Vulnerability Name CVE Severity
WordPress Plugin WP Page Widget Cross-Site Scripting (2.7)
WordPress Plugin WP Payeezy Pay Local File Inclusion (2.97) CVE-2018-20985
WordPress Plugin WP People 'wp-people-popup.php' SQL Injection (2.0)
WordPress Plugin WP Performance Score Booster-Optimize Speed, Enable Cache & Page Preload Cross-Site Request Forgery (2.0) CVE-2021-24776
WordPress Plugin WP Photo Album 'id' Parameter Cross-Site Scripting (1.5.1)
WordPress Plugin WP Photo Album 'photo' Parameter SQL Injection (1.0) CVE-2008-0939
WordPress Plugin WP Photo Album Plus 'wppa-album' Parameter SQL Injection (4.1.1)
WordPress Plugin WP Photo Album Plus Cross-Site Request Forgery (4.8.11)
WordPress Plugin WP Photo Album Plus Cross-Site Scripting (4.9.2)
WordPress Plugin WP Photo Album Plus Cross-Site Scripting (5.0.2) CVE-2013-3254
WordPress Plugin WP Photo Album Plus Cross-Site Scripting (5.0.10)
WordPress Plugin WP Photo Album Plus Cross-Site Scripting (5.4.7)
WordPress Plugin WP Photo Album Plus Cross-Site Scripting (5.4.17) CVE-2014-8814
WordPress Plugin WP Photo Album Plus Cross-Site Scripting (6.1.2) CVE-2015-3647
WordPress Plugin WP Photo Album Plus Multiple Cross-Site Scripting Vulnerabilities (5.4.4)
WordPress Plugin WP Photo Album Plus Unspecified Vulnerability (6.5.00)
WordPress Plugin WP Photo Album Plus Unspecified Vulnerability (7.2.04)
WordPress Plugin WP PHP widget Information Disclosure (1.0.2) CVE-2013-0721
WordPress Plugin WP Pipes Unspecified Vulnerability (1.28)
WordPress Plugin WPPizza Cross-Site Scripting (2.11.8.17)
WordPress Plugin WP Planet Cross-Site Scripting (0.1) CVE-2014-4592
WordPress Plugin WP Plugin Info Card Unspecified Vulnerability (2.3.6)
WordPress Plugin WP Plugin Manager (WPPM) Cross-Site Scripting (1.6.4.b) CVE-2014-4593
WordPress Plugin WP Poll Maker-Best WordPress Poll for Voting Contest Arbitrary File Upload (3.4) CVE-2024-32514
WordPress Plugin WP Popup Banners includes Backdoor [Only if downloaded via the vendor website] (1.2.3) CVE-2021-24867
WordPress Plugin WP Popup Builder-Popup Forms, Marketing PoPuP & Newsletter Multiple Vulnerabilities (1.2.8) CVE-2022-2404 CVE-2022-2405
WordPress Plugin WP Popup Lite-Responsive popup for WordPress includes Backdoor [Only if downloaded via the vendor website] (1.0.8) CVE-2021-24867
WordPress Plugin WP Popups-WordPress Popup builder Cross-Site Scripting (2.1.4.6) CVE-2022-4716
WordPress Plugin WP Portfolio Gallery Cross-Site Scripting (1.0.0)
WordPress Plugin WP Post Page Clone SQL Injection (1.0)
WordPress Plugin WP Post Popup Directory Traversal (2.0)
WordPress Plugin WP Post Popup Directory Traversal (2.1.1)
WordPress Plugin WP Post Rating Security Bypass (2.4.6) CVE-2023-25785
WordPress Plugin WP Posts Carousel Cross-Site Scripting (1.3.6)
WordPress Plugin WP Post to PDF Cross-Site Scripting (2.3.1)
WordPress Plugin WP Post to PDF Enhanced Cross-Site Scripting (1.0.5)
WordPress Plugin WP Prayer Cross-Site Request Forgery (1.5.4)
WordPress Plugin WP Prayer Cross-Site Scripting (1.6.1) CVE-2021-24313
WordPress Plugin WP Prayer Cross-Site Scripting (1.9.6) CVE-2023-25705
WordPress Plugin WP Prayer Multiple Cross-Site Request Forgery Vulnerabilities (1.6.5)
WordPress Plugin WP Print Friendly Cross-Site Scripting (0.6)
WordPress Plugin WP Print Friendly Security Bypass (0.5.2)
WordPress Plugin WP Private Content Plus Cross-Site Request Forgery (3.1)
WordPress Plugin WP Private Content Plus Security Bypass (1.31) CVE-2019-15816
WordPress Plugin WP Private Message Insecure Direct Object Reference (1.0.5) CVE-2023-0453
WordPress Plugin WP Private Messages SQL Injection (1.0.1)
WordPress Plugin WP PRO Advertising System-All In One Ad Manager SQL Injection (4.6.18)
WordPress Plugin WP Product Review Lite Cross-Site Scripting (3.7.5)
WordPress Plugin WP Product Review Lite Unspecified Vulnerability (3.7.6)
WordPress Plugin WP Project Manager-Task, team, and project management featuring kanban board and gantt charts Cross-Site Request Forgery (2.4.0) CVE-2020-36745
WordPress Plugin WP Project Manager-Task, team, and project management featuring kanban board and gantt charts Cross-Site Request Forgery (2.4.9)
WordPress Plugin WP Project Manager-Task, team, and project management featuring kanban board and gantt charts Cross-Site Scripting (2.4.13) CVE-2021-36826
WordPress Plugin WP Project Manager-Task, team, and project management featuring kanban board and gantt charts Privilege Escalation (2.6.4) CVE-2023-3636
WordPress Plugin WP Publication Archive 'file' Parameter Directory Traversal (2.3)
WordPress Plugin WpPygments Multiple Cross-Site Scripting Vulnerabilities (0.3.2) CVE-2013-1808
WordPress Plugin WPQA-Builder forms Addon For WordPress Insecure Direct Object Reference (5.9.2) CVE-2022-3343
WordPress Plugin WP Quick Booking Manager Cross-Site Scripting (1.1)
WordPress Plugin WP Quick FrontEnd Editor Multiple Vulnerabilities (5.5)
WordPress Plugin WP Reactions Lite Cross-Site Scripting (1.3.5) CVE-2021-24723
WordPress Plugin WP Real Estate Unspecified Vulnerability (2.0)
WordPress Plugin WP Realtime Sitemap Multiple Unspecified Vulnerabilities (1.5.5)
WordPress Plugin WP Reroute Email Cross-Site Request Forgery (1.4.6) CVE-2023-27606
WordPress Plugin WP Reroute Email Cross-Site Scripting (1.4.9) CVE-2023-3168
WordPress Plugin WP Reroute Email SQL Injection (1.4.6) CVE-2023-27605
WordPress Plugin WP Reset-Most Advanced WordPress Reset Tool Cross-Site Scripting (1.86) CVE-2021-24424
WordPress Plugin WP Responsive Tabs horizontal vertical and accordion Tabs Unspecified Vulnerability (1.1.1)
WordPress Plugin WP Responsive Testimonials Slider And Widget Cross-Site Scripting (1.5) CVE-2022-4750
WordPress Plugin WP REST API (WP API) Cross-Site Request Forgery (1.1)
WordPress Plugin WP REST API (WP API) Cross-Site Scripting (1.2.2)
WordPress Plugin WP REST API (WP API) Information Disclosure (1.2)
WordPress Plugin WP REST API (WP API) Security Bypass (1.2.1)
WordPress Plugin WP Retina 2x Cross-Site Scripting (5.2.0) CVE-2018-0511
WordPress Plugin WP Review Multiple Unspecified Vulnerabilities (2.0)
WordPress Plugin WP Review Slider SQL Injection (10.9) CVE-2022-0383
WordPress Plugin WP Review Slider SQL Injection (12.1) CVE-2023-0260