Vulnerability Name CVE Severity
WordPress Plugin WordPress Social Stream Security Bypass (1.5.15)
WordPress Plugin WordPress Survey & Poll-Quiz, Survey and Poll PHP Object Injection (1.5.5)
WordPress Plugin WordPress Survey & Poll-Quiz, Survey and Poll SQL Injection (1.1.91) CVE-2015-2090
WordPress Plugin WordPress Survey & Poll-Quiz, Survey and Poll Unspecified Vulnerability (1.5.8.5)
WordPress Plugin WordPress Ultra Simple Paypal Shopping Cart Cross-Site Request Forgery (4.4) CVE-2019-5992
WordPress Plugin WordPress Ultra Simple Paypal Shopping Cart Multiple Cross-Site Scripting Vulnerabilities (4.3.9.0)
WordPress Plugin Wordpress Uninstall Cross-Site Request Forgery (1.2.1) CVE-2015-9332
WordPress Plugin WordPress Users 'uid' Parameter SQL Injection (1.3) CVE-2011-4669
WordPress Plugin wordpress vertical image slider Multiple Vulnerabilities (1.0)
WordPress Plugin WORDPRESS VIDEO GALLERY Multiple Cross-Site Request Forgery Vulnerabilities (2.8)
WordPress Plugin WORDPRESS VIDEO GALLERY Multiple Vulnerabilities (2.3.1) CVE-2014-9097 CVE-2014-9098
WordPress Plugin WORDPRESS VIDEO GALLERY Open Email Relay (2.8)
WordPress Plugin WORDPRESS VIDEO GALLERY SQL Injection (2.0) CVE-2013-3478
WordPress Plugin WORDPRESS VIDEO GALLERY SQL Injection (2.7) CVE-2015-2065
WordPress Plugin WORDPRESS VIDEO GALLERY SQL Injection (2.8)
WordPress Plugin WordPress Video Player Cross-Site Scripting (1.5.1) CVE-2014-8584
WordPress Plugin WordPress Video Player Multiple SQL Injection Vulnerabilities (1.5.16)
WordPress Plugin WordPress Video Player Multiple Vulnerabilities (1.5.4)
WordPress Plugin WordPress WP-Advanced-Search Cross-Site Request Forgery (3.3.8) CVE-2022-47447
WordPress Plugin WordPress WP-Advanced-Search Remote Code Execution (3.3.3)
WordPress Plugin WordPress WP-Advanced-Search SQL Injection (3.3.5)
WordPress Plugin WordPress WP-Advanced-Search SQL Injection (3.3.6) CVE-2020-12104
WordPress Plugin Wordspew 'id' Parameter SQL Injection (1.16) CVE-2008-0682
WordPress Plugin Work The Flow File Upload Arbitrary File Upload (2.3.1)
WordPress Plugin Work The Flow File Upload Arbitrary File Upload (2.5.2)
WordPress Plugin World of Warcraft-Armory Table Cross-Site Scripting (0.2.5)
WordPress Plugin World Travel Information Cross-Site Scripting (1.0.0)
WordPress Plugin Wow Forms-create any form with custom style SQL Injection (2.1)
WordPress Plugin Wow Forms-create any form with custom style SQL Injection (3.1.3) CVE-2021-24628
WordPress Plugin Wow Moodboard Lite Open Redirect (1.1.1.1) CVE-2015-4070
WordPress Plugin WoWPth Cross-Site Scripting (2.0)
WordPress Plugin Wow Viral Signups SQL Injection (2.1)
WordPress Plugin wp-autosuggest SQL Injection (0.24)
WordPress Plugin WP-AutoYoutube 'index.php' Script SQL Injection (0.1)
WordPress Plugin WP-Backgrounds Lite Cross-Site Request Forgery (2.3)
WordPress Plugin WP-Ban Cross-Site Scripting (1.69) CVE-2022-4260
WordPress Plugin WP-Ban Security Bypass (1.63) CVE-2014-6230
WordPress Plugin WP-BlipBot Cross-Site Scripting (3.0.9) CVE-2014-4580
WordPress Plugin WP-Board SQL Injection (1.1) CVE-2021-24404
WordPress Plugin wp-buddha-free-adwords Security Bypass (1.0.0)
WordPress Plugin WP-Business Directory (wp-ttisbdir) Multiple Cross-Site Scripting Vulnerabilities (1.0.2) CVE-2014-4599
WordPress Plugin WP-Cal 'id' Parameter SQL Injection (0.3) CVE-2008-0490
WordPress Plugin wp-championship SQL Injection (5.8) CVE-2015-5308
WordPress Plugin WP-Client Lite::Client Portals, File Sharing, Messaging & Invoicing Local File Inclusion (1.1.1) CVE-2014-2383
WordPress Plugin WP-Contact Multiple Cross-Site Scripting Vulnerabilities (1.0) CVE-2014-4583
WordPress Plugin WP-CopyProtect [Protect your blog posts] Cross-Site Scripting (3.0.0)
WordPress Plugin WP-Cron Dashboard Cross-Site Scripting (1.1.5) CVE-2013-6991
WordPress Plugin WP-Cumulus 'tagcloud.swf' Cross-Site Scripting (1.22) CVE-2009-4168
WordPress Plugin WP-Curriculo Vitae Free Arbitrary File Upload (6.3) CVE-2021-24222
WordPress Plugin Wp-D3 Cross-Site Request Forgery (2.4)
WordPress Plugin WP-DBManager 'wp-config.php' Arbitrary File Download (2.60)
WordPress Plugin WP-DBManager Arbitrary File Deletion (2.79.1)
WordPress Plugin WP-DBManager Multiple Vulnerabilities (2.71) CVE-2014-8334 CVE-2014-8335 CVE-2014-8336
WordPress Plugin WP-Download 'dl_id' Parameter SQL Injection (1.2) CVE-2008-1646
WordPress Plugin WP-DownloadManager Cross-Site Request Forgery (1.60) CVE-2013-2697
WordPress Plugin WP-DownloadManager Cross-Site Scripting (1.67)
WordPress Plugin wp-easybooking Cross-Site Scripting (1.0.3) CVE-2014-4584
WordPress Plugin WP-FaceThumb 'pagination_wp_facethumb' Parameter Cross-Site Scripting (0.1) CVE-2012-2371
WordPress Plugin WP-FaceThumb Cross-Site Scripting (1.0) CVE-2014-4585
WordPress Plugin WP-FB-AutoConnect Multiple Cross-Site Request Forgery Vulnerabilities (4.0.5)
WordPress Plugin WP-FeedStats de HTML Injection (2.3) CVE-2007-4104
WordPress Plugin WP-Filebase Download Manager 'base' Parameter SQL Injection (0.2.9)
WordPress Plugin WP-Filebase Download Manager Cross-Site Scripting (3.1.02)
WordPress Plugin WP-Filebase Download Manager Cross-Site Scripting (3.4.4)
WordPress Plugin WP-Filebase Download Manager Multiple Unspecified Vulnerabilities (0.2.9.24)
WordPress Plugin WP-Filebase Download Manager Remote Code Execution (0.3.0.03)
WordPress Plugin Wp-FileManager 'ajaxfilemanager.php' Arbitrary File Upload (1.2) CVE-2008-0222
WordPress Plugin wp-FileManager Arbitrary File Disclosure (1.3.0)
WordPress Plugin wp-football Multiple Cross-Site Scripting Vulnerabilities (1.1) CVE-2014-4586
WordPress Plugin WP-Footnotes 'admin_panel.php' Multiple Remote Vulnerabilities (2.2) CVE-2008-0691
WordPress Plugin WP-Forum 'forum_feed.php' SQL Injection (1.7.8)
WordPress Plugin WP-Forum 'sendmail.php' SQL Injection (1.7.8)
WordPress Plugin WP-Forum Multiple SQL Injection Vulnerabilities (1.7.8)
WordPress Plugin WP-Forum Multiple SQL Injection Vulnerabilities (2.3) CVE-2009-3703
WordPress Plugin WP-Forum SQL Injection (1.7.4) CVE-2008-0388