Vulnerability Name CVE Severity
WordPress Plugin All in One Webmaster Cross-Site Request Forgery (8.2.3) CVE-2013-2696
WordPress Plugin All in One Webmaster Unspecified Vulnerability (11.0)
WordPress Plugin Allopass for WP Cross-Site Scripting (1.0.7)
WordPress Plugin Allow PHP in Posts and Pages 'id' Parameter SQL Injection (2.0.0.RC1)
WordPress Plugin Allow REL= and HTML in Author Bios Cross-Site Scripting (.1)
WordPress Plugin All Post Contact Form Arbitrary File Upload (1.1.4)
WordPress Plugin All Video Gallery 'vid' Parameter Multiple SQL Injection Vulnerabilities (1.1) CVE-2012-6653
WordPress Plugin All Video Gallery SQL Injection (1.2) CVE-2014-5186
WordPress Plugin AllWebMenus WordPress Menu 'abspath' Parameter Remote File Include (1.1.3) CVE-2011-3981
WordPress Plugin AllWebMenus WordPress Menu 'actions.php' Arbitrary File Upload (1.1.8) CVE-2012-1010 CVE-2012-1011
WordPress Plugin ALO EasyMail Newsletter Cross-Site Request Forgery (2.6.01)
WordPress Plugin ALO EasyMail Newsletter Cross-Site Request Forgery (2.9.2)
WordPress Plugin ALO EasyMail Newsletter Cross-Site Scripting (2.8.1)
WordPress Plugin ALO EasyMail Newsletter Multiple Cross-Site Scripting Vulnerabilities (2.4.7)
WordPress Plugin ALO EasyMail Newsletter Multiple Vulnerabilities (2.6.00)
WordPress Plugin Alojapro Widget Cross-Site Scripting (1.1.15) CVE-2021-24530
WordPress Plugin Alphabetic Pagination Security Bypass (3.0.7)
WordPress Plugin Alpine PhotoTile for Instagram Cross-Site Scripting (1.2.6.5)
WordPress Plugin Alpine PhotoTile for Instagram Cross-Site Scripting (1.2.7.4)
WordPress Plugin Alpine PhotoTile for Instagram Cross-Site Scripting (1.2.7.5)
WordPress Plugin Alpine PhotoTile for Instagram Cross-Site Scripting (1.2.7.7)
WordPress Plugin Altos Connect Widget Cross-Site Scripting (1.3.0)
WordPress Plugin AmazonFeed Cross-Site Scripting (2.1)
WordPress Plugin Amazon JS Cross-Site Scripting (0.10) CVE-2023-0075
WordPress Plugin Amazon Product in a Post SQL Injection (3.5.2)
WordPress Plugin Amazon Tools Cross-Site Scripting (1.7.2)
WordPress Plugin Amelia-Events & Appointments Booking Calendar Cross-Site Scripting (1.0.46) CVE-2022-0834
WordPress Plugin Amelia-Events & Appointments Booking Calendar Multiple Vulnerabilities (1.0.45) CVE-2022-0616 CVE-2022-0627 CVE-2022-0687
WordPress Plugin Amministrazione Trasparente Cross-Site Request Forgery (7.1)
WordPress Plugin AMP extensions Cross-Site Scripting (1.1) CVE-2021-24435
WordPress Plugin AMP for WP-Accelerated Mobile Pages Multiple Unspecified Vulnerabilities (0.9.72)
WordPress Plugin AMP for WP-Accelerated Mobile Pages Security Bypass (0.9.97.19)
WordPress Plugin AMP Toolbox Cross-Site Scripting (1.9.4)
WordPress Plugin amr shortcode any widget Cross-Site Scripting (4.0) CVE-2022-4458
WordPress Plugin amtyThumb Cross-Site Scripting (4.1.2)
WordPress Plugin amtyThumb posts Cross-Site Scripting (8.1.3) CVE-2017-17059
WordPress Plugin Analyticator Cross-Site Request Forgery (6.4.9.3) CVE-2015-4697
WordPress Plugin Analyticator Multiple Cross-Site Scripting Vulnerabilities (6.4.9.5) CVE-2015-6238
WordPress Plugin Analyticator PHP Object Injection (6.5.5) CVE-2022-3425 CVE-2022-4323
WordPress Plugin Analytics-Gtag Restricted File Upload (1.8.1)
WordPress Plugin Analytics Cross-Site Scripting (1.2.3)
WordPress Plugin Analytics Remote Code Execution (1.7)
WordPress Plugin Analytics Stats Counter Statistics PHP Object Injection (1.2.2.5)
WordPress Plugin Analytics Tracker Cross-Site Scripting (1.1.0)
WordPress Plugin Animal Captcha Cross-Site Scripting (1.6.2)
WordPress Plugin Animate It! Cross-Site Request Forgery (2.3.5) CVE-2019-17386
WordPress Plugin Animate It! Cross-Site Scripting (2.3.3) CVE-2019-17384
WordPress Plugin Animate It! Cross-Site Scripting (2.3.4) CVE-2019-17385
WordPress Plugin Annonces 'abspath' Parameter Remote File Include (1.2.0.0)
WordPress Plugin Annonces 'theme.php' Arbitrary File Upload (1.2.0.1)
WordPress Plugin AnnounceME Cross-Site Scripting (0.3.3)
WordPress Plugin Another WordPress Classifieds Arbitrary File Upload (3.3.2)
WordPress Plugin Another WordPress Classifieds Cross-Site Scripting (3.3.1) CVE-2014-9313
WordPress Plugin Another WordPress Classifieds Multiple Vulnerabilities (2.2.1) CVE-2014-10012 CVE-2014-10013
WordPress Plugin Another WordPress Classifieds Unspecified Vulnerability (1.8.9.4) CVE-2012-4874
WordPress Plugin Answer My Question Cross-Site Scripting (1.3)
WordPress Plugin Answer My Question Multiple Cross-Site Scripting Vulnerabilities (1.1)
WordPress Plugin Answer My Question SQL Injection (1.3)
WordPress Plugin Anthologize Cross-Site Scripting (0.7.7)
WordPress Plugin Anti-Malware Security and Brute-Force Firewall Cross-Site Scripting (1.2.05.20)
WordPress Plugin Anti-Malware Security and Brute-Force Firewall Cross-Site Scripting (4.15.22)
WordPress Plugin Anti-Malware Security and Brute-Force Firewall Cross-Site Scripting (4.15.42)
WordPress Plugin Anti-Malware Security and Brute-Force Firewall Cross-Site Scripting (4.15.49)
WordPress Plugin Anti-Malware Security and Brute-Force Firewall Cross-Site Scripting (4.17.29)
WordPress Plugin Anti-Malware Security and Brute-Force Firewall Local File Inclusion (4.18.63)
WordPress Plugin Anti-Malware Security and Brute-Force Firewall Multiple Cross-Site Scripting Vulnerabilities (4.15.17)
WordPress Plugin Anti-Splog Cross-Site Scripting (2.1.7)
WordPress Plugin Anti Plagiarism Cross-Site Scripting (3.60) CVE-2016-1000128
WordPress Plugin Anti Spam Protection without CAPTCHA powered by Keypic Security Bypass (2.1.2)
WordPress Plugin AnyComment Cross-Site Scripting (0.0.32) CVE-2018-21001
WordPress Plugin AnyFont Cross-Site Scripting (2.2.3) CVE-2014-4515
WordPress Plugin AnyMind Widget Cross-Site Request Forgery (1.1) CVE-2022-2435
WordPress Plugin AnyVar Cross-Site Scripting (0.1.1) CVE-2017-6103
WordPress Plugin Aoi Tori Cross-Site Scripting (1.1) CVE-2021-24435
WordPress Plugin aoringo CAT setter Cross-Site Scripting (0.1.1)