Severity Critical High Medium Low Informational Vulnerability Categories Abuse Of Functionality Acumonitor Api Bfla Api Bola Api Broken Auth Api Broken Object Prop Auth Api Dos Api Improper Inventory Management Api Misconfiguration Api Ssrf Arbitrary File Creation Arbitrary File Read Arbitrary File Write Authentication Bypass BOLA Bruteforce Possible Buffer Overflow CSRF CSTI Code Execution Configuration Crlf Injection Deepscan Default Credentials Denial-of-service Dev Files Directory Listing Directory Traversal Eli Injection Error Handling File Inclusion Http Parameter Pollution Http Response Splitting Information Disclosure Insecure Admin Access Insecure Deserialization Internal Ip Disclosure Known Vulnerabilitie Known Vulnerabilities LLM Ldap Injection Llm Excessive Agency Llm Insecure Output Handling Llm Prompt Injection Llm Sensitive Information Disclosure Malware Missing Update Path Traversal Privilege Escalation Remote Code Execution SSRF SSTI Sensitive Data Not Over Ssl Server Side Template Injection Session Fixation Source Code Disclosure Sql Injection Test Files Unauthenticated File Upload Url Redirection Weak Credentials Weak Crypto XFS XSS XXE Xpath Injection Vulnerability Name CVE CWE CWE Severity WordPress Plugin Beer Recipes Cross-Site Scripting (1.0) CWE-79 CWE-79 High WordPress Plugin Be POPIA Compliant Information Disclosure (1.1.5) CVE-2022-1186 CWE-200 CWE-200 High WordPress Plugin BePro Listings Arbitrary File Upload (2.2.0020) CWE-434 CWE-434 High WordPress Plugin BePro Listings Security Bypass (2.2.0020) CWE-264 CWE-264 High WordPress Plugin Best Image Gallery & Responsive Photo Gallery-FooGallery Cross-Site Scripting (1.4.31) CWE-79 CWE-79 High WordPress Plugin Best Image Gallery & Responsive Photo Gallery-FooGallery Cross-Site Scripting (1.8.14) CVE-2019-20182 CWE-79 CWE-79 High WordPress Plugin Best Image Gallery & Responsive Photo Gallery-FooGallery Cross-Site Scripting (1.9.24) CWE-79 CWE-79 High WordPress Plugin Best Image Gallery & Responsive Photo Gallery-FooGallery Cross-Site Scripting (2.0.30) CVE-2021-24357 CWE-79 CWE-79 High WordPress Plugin Best Image Gallery & Responsive Photo Gallery-FooGallery Security Bypass (1.6.15) CWE-264 CWE-264 High WordPress Plugin Best Seo Remote Code Execution (1.5) CWE-94 CWE-94 High WordPress Plugin BestSmallShopLite Cross-Site Scripting (1.0.1) CWE-79 CWE-79 High WordPress Plugin Best WordPress FAQ Cross-Site Scripting (1.4.8) CVE-2021-39319 CWE-79 CWE-79 High WordPress Plugin betterAmazonAPI Cross-Site Scripting (1.2) CWE-79 CWE-79 High WordPress Plugin Better Click To Tweet Unspecified Vulnerability (5.1) High WordPress Plugin BetterDocs-Best Documentation & Knowledge Base Cross-Site Scripting (1.8.4) CWE-79 CWE-79 High WordPress Plugin BetterDocs-Best Documentation & Knowledge Base Cross-Site Scripting (1.9.1) CWE-79 CWE-79 High WordPress Plugin Better Find and Replace Cross-Site Scripting (1.2.8) CVE-2021-24676 CWE-79 CWE-79 High WordPress Plugin Better Font Awesome Cross-Site Request Forgery (2.0.1) CVE-2022-37405 CWE-352 CWE-352 High WordPress Plugin Better Font Awesome Cross-Site Scripting (2.0.3) CVE-2022-4512 CWE-79 CWE-79 High WordPress Plugin BetterLinks-Shorten, Track and Manage any URL Cross-Site Scripting (1.2.5) CVE-2021-24812 CWE-79 CWE-79 High WordPress Plugin Better Messages-Live Chat for WordPress, BuddyPress, BuddyBoss, Ultimate Member Multiple Vulnerabilities (1.9.9.37) CVE-2021-24808 CVE-2021-24809 CWE-79 CWE-352 CWE-79 CWE-352 High WordPress Plugin BetterOptin Cross-Site Scripting (1.2.4) CWE-79 CWE-79 High WordPress Plugin BetterOptin Cross-Site Scripting (2.0.2) CVE-2021-24435 CWE-79 CWE-79 High WordPress Plugin Better Search Cross-Site Request Forgery (2.5.2) CWE-352 CWE-352 High WordPress Plugin Better Search Replace Cross-Site Request Forgery (1.3.2) CWE-352 CWE-352 High WordPress Plugin Better Search Replace Multiple Unspecified Vulnerabilities (1.0.3) High WordPress Plugin Better Search SQL Injection (2.2.2) CWE-89 CWE-89 High WordPress Plugin Better User Shortcodes Multiple Cross-Site Scripting Vulnerabilities (1.0) CWE-79 CWE-79 High WordPress Plugin Better WordPress Minify Arbitrary File Disclosure (1.2.2) CWE-538 CWE-538 High WordPress Plugin Better WordPress reCAPTCHA (with no CAPTCHA reCAPTCHA) Cross-Site Scripting (2.0.3) CWE-79 CWE-79 High WordPress Plugin BezahlCode-Generator 'gen_name' Parameter Cross-Site Scripting (1.0) CWE-79 CWE-79 High WordPress Plugin bib2html Cross-Site Scripting (0.9.3) CVE-2014-3870 CWE-79 CWE-79 High WordPress Plugin BibleGet I/O Unspecified Vulnerability (3.4) High WordPress Plugin BIC Media Widget Cross-Site Scripting (1.0) CVE-2014-4516 CWE-79 CWE-79 High WordPress Plugin BigBlueButton Cross-Site Scripting (2.2.3) CVE-2020-12113 CWE-79 CWE-79 High WordPress Plugin BigDoor Quick Gamification for WordPress Cross-Site Scripting (1.0.5) CWE-79 CWE-79 High WordPress Plugin Bilingual Linker Cross-Site Scripting (2.1.1) CWE-79 CWE-79 High WordPress Plugin Billplz for WooCommerce Unspecified Vulnerability (3.10) High WordPress Plugin Bind Users to Taxonomy Cross-Site Scripting (0.3) CWE-79 CWE-79 High WordPress Plugin BingImport Cross-Site Scripting (0.4) CWE-79 CWE-79 High WordPress Plugin Bing Site Verification using Meta Tag Cross-Site Scripting (1.0) CVE-2023-23875 CWE-79 CWE-79 High WordPress Plugin Bird Feeder Multiple Vulnerabilities (1.2.3) CVE-2014-9334 CWE-79 CWE-352 CWE-79 CWE-352 High WordPress Plugin Bitcoin/Altcoin Faucet Cross-Site Request Forgery (1.6.0) CVE-2022-3025 CWE-352 CWE-352 High WordPress Plugin Bitcoin/AltCoin Payment Gateway for WooCommerce & Multivendor store/shop Cross-Site Scripting (1.6.0) CVE-2021-24679 CWE-79 CWE-79 High WordPress Plugin Bitcoin Faucet Cross-Site Scripting (1.0.12) CWE-79 CWE-79 High WordPress Plugin Bitcoin Satoshi Tools:Faucets, Visitor Rewarder, Satoshi Games, Referral Program Cross-Site Request Forgery (1.7.0) CVE-2022-3024 CWE-352 CWE-352 High WordPress Plugin BitMonet Cross-Site Scripting (1.0) CWE-79 CWE-79 High WordPress Plugin BizLibrary Cross-Site Scripting (1.1) CWE-79 CWE-79 High WordPress Plugin bizzCam Video Cross-Site Scripting (0.1) CWE-79 CWE-79 High WordPress Plugin BJ Lazy Load Remote Code Execution (0.7.5) CWE-94 CWE-94 High WordPress Plugin BLAZE Retail Widget Malicious Code (2.5.2) CVE-2024-6297 CWE-506 CWE-506 High WordPress Plugin Blaze Slideshow 'upload.php' Arbitrary File Upload (2.4) CWE-434 CWE-434 High WordPress Plugin Blaze Slideshow Arbitrary File Upload (2.7) CWE-434 CWE-434 High WordPress Plugin Bliss Gallery 'upload.php' Arbitrary File Upload (2.1) CWE-434 CWE-434 High WordPress Plugin Bliss Gallery Arbitrary File Upload (2.3) CWE-434 CWE-434 High WordPress Plugin Block wp-login Cross-Site Request Forgery (1.3.0) CWE-352 CWE-352 High WordPress Plugin Blog2Social:Social Media Auto Post & Scheduler Cross-Site Scripting (5.0.2) CVE-2019-9576 CWE-79 CWE-79 High WordPress Plugin Blog2Social:Social Media Auto Post & Scheduler Cross-Site Scripting (5.8.1) CVE-2019-17550 CWE-79 CWE-79 High WordPress Plugin Blog2Social:Social Media Auto Post & Scheduler Multiple Vulnerabilities (6.9.9) CVE-2022-3246 CVE-2022-3247 CWE-89 CWE-918 CWE-89 CWE-918 High WordPress Plugin Blog2Social:Social Media Auto Post & Scheduler PHP Object Injection (5.0.0) CWE-915 CWE-915 High WordPress Plugin Blog2Social:Social Media Auto Post & Scheduler PHP Object Injection (5.7.0) CWE-915 CWE-915 High WordPress Plugin Blog2Social:Social Media Auto Post & Scheduler Security Bypass (6.9.11) CVE-2022-3622 CWE-862 CWE-862 High WordPress Plugin Blog2Social:Social Media Auto Post & Scheduler SQL Injection (5.5.0) CVE-2019-13572 CWE-89 CWE-89 High WordPress Plugin Blog2Social:Social Media Auto Post & Scheduler SQL Injection (6.3.0) CVE-2021-24137 CWE-89 CWE-89 High WordPress Plugin Blog2Social:Social Media Auto Post & Scheduler Unspecified Vulnerability (5.1.2) High WordPress Plugin Blog Designer Cross-Site Scripting (1.8.11) CWE-79 CWE-79 High WordPress Plugin Blogger To WordPress SQL Injection (2.2.1) CWE-89 CWE-89 High WordPress Plugin Blogomatic Cross-Site Scripting (1.0) CWE-79 CWE-79 High WordPress Plugin Blogroll Fun-Show Last Post and Last Update Time Cross-Site Scripting (0.8.4) CWE-79 CWE-79 High WordPress Plugin Blog social sharing component Cross-Site Request Forgery (1.4.5) CWE-352 CWE-352 High WordPress Plugin Blog social sharing component Cross-Site Scripting (1.4.4) CVE-2021-24618 CWE-79 CWE-79 High WordPress Plugin Blogstand Banner Cross-Site Scripting (1.0) CVE-2014-4848 CWE-79 CWE-79 High WordPress Plugin Blogtopdf Local File Inclusion (1.0.2) CVE-2014-2383 CWE-22 CWE-22 High WordPress Plugin blogVault Real-time Backup PHP Object Injection (1.44) CWE-915 CWE-915 High WordPress Plugin Bloom eMail Opt-In Security Bypass (1.1) CWE-264 CWE-264 High 1...73747576...169 74 / 169
