Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Api Bfla Api Bola Api Broken Auth Api Broken Object Prop Auth Api Dos Api Improper Inventory Management Api Misconfiguration Api Ssrf Arbitrary File Creation Arbitrary File Read Arbitrary File Write Authentication Bypass BOLA Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities LLM Ldap Injection Llm Excessive Agency Llm Insecure Output Handling Llm Prompt Injection Llm Sensitive Information Disclosure Malware Missing Update Path Traversal Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Xss - Known Vulnerabilities Vulnerability Name CVE CWE CWE Severity WordPress Plugin bbPress Cross-Site Scripting (2.5.8) CWE-79 CWE-79 High WordPress Plugin bbPress Cross-Site Scripting (2.5.9) CWE-79 CWE-79 High WordPress Plugin bbPress Like Button SQL Injection (1.5) CWE-89 CWE-89 High WordPress Plugin bbPress Login Register Links On Forum Topic Pages Cross-Site Request Forgery (2.7.5) CWE-352 CWE-352 High WordPress Plugin bbPress Members Only Cross-Site Request Forgery (1.2.1) CWE-352 CWE-352 High WordPress Plugin bbPress Move Topics PHP Object Injection (1.1.4) CVE-2018-21005 CWE-915 CWE-915 High WordPress Plugin bbPress Multiple Vulnerabilities (2.6.4) CVE-2020-13487 CVE-2020-13693 CWE-79 CWE-264 CWE-79 CWE-264 High WordPress Plugin bbPress Security Bypass (2.6.3) CWE-264 CWE-264 High WordPress Plugin bbPress Social Network Multiple Cross-Site Scripting Vulnerabilities (9.2) CWE-79 CWE-79 High WordPress Plugin bbPress SQL Injection (2.5.14) CWE-89 CWE-89 High WordPress Plugin BBS e-Franchise SQL Injection (1.1.1) CWE-89 CWE-89 High WordPress Plugin BCS BatchLine Book Importer Security Bypass (1.5.7) CWE-264 CWE-264 High WordPress Plugin Beautiful FAQ for WordPress-Everest FAQ Manager Lite includes Backdoor [Only if downloaded via the vendor website] (1.0.8) CVE-2021-24867 CWE-912 CWE-912 High WordPress Plugin Beautiful Stat Counter for WordPress-Everest Counter Lite includes Backdoor [Only if downloaded via the vendor website] (2.0.7) CVE-2021-24867 CWE-912 CWE-912 High WordPress Plugin Beaver Builder-WordPress Page Builder Multiple Cross-Site Scripting Vulnerabilities (2.5.5.2) CVE-2022-2517 CVE-2022-2695 CVE-2022-2716 CVE-2022-2934 CWE-79 CWE-79 High WordPress Plugin Beaver Builder-WordPress Page Builder Security Bypass (1.7) CWE-264 CWE-264 High WordPress Plugin BeCustom Cross-Site Request Forgery (1.0.5.2) CVE-2022-3747 CWE-352 CWE-352 High WordPress Plugin Beer Recipes Cross-Site Scripting (1.0) CWE-79 CWE-79 High WordPress Plugin Be POPIA Compliant Information Disclosure (1.1.5) CVE-2022-1186 CWE-200 CWE-200 High WordPress Plugin BePro Listings Arbitrary File Upload (2.2.0020) CWE-434 CWE-434 High WordPress Plugin BePro Listings Security Bypass (2.2.0020) CWE-264 CWE-264 High WordPress Plugin Best Image Gallery & Responsive Photo Gallery-FooGallery Cross-Site Scripting (1.4.31) CWE-79 CWE-79 High WordPress Plugin Best Image Gallery & Responsive Photo Gallery-FooGallery Cross-Site Scripting (1.8.14) CVE-2019-20182 CWE-79 CWE-79 High WordPress Plugin Best Image Gallery & Responsive Photo Gallery-FooGallery Cross-Site Scripting (1.9.24) CWE-79 CWE-79 High WordPress Plugin Best Image Gallery & Responsive Photo Gallery-FooGallery Cross-Site Scripting (2.0.30) CVE-2021-24357 CWE-79 CWE-79 High WordPress Plugin Best Image Gallery & Responsive Photo Gallery-FooGallery Security Bypass (1.6.15) CWE-264 CWE-264 High WordPress Plugin Best Seo Remote Code Execution (1.5) CWE-94 CWE-94 High WordPress Plugin BestSmallShopLite Cross-Site Scripting (1.0.1) CWE-79 CWE-79 High WordPress Plugin Best WordPress FAQ Cross-Site Scripting (1.4.8) CVE-2021-39319 CWE-79 CWE-79 High WordPress Plugin betterAmazonAPI Cross-Site Scripting (1.2) CWE-79 CWE-79 High WordPress Plugin Better Click To Tweet Unspecified Vulnerability (5.1) High WordPress Plugin BetterDocs-Best Documentation & Knowledge Base Cross-Site Scripting (1.8.4) CWE-79 CWE-79 High WordPress Plugin BetterDocs-Best Documentation & Knowledge Base Cross-Site Scripting (1.9.1) CWE-79 CWE-79 High WordPress Plugin Better Find and Replace Cross-Site Scripting (1.2.8) CVE-2021-24676 CWE-79 CWE-79 High WordPress Plugin Better Font Awesome Cross-Site Request Forgery (2.0.1) CVE-2022-37405 CWE-352 CWE-352 High WordPress Plugin Better Font Awesome Cross-Site Scripting (2.0.3) CVE-2022-4512 CWE-79 CWE-79 High WordPress Plugin BetterLinks-Shorten, Track and Manage any URL Cross-Site Scripting (1.2.5) CVE-2021-24812 CWE-79 CWE-79 High WordPress Plugin Better Messages-Live Chat for WordPress, BuddyPress, BuddyBoss, Ultimate Member Multiple Vulnerabilities (1.9.9.37) CVE-2021-24808 CVE-2021-24809 CWE-79 CWE-352 CWE-79 CWE-352 High WordPress Plugin BetterOptin Cross-Site Scripting (1.2.4) CWE-79 CWE-79 High WordPress Plugin BetterOptin Cross-Site Scripting (2.0.2) CVE-2021-24435 CWE-79 CWE-79 High WordPress Plugin Better Search Cross-Site Request Forgery (2.5.2) CWE-352 CWE-352 High WordPress Plugin Better Search Replace Cross-Site Request Forgery (1.3.2) CWE-352 CWE-352 High WordPress Plugin Better Search Replace Multiple Unspecified Vulnerabilities (1.0.3) High WordPress Plugin Better Search SQL Injection (2.2.2) CWE-89 CWE-89 High WordPress Plugin Better User Shortcodes Multiple Cross-Site Scripting Vulnerabilities (1.0) CWE-79 CWE-79 High WordPress Plugin Better WordPress Minify Arbitrary File Disclosure (1.2.2) CWE-538 CWE-538 High WordPress Plugin Better WordPress reCAPTCHA (with no CAPTCHA reCAPTCHA) Cross-Site Scripting (2.0.3) CWE-79 CWE-79 High WordPress Plugin BezahlCode-Generator 'gen_name' Parameter Cross-Site Scripting (1.0) CWE-79 CWE-79 High WordPress Plugin bib2html Cross-Site Scripting (0.9.3) CVE-2014-3870 CWE-79 CWE-79 High WordPress Plugin BibleGet I/O Unspecified Vulnerability (3.4) High WordPress Plugin BIC Media Widget Cross-Site Scripting (1.0) CVE-2014-4516 CWE-79 CWE-79 High WordPress Plugin BigBlueButton Cross-Site Scripting (2.2.3) CVE-2020-12113 CWE-79 CWE-79 High WordPress Plugin BigDoor Quick Gamification for WordPress Cross-Site Scripting (1.0.5) CWE-79 CWE-79 High WordPress Plugin Bilingual Linker Cross-Site Scripting (2.1.1) CWE-79 CWE-79 High WordPress Plugin Billplz for WooCommerce Unspecified Vulnerability (3.10) High WordPress Plugin Bind Users to Taxonomy Cross-Site Scripting (0.3) CWE-79 CWE-79 High WordPress Plugin BingImport Cross-Site Scripting (0.4) CWE-79 CWE-79 High WordPress Plugin Bing Site Verification using Meta Tag Cross-Site Scripting (1.0) CVE-2023-23875 CWE-79 CWE-79 High WordPress Plugin Bird Feeder Multiple Vulnerabilities (1.2.3) CVE-2014-9334 CWE-79 CWE-352 CWE-79 CWE-352 High WordPress Plugin Bitcoin/Altcoin Faucet Cross-Site Request Forgery (1.6.0) CVE-2022-3025 CWE-352 CWE-352 High WordPress Plugin Bitcoin/AltCoin Payment Gateway for WooCommerce & Multivendor store/shop Cross-Site Scripting (1.6.0) CVE-2021-24679 CWE-79 CWE-79 High WordPress Plugin Bitcoin Faucet Cross-Site Scripting (1.0.12) CWE-79 CWE-79 High WordPress Plugin Bitcoin Satoshi Tools:Faucets, Visitor Rewarder, Satoshi Games, Referral Program Cross-Site Request Forgery (1.7.0) CVE-2022-3024 CWE-352 CWE-352 High WordPress Plugin BitMonet Cross-Site Scripting (1.0) CWE-79 CWE-79 High WordPress Plugin BizLibrary Cross-Site Scripting (1.1) CWE-79 CWE-79 High WordPress Plugin bizzCam Video Cross-Site Scripting (0.1) CWE-79 CWE-79 High WordPress Plugin BJ Lazy Load Remote Code Execution (0.7.5) CWE-94 CWE-94 High WordPress Plugin BLAZE Retail Widget Malicious Code (2.5.2) CVE-2024-6297 CWE-506 CWE-506 High WordPress Plugin Blaze Slideshow 'upload.php' Arbitrary File Upload (2.4) CWE-434 CWE-434 High WordPress Plugin Blaze Slideshow Arbitrary File Upload (2.7) CWE-434 CWE-434 High WordPress Plugin Bliss Gallery 'upload.php' Arbitrary File Upload (2.1) CWE-434 CWE-434 High WordPress Plugin Bliss Gallery Arbitrary File Upload (2.3) CWE-434 CWE-434 High WordPress Plugin Block wp-login Cross-Site Request Forgery (1.3.0) CWE-352 CWE-352 High WordPress Plugin Blog2Social:Social Media Auto Post & Scheduler Cross-Site Scripting (5.0.2) CVE-2019-9576 CWE-79 CWE-79 High WordPress Plugin Blog2Social:Social Media Auto Post & Scheduler Cross-Site Scripting (5.8.1) CVE-2019-17550 CWE-79 CWE-79 High 1...73747576...169 74 / 169
