVE-2023-25994
WordPress Plugin Publish to Schedule Cross-Site Scripting (4.5.4) CVE-2023-26519
WordPress Plugin PureHTML 'alter.php' SQL Injection (1.0.0)
WordPress Plugin PushEngage Web Push Notifications Cross-Site Scripting (1.5.8)
WordPress Plugin Push Notifications for WordPress (Lite) Cross-Site Request Forgery (6.0) CVE-2021-20846