Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Api Bfla Api Bola Api Broken Auth Api Broken Object Prop Auth Api Dos Api Improper Inventory Management Api Misconfiguration Api Ssrf Arbitrary File Creation Arbitrary File Read Arbitrary File Write Authentication Bypass BOLA Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities LLM Ldap Injection Llm Excessive Agency Llm Insecure Output Handling Llm Prompt Injection Llm Sensitive Information Disclosure Malware Missing Update Path Traversal Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity WordPress Plugin Web Application Firewall-website security Unspecified Vulnerability (2.1.2) High WordPress Plugin WebARX Cross-Site Scripting (1.3.0) CVE-2019-17213 CWE-79 CWE-79 High WordPress Plugin Web Directory Free SQL Injection (1.6.9) CVE-2024-3552 CWE-89 CWE-89 High WordPress Plugin WebEngage Feedback, Survey and Notification Cross-Site Scripting (2.0.0) CVE-2014-4574 CWE-79 CWE-79 High WordPress Plugin Web Forms for Vtiger wordpress Lead capture and Contacts Sync Unspecified Vulnerability (1.0.0) High WordPress Plugin WebHotelier for WordPress Cross-Site Scripting (1.5) CVE-2021-24435 CWE-79 CWE-79 High WordPress Plugin Web Invoice-Invoicing and billing for WordPress Multiple SQL Injection Vulnerabilities (2.1.3) CVE-2022-4371 CVE-2022-4372 CWE-89 CWE-89 High WordPress Plugin WebLibrarian Cross-Site Scripting (3.4.8.6) CWE-79 CWE-79 High WordPress Plugin WebLibrarian Multiple Unspecified Vulnerabilities (2.6.3.1) High WordPress Plugin WebLibrarian SQL Injection (3.5.4) CVE-2019-1010034 CWE-89 CWE-89 High WordPress Plugin Webmention Cross-Site Scripting (4.0.8) CWE-79 CWE-79 High WordPress Plugin WebP Converter for Media Cross-Site Request Forgery (1.0.2) CVE-2019-15834 CWE-352 CWE-352 High WordPress Plugin WebP Express Arbitrary File Disclosure (0.14.10) CVE-2019-15330 CWE-538 CWE-538 High WordPress Plugin WebP Express Cross-Site Scripting (0.14.4) CVE-2019-15837 CWE-79 CWE-79 High WordPress Plugin WebP Express Unspecified Vulnerability (0.14.21) High WordPress Plugin Websimon Tables Cross-Site Scripting (1.3.4) CWE-79 CWE-79 High WordPress Plugin Website FAQ 'website-faq-widget.php' SQL Injection (1.0) CWE-89 CWE-89 High WordPress Plugin Web Stories Server-Side Request Forgery (1.24.0) CVE-2022-3708 CWE-918 CWE-918 High WordPress Plugin Web to Print Online Designer Security Bypass (2.3.0) CWE-264 CWE-264 High WordPress Plugin Web Tripwire Arbitrary File Upload (0.1.1) CWE-434 CWE-434 High WordPress Plugin Wechat Broadcast Local/Remote File Inclusion (1.2.0) CVE-2018-16283 CWE-98 CWE-98 High WordPress Plugin Wechat Reward Cross-Site Request Forgery (1.7) CVE-2021-24615 CWE-352 CWE-352 High WordPress Plugin Weekly Schedule Cross-Site Scripting (3.4.2) CVE-2021-24309 CWE-79 CWE-79 High WordPress Plugin weForms-Easy Drag & Drop Contact Form Builder For WordPress CSV Injection (1.4.7) CVE-2020-22276 CWE-20 CWE-20 High WordPress Plugin weForms-Easy Drag & Drop Contact Form Builder For WordPress CSV Injection (1.6.3) CWE-20 CWE-20 High WordPress Plugin weForms-Easy Drag & Drop Contact Form Builder For WordPress Supply Chain Attack [Polyfill.io] (1.6.23) CWE-1372 CWE-1372 High WordPress Plugin weForms-Easy Drag & Drop Contact Form Builder For WordPress Unspecified Vulnerability (1.5.3) High WordPress Plugin Welcart e-Commerce Cross-Site Scripting (2.2.3) CVE-2021-20734 CWE-79 CWE-79 High WordPress Plugin Welcart e-Commerce Cross-Site Scripting and Cross-Site Request Forgery Vulnerabilities (1.2.1) CVE-2012-5177 CVE-2012-5178 CWE-79 CWE-352 CWE-79 CWE-352 High WordPress Plugin Welcart e-Commerce Information Disclosure (2.2.7) CWE-200 CWE-200 High WordPress Plugin Welcart e-Commerce Multiple SQL Injection Vulnerabilities (1.5.2) CVE-2015-7791 CWE-89 CWE-89 High WordPress Plugin Welcart e-Commerce Multiple Vulnerabilities (1.3.12) CVE-2014-10016 CVE-2014-10017 CWE-79 CWE-89 CWE-79 CWE-89 High WordPress Plugin Welcart e-Commerce Multiple Vulnerabilities (1.4.17) CWE-79 CWE-89 CWE-79 CWE-89 High WordPress Plugin Welcart e-Commerce Multiple Vulnerabilities (1.8.2) CVE-2016-4825 CVE-2016-4826 CVE-2016-4827 CVE-2016-4828 CWE-20 CWE-79 CWE-287 CWE-20 CWE-79 CWE-287 High WordPress Plugin Welcart e-Commerce PHP Object Injection (1.9.3) CWE-915 CWE-915 High WordPress Plugin Welcart e-Commerce PHP Object Injection (1.9.9) CWE-915 CWE-915 High WordPress Plugin Welcart e-Commerce PHP Object Injection (1.9.35) CVE-2020-28339 CWE-915 CWE-915 High WordPress Plugin Welcart e-Commerce SQL Injection (2.0.0) CWE-89 CWE-89 High WordPress Plugin Welcome Announcement Multiple Cross-Site Scripting Vulnerabilities (1.0.5) CWE-79 CWE-79 High WordPress Plugin We�re Open! Cross-Site Scripting (1.41) CVE-2022-3139 CWE-79 CWE-79 High WordPress Plugin WF Cookie Consent Cross-Site Scripting (1.1.3) CVE-2018-10371 CWE-79 CWE-79 High WordPress Plugin White Label CMS Cross-Site Request Forgery (1.5) CVE-2012-5387 CVE-2012-5388 CWE-352 CWE-352 High WordPress Plugin White Label CMS Cross-Site Scripting (1.5.2) CWE-79 CWE-79 High WordPress Plugin White Label CMS Cross-Site Scripting (2.2.8) CVE-2022-0422 CWE-79 CWE-79 High WordPress Plugin White Label CMS PHP Object Injection (2.4) CVE-2022-4302 CWE-915 CWE-915 High WordPress Plugin WHIZZ Cross-Site Request Forgery (1.1) CVE-2017-8099 CWE-352 CWE-352 High WordPress Plugin WHIZZ Cross-Site Scripting (1.0.7) CVE-2016-1000154 CWE-79 CWE-79 High WordPress Plugin WHMCS Bridge Cross-Site Scripting (6.2) CVE-2021-4074 CWE-79 CWE-79 High WordPress Plugin WHOIS 'domain' Parameter Cross-Site Scripting (1.4.2.2) CVE-2011-5194 CWE-79 CWE-79 High WordPress Plugin Wholesale Market Arbitrary File Download (2.2.0) CVE-2022-4298 CWE-552 CWE-552 High WordPress Plugin Wholesale Market for WooCommerce Arbitrary File Download (1.0.6) CVE-2022-4106 CWE-552 CWE-552 High WordPress Plugin Wholesale Market for WooCommerce Arbitrary File Download (1.0.7) CVE-2022-4108 CWE-552 CWE-552 High WordPress Plugin Wholesale Market for WooCommerce Directory Traversal (1.0.8) CVE-2022-4109 CWE-22 CWE-22 High WordPress Plugin WH Testimonials Cross-Site Scripting (3.0.0) CVE-2023-1372 CWE-79 CWE-79 High WordPress Plugin WhyDoWork AdSense Cross-Site Scripting and Cross-Site Request Forgery Vulnerabilities (1.2) CVE-2014-9099 CVE-2014-9100 CWE-79 CWE-352 CWE-79 CWE-352 High WordPress Plugin Widget Control Powered By Everyblock Cross-Site Scripting (1.0.1) CWE-79 CWE-79 High WordPress Plugin Widget for Facebook Page Feeds Cross-Site Scripting (5.0) CWE-79 CWE-79 High WordPress Plugin Widget Logic Cross-Site Request Forgery (5.9.0) CVE-2019-12826 CWE-352 CWE-352 High WordPress Plugin Widget Logic Cross-Site Request Forgery (5.10.2) CWE-352 CWE-352 High WordPress Plugin Widget Settings Importer/Exporter Cross-Site Scripting (1.5.3) CWE-79 CWE-79 High WordPress Plugin Widgets for SiteOrigin Security Bypass (1.4.2) CWE-264 CWE-264 High WordPress Plugin Widgets for SiteOrigin Unspecified Vulnerability (1.4.4) High WordPress Plugin Widgets for WooCommerce Products on Elementor Cross-Site Scripting (1.0.7) CVE-2022-4661 CWE-79 CWE-79 High WordPress Plugin Widgets for WooCommerce Products on Elementor Security Bypass (1.0.5) CWE-862 CWE-862 High WordPress Plugin Widget Shortcode Cross-Site Scripting (0.3.5) CVE-2022-4473 CWE-79 CWE-79 High WordPress Plugin Widgets on Pages Cross-Site Scripting (1.6.0) CVE-2022-4488 CWE-79 CWE-79 High WordPress Plugin WikiPop Cross-Site Scripting (2.0) CVE-2014-4575 CWE-79 CWE-79 High WordPress Plugin Windows Desktop and iPhone Photo Uploader Arbitrary File Upload (1.8) CWE-434 CWE-434 High WordPress Plugin Windsor Strava Athlete Unspecified Vulnerability (1.3.5) High WordPress Plugin Wise Agent Lead Capture Forms Cross-Site Scripting (1.0) CVE-2021-38335 CWE-79 CWE-79 High WordPress Plugin Wise Chat CSV Injection (2.8.3) CWE-20 CWE-20 High WordPress Plugin Wise Chat Open Redirect (2.6.3) CVE-2019-6780 CWE-601 CWE-601 High WordPress Plugin WishList Member X Remote Code Execution (3.25.1) CVE-2024-37109 CWE-94 CWE-94 High WordPress Plugin WishList Member X SQL Injection (3.25.1) CVE-2024-37112 CWE-89 CWE-89 High WordPress Plugin WL Katalogsok PHP Object Injection (3.5.4) CWE-915 CWE-915 High 1...146147148149...169 147 / 169
