Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Api Bfla Api Bola Api Broken Auth Api Broken Object Prop Auth Api Dos Api Improper Inventory Management Api Misconfiguration Api Ssrf Arbitrary File Creation Arbitrary File Read Arbitrary File Write Authentication Bypass BOLA Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities LLM Ldap Injection Llm Excessive Agency Llm Insecure Output Handling Llm Prompt Injection Llm Sensitive Information Disclosure Malware Missing Update Path Traversal Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity WordPress Plugin 123ContactForm for WordPress Multiple Vulnerabilities (1.5.6) CWE-264 CWE-434 CWE-264 CWE-434 High WordPress Plugin 123devis-affiliation Cross-Site Scripting (1.0.4) CWE-79 CWE-79 High WordPress Plugin 301 Redirects-Easy Redirect Manager Cross-Site Request Forgery (2.72) CWE-352 CWE-352 High WordPress Plugin 301 Redirects-Easy Redirect Manager Security Bypass (2.40) CVE-2019-19915 CWE-264 CWE-264 High WordPress Plugin 301 Redirects-Easy Redirect Manager SQL Injection (2.50) CVE-2021-24142 CWE-89 CWE-89 High WordPress Plugin 360 Product Rotation Arbitrary File Upload (1.2.4) CWE-434 CWE-434 High WordPress Plugin 360 Product Rotation Cross-Site Scripting (1.4.7) CVE-2019-15082 CWE-79 CWE-79 High WordPress Plugin 360 Product Viewer Cross-Site Scripting (2.5.1) CWE-79 CWE-79 High WordPress Plugin 404 SEO Redirection Cross-Site Scripting (1.3) CVE-2021-24325 CWE-79 CWE-79 High WordPress Plugin 404 SEO Redirection SQL Injection (1.0) CWE-89 CWE-89 High WordPress Plugin 404 to 301-Redirect, Log and Notify 404 Errors Cloaking (2.2.9) High WordPress Plugin 404 to 301-Redirect, Log and Notify 404 Errors Cross-Site Request Forgery (3.0.8) CVE-2021-24766 CWE-352 CWE-352 High WordPress Plugin 404 to 301-Redirect, Log and Notify 404 Errors Cross-Site Scripting (2.3.0) CWE-79 CWE-79 High WordPress Plugin 404 to 301-Redirect, Log and Notify 404 Errors Cross-Site Scripting (2.3.1) CWE-79 CWE-79 High WordPress Plugin 404 to 301-Redirect, Log and Notify 404 Errors Security Bypass (3.0.1) CWE-264 CWE-264 High WordPress Plugin 404 to 301-Redirect, Log and Notify 404 Errors Security Bypass (3.0.7) CWE-264 CWE-264 High WordPress Plugin 404 to 301-Redirect, Log and Notify 404 Errors SQL Injection (2.0.2) CVE-2015-9323 CWE-89 CWE-89 High WordPress Plugin 404page-your smart custom 404 error page Cross-Site Request Forgery (10.3) CWE-352 CWE-352 High WordPress Plugin A. Gallery TimThumb Arbitrary File Upload (0.9rev378511) CVE-2011-4106 CWE-20 CWE-20 High WordPress Plugin A.M.Y. Cross-Site Scripting (1.3.3) CWE-79 CWE-79 High WordPress Plugin A/B Test 'action' Parameter Directory Traversal (1.0.6) CWE-22 CWE-22 High WordPress Plugin A2 Optimized WP Information Disclosure (2.0.10.8) CWE-200 CWE-200 High WordPress Plugin Abandoned Cart Lite for WooCommerce Cross-Site Request Forgery (5.8.5) CWE-352 CWE-352 High WordPress Plugin Abandoned Cart Lite for WooCommerce Cross-Site Scripting (5.1.3) CWE-79 CWE-79 High WordPress Plugin Abandoned Cart Lite for WooCommerce Security Bypass (5.14.2) CVE-2023-2986 CWE-326 CWE-326 High WordPress Plugin Abandoned Cart Lite for WooCommerce SQL Injection (1.8) CWE-89 CWE-89 High WordPress Plugin Abandoned Cart Lite for WooCommerce SQL Injection (5.8.1) CWE-89 CWE-89 High WordPress Plugin Abandoned Cart Pro for WooCommerce Cross-Site Scripting (7.11.1) CWE-79 CWE-79 High WordPress Plugin Abandoned Cart Recovery for WooCommerce Cross-Site Request Forgery (1.0.4) CWE-352 CWE-352 High WordPress Plugin ABASE Multiple Vulnerabilities (2.6) CWE-79 CWE-352 CWE-79 CWE-352 High WordPress Plugin ABC Test 'id' Parameter Cross-Site Scripting (0.1) CWE-79 CWE-79 High WordPress Plugin AB Google Map Travel (AB-MAP) Multiple Vulnerabilities (3.4) CVE-2015-2755 CWE-79 CWE-352 CWE-79 CWE-352 High WordPress Plugin About Author Box Cross-Site Scripting (1.0.1) CVE-2021-24745 CWE-79 CWE-79 High WordPress Plugin About Author Cross-Site Scripting (1.3.9) CWE-79 CWE-79 High WordPress Plugin About Me Page Cross-Site Scripting (4.0) CWE-79 CWE-79 High WordPress Plugin AB Press Optimizer Multiple Cross-Site Scripting Vulnerabilities (1.1.1) CWE-79 CWE-79 High WordPress Plugin Absolute Privacy 'abpr_authenticateUser()' Security Bypass (2.0.5) CWE-264 CWE-264 High WordPress Plugin Absolute Reviews Cross-Site Request Forgery (1.0.8) CWE-352 CWE-352 High WordPress Plugin Abstract Submission Local File Inclusion (0.6) CVE-2014-2383 CWE-22 CWE-22 High WordPress Plugin Academy LMS-eLearning and online course solution for WordPress Information Disclosure (1.9.25) CVE-2024-35171 CWE-200 CWE-200 High WordPress Plugin Academy LMS-eLearning and online course solution for WordPress Multiple Security Bypass Vulnerabilities (1.9.16) CVE-2024-32714 CVE-2024-33912 CWE-862 CWE-862 High WordPress Plugin Academy LMS-eLearning and online course solution for WordPress Privilege Escalation (1.9.19) CVE-2024-1505 CWE-269 CWE-269 High WordPress Plugin Accept Donations with PayPal Cross-Site Request Forgery (1.3) CVE-2021-24570 CVE-2021-24572 CWE-352 CWE-352 High WordPress Plugin Accept Donations with PayPal Cross-Site Request Forgery (1.3.3) CVE-2021-24989 CWE-352 CWE-352 High WordPress Plugin Accept Donations with PayPal Cross-Site Scripting (1.3.1) CVE-2021-24815 CWE-79 CWE-79 High WordPress Plugin Accept Signups 'email' Parameter Cross-Site Scripting (0.1) CWE-79 CWE-79 High WordPress Plugin Accept Stripe Donation-AidWP Cross-Site Request Forgery (3.1.5) CVE-2022-47422 CWE-352 CWE-352 High WordPress Plugin Accept Stripe Donation-AidWP Security Bypass (2.8) CWE-862 CWE-862 High WordPress Plugin AccessAlly Information Disclosure (3.5.6) CVE-2021-24226 CWE-200 CWE-200 High WordPress Plugin AccessAlly PHP Code Execution (3.3.1) CWE-94 CWE-94 High WordPress Plugin Access Demo Importer Arbitrary File Upload (1.0.6) CVE-2021-39317 CWE-434 CWE-434 High WordPress Plugin Access Expiration Cross-Site Scripting (1.1) CWE-79 CWE-79 High WordPress Plugin Accessibility Suite by Online ADA SQL Injection (2.0.10) CWE-89 CWE-89 High WordPress Plugin AccessPress Anonymous Post Pro Arbitrary File Upload (3.1.9) CVE-2017-16949 CWE-434 CWE-434 High WordPress Plugin AccessPress Custom CSS includes Backdoor [Only if downloaded via the vendor website] (2.0.1) CVE-2021-24867 CWE-912 CWE-912 High WordPress Plugin AccessPress Custom Post Type includes Backdoor [Only if downloaded via the vendor website] (1.0.8) CVE-2021-24867 CWE-912 CWE-912 High WordPress Plugin AccessPress iFeeds includes Backdoor [Only if downloaded via the vendor website] (4.0.3) CVE-2021-24867 CWE-912 CWE-912 High WordPress Plugin AccessPress Social Counter Cross-Site Scripting (1.3.6) CWE-79 CWE-79 High WordPress Plugin AccessPress Social Counter includes Backdoor [Only if downloaded via the vendor website] (1.9.1) CVE-2021-24867 CWE-912 CWE-912 High WordPress Plugin AccessPress Social Icons Cross-Site Scripting (1.6.6) CWE-79 CWE-79 High WordPress Plugin AccessPress Social Icons includes Backdoor [Only if downloaded via the vendor website] (1.8.2) CVE-2021-24867 CWE-912 CWE-912 High WordPress Plugin AccessPress Social Icons Multiple Cross-Site Scripting Vulnerabilities (1.5.5) CWE-79 CWE-79 High WordPress Plugin AccessPress Social Icons Multiple SQL Injection Vulnerabilities (1.6.6) CWE-89 CWE-89 High WordPress Plugin AccessPress Social Icons SQL Injection (1.8.0) CVE-2021-24143 CWE-89 CWE-89 High WordPress Plugin AccessPress Social Login Lite-Social Login WordPress includes Backdoor [Only if downloaded via the vendor website] (3.4.7) CVE-2021-24867 CWE-912 CWE-912 High WordPress Plugin AccessPress Social Share includes Backdoor [Only if downloaded via the vendor website] (4.5.5) CVE-2021-24867 CWE-912 CWE-912 High WordPress Plugin Accordion Cross-Site Scripting (2.2.8) CVE-2020-13644 CWE-79 CWE-79 High WordPress Plugin Accordion Cross-Site Scripting (2.2.29) CVE-2021-24283 CWE-79 CWE-79 High WordPress Plugin Accordion Shortcodes Cross-Site Scripting (2.4.2) CVE-2022-4781 CWE-79 CWE-79 High WordPress Plugin AceIDE Local File Inclusion (2.6.2) CVE-2021-24549 CWE-22 CWE-22 High WordPress Plugin ACF:Better Search Cross-Site Request Forgery (3.3.0) CVE-2019-14682 CWE-352 CWE-352 High WordPress Plugin ACF:Better Search SQL Injection (2.0.2) CWE-89 CWE-89 High WordPress Plugin ACF Frontend display Arbitrary File Upload (2.0.5) CVE-2015-9479 CWE-434 CWE-434 High WordPress Plugin ACF to REST API Information Disclosure (3.2.0) CVE-2020-13700 CWE-200 CWE-200 High WordPress Plugin Acobot Live Chat & Contact Form Multiple Vulnerabilities (2.0) CVE-2015-2039 CWE-79 CWE-352 CWE-79 CWE-352 High 1...64656667...169 65 / 169
