High Severity Vulnerabilities

Vulnerability Name	CVE CWE	CWE	Severity
WordPress Plugin Anti-Malware Security and Brute-Force Firewall Local File Inclusion (4.18.63)	CWE-22	CWE-22	High
WordPress Plugin Anti-Malware Security and Brute-Force Firewall Multiple Cross-Site Scripting Vulnerabilities (4.15.17)	CWE-79	CWE-79	High
WordPress Plugin Anti-Splog Cross-Site Scripting (2.1.7)	CWE-79	CWE-79	High
WordPress Plugin Anti Plagiarism Cross-Site Scripting (3.60)	CVE-2016-1000128 CWE-79	CWE-79	High
WordPress Plugin Anti Spam Protection without CAPTCHA powered by Keypic Security Bypass (2.1.2)	CWE-264	CWE-264	High
WordPress Plugin AnyComment Cross-Site Scripting (0.0.32)	CVE-2018-21001 CWE-79	CWE-79	High
WordPress Plugin AnyFont Cross-Site Scripting (2.2.3)	CVE-2014-4515 CWE-79	CWE-79	High
WordPress Plugin AnyMind Widget Cross-Site Request Forgery (1.1)	CVE-2022-2435 CWE-352	CWE-352	High
WordPress Plugin AnyVar Cross-Site Scripting (0.1.1)	CVE-2017-6103 CWE-79	CWE-79	High
WordPress Plugin Aoi Tori Cross-Site Scripting (1.1)	CVE-2021-24435 CWE-79	CWE-79	High
WordPress Plugin aoringo CAT setter Cross-Site Scripting (0.1.1)	CWE-79	CWE-79	High
WordPress Plugin aoringo LOG maker Cross-Site Scripting (0.1.3)	CWE-79	CWE-79	High
WordPress Plugin aoringo TAG upper Cross-Site Scripting (0.1.6)	CWE-79	CWE-79	High
WordPress Plugin A Page Flip Book 'pageflipbook_language' Parameter Local File Include (2.3)	CVE-2012-6652 CWE-22	CWE-22	High
WordPress Plugin AP Companion includes Backdoor [Only if downloaded via the vendor website] (1.0.6)	CVE-2021-24867 CWE-912	CWE-912	High
WordPress Plugin API Bearer Auth Cross-Site Scripting (20181229)	CVE-2019-16332 CWE-79	CWE-79	High
WordPress Plugin Apocalypse Meow Security Bypass (21.2.7)	CWE-287	CWE-287	High
WordPress Plugin ApplyOnline-Application Form Builder and Manager Arbitrary File Disclosure (1.9.92)	CWE-538	CWE-538	High
WordPress Plugin ApplyOnline-Application Form Builder and Manager Cross-Site Scripting (1.9.94)	CWE-79	CWE-79	High
WordPress Plugin Appointment Booking Calendar-BirchPress Scheduler Unspecified Vulnerability (1.13.0)			High
WordPress Plugin Appointment Booking Calendar Cross-Site Scripting (1.3.18)	CVE-2019-14791 CWE-79	CWE-79	High
WordPress Plugin Appointment Booking Calendar Cross-Site Scripting (1.3.34)	CVE-2020-9371 CWE-79	CWE-79	High
WordPress Plugin Appointment Booking Calendar CSV Injection (1.3.34)	CVE-2020-9372 CWE-20	CWE-20	High
WordPress Plugin Appointment Booking Calendar Multiple Vulnerabilities (1.1.7)	CVE-2015-7319 CVE-2015-7320 CWE-79 CWE-89	CWE-79 CWE-89	High
WordPress Plugin Appointment Booking Calendar Multiple Vulnerabilities (1.1.24)	CWE-79 CWE-89 CWE-264	CWE-79 CWE-89 CWE-264	High
WordPress Plugin Appointment Booking Calendar SQL Injection (1.1.23)	CWE-89	CWE-89	High
WordPress Plugin Appointment Calendar Multiple Cross-Site Scripting Vulnerabilities (2.7.4)	CWE-79	CWE-79	High
WordPress Plugin Appointment Hour Booking-WordPress Booking Cross-Site Scripting (1.1.44)	CVE-2019-13505 CWE-79	CWE-79	High
WordPress Plugin Appointment Hour Booking-WordPress Booking Cross-Site Scripting (1.3.15)	CVE-2021-24673 CWE-79	CWE-79	High
WordPress Plugin Appointment Hour Booking-WordPress Booking Cross-Site Scripting (1.3.16)	CVE-2021-24712 CWE-79	CWE-79	High
WordPress Plugin Appointment Scheduling for Zoom GoogleMeet and more-Wappointment Cross-Site Scripting (2.2.4)	CWE-79	CWE-79	High
WordPress Plugin Appointments Cross-Site Scripting (2.2.2.2)	CWE-79	CWE-79	High
WordPress Plugin Appointments PHP Object Injection (2.2.1)	CWE-915	CWE-915	High
WordPress Plugin Appointments Scheduler Cross-Site Scripting (1.5)	CVE-2014-4579 CWE-79	CWE-79	High
WordPress Plugin Appointments Unspecified Vulnerability (2.2.2.1)			High
WordPress Plugin AppPresser-Mobile App Framework Cross-Site Scripting (1.1.4)	CWE-79	CWE-79	High
WordPress Plugin Apptivo Business Site CRM Multiple Cross-Site Scripting Vulnerabilities (1.2.9)	CWE-79	CWE-79	High
WordPress Plugin Apptivo eCommerce Multiple Cross-Site Scripting Vulnerabilities (1.1.5)	CWE-79	CWE-79	High
WordPress Plugin April's Super Functions Pack Cross-Site Scripting (1.4.7)	CVE-2014-100026 CWE-79	CWE-79	High
WordPress Plugin Arabic Font Multiple Vulnerabilities (1.2)	CWE-79 CWE-352	CWE-79 CWE-352	High
WordPress Plugin ArcadePress 'upload.php' Arbitrary File Upload (0.65)	CWE-434	CWE-434	High
WordPress Plugin Archive Posts Sort Customize Cross-Site Scripting (1.5)	CWE-79	CWE-79	High
WordPress Plugin Archivist-Custom Archive Templates Multiple Vulnerabilities (1.7.4)	CVE-2023-25448 CVE-2023-25490 CWE-79 CWE-352	CWE-79 CWE-352	High
WordPress Plugin arcResBookingWidget Multiple Vulnerabilities (1.0)	CWE-79 CWE-352	CWE-79 CWE-352	High
WordPress Plugin Are You a Human-The Fun Spam Blocker Cross-Site Scripting (1.4.32)	CWE-79	CWE-79	High
WordPress Plugin ARForms:Wordpress Form Builder Arbitrary File Deletion (3.5.1)	CWE-73	CWE-73	High
WordPress Plugin ARForms:Wordpress Form Builder Arbitrary File Deletion (3.7.1)	CVE-2019-16902 CWE-73	CWE-73	High
WordPress Plugin ARI Adminer-WordPress Database Manager Cross-Site Request Forgery (1.1.13)	CWE-352	CWE-352	High
WordPress Plugin Arigato Autoresponder and Newsletter Cross-Site Scripting (2.3.1)	CWE-79	CWE-79	High
WordPress Plugin Arigato Autoresponder and Newsletter Cross-Site Scripting (2.7.1.1)	CVE-2023-0543 CWE-79	CWE-79	High
WordPress Plugin Arigato Autoresponder and Newsletter Multiple Unspecified Vulnerabilities (2.4.2)			High
WordPress Plugin Arigato Autoresponder and Newsletter Multiple Vulnerabilities (2.5.1.6)	CVE-2018-1002000 CVE-2018-1002001 CVE-2018-1002002 CVE-2018-1002003 CVE-2018-1002004 CVE-2018-1002005 CVE-2018-1002006 CVE-2018-1002007 CVE-2018-1002008 CVE-2018-1002009 CWE-79 CWE-89	CWE-79 CWE-89	High
WordPress Plugin Arigato Autoresponder and Newsletter Remote Code Execution (2.5.1.9)	CVE-2018-18461 CWE-94	CWE-94	High
WordPress Plugin Arlo training and event management system Cross-Site Scripting (2.1.7.1)	CWE-79	CWE-79	High
WordPress Plugin ARMember-Content Restriction & Membership Security Bypass (1.4)	CWE-264	CWE-264	High
WordPress Plugin ARPrice-Responsive Pricing Table Cross-Site Request Forgery (2.3)	CVE-2019-14679 CWE-352	CWE-352	High
WordPress Plugin ARPrice-Responsive Pricing Table Cross-Site Scripting (2.2)	CWE-79	CWE-79	High
WordPress Plugin ARS Reg Secure Cross-Site Scripting (1.1)	CWE-79	CWE-79	High
WordPress Plugin Art-Picture-Gallery Arbitrary File Upload (1.2.9)	CVE-2018-9206 CWE-434	CWE-434	High
WordPress Plugin article2pdf Multiple Vulnerabilities (0.27)	CVE-2019-1000031 CVE-2019-1010257 CWE-73 CWE-538	CWE-73 CWE-538	High
WordPress Plugin Article Directory Cross-Site Scripting (1.3)	CWE-79	CWE-79	High
WordPress Plugin Article Directory Redux Cross-Site Scripting (1.0.2)	CWE-79	CWE-79	High
WordPress Plugin Asgaros Forum Cross-Site Request Forgery (1.5.8)	CWE-352	CWE-352	High
WordPress Plugin Asgaros Forum Cross-Site Scripting (1.0.7)	CWE-79	CWE-79	High
WordPress Plugin Asgaros Forum Cross-Site Scripting (1.15.13)	CVE-2021-42365 CWE-79	CWE-79	High
WordPress Plugin Asgaros Forum Multiple SQL Injection Vulnerabilities (1.15.12)	CVE-2021-24827 CWE-89	CWE-89	High
WordPress Plugin Asgaros Forum Multiple Vulnerabilities (1.15.14)	CVE-2021-25045 CWE-89 CWE-352	CWE-89 CWE-352	High
WordPress Plugin Asgaros Forum Security Bypass (1.5.7)	CWE-264	CWE-264	High
WordPress Plugin AskApache Firefox Adsense Cross-Site Request Forgery (3.0)	CVE-2013-6992 CWE-352	CWE-352	High
WordPress Plugin Aspose Cloud eBook Generator Arbitrary File Download (1.0)	CWE-22	CWE-22	High
WordPress Plugin Aspose DOC Exporter Arbitrary File Download (1.0)	CWE-22	CWE-22	High
WordPress Plugin Aspose Importer & Exporter Arbitrary File Download (2.0)	CWE-22	CWE-22	High
WordPress Plugin Aspose PDF Exporter Arbitrary File Download (1.0)	CWE-22	CWE-22	High
WordPress Plugin Asset CleanUp:Page Speed Booster Cross-Site Scripting (1.3.6.7)	CWE-79	CWE-79	High
WordPress Plugin Asset CleanUp:Page Speed Booster Multiple Vulnerabilities (1.3.6.6)	CWE-79 CWE-89	CWE-79 CWE-89	High