Vulnerability Name CVE Severity
WordPress Plugin Contact Form for WordPress-Ultimate Form Builder Lite includes Backdoor [Only if downloaded via the vendor website] (1.5.0) CVE-2021-24867
WordPress Plugin Contact Form for WordPress-Ultimate Form Builder Lite Multiple Cross-Site Scripting Vulnerabilities (1.3.2)
WordPress Plugin Contact Form for WordPress-Ultimate Form Builder Lite Multiple Vulnerabilities (1.3.6) CVE-2017-15919
WordPress Plugin Contact Form for WordPress-Ultimate Form Builder Lite Multiple Vulnerabilities (1.3.7)
WordPress Plugin Contact Form Generator Multiple Cross-Site Request Forgery Vulnerabilities (2.1.86) CVE-2015-6965
WordPress Plugin Contact Form Integrated With Google Maps Cross-Site Scripting (2.4) CVE-2014-7238
WordPress Plugin Contact Form Manager Multiple Cross-Site Scripting Vulnerabilities (1.4.1)
WordPress Plugin Contact Form Manager Multiple Vulnerabilities (1.4.4)
WordPress Plugin Contact Form Multi by BestWebSoft Cross-Site Scripting (1.2.0) CVE-2017-2171 CVE-2017-2171 CVE-2017-18490
WordPress Plugin Contact Form Submissions SQL Injection (1.6.4) CVE-2021-24125
WordPress Plugin Contact Form Submissions Unspecified Vulnerability (1.2)
WordPress Plugin Contact Form Submissions Unspecified Vulnerability (1.6.3)
WordPress Plugin Contact Form to DB by BestWebSoft-Messages Database For WordPress Cross-Site Scripting (1.4.0)
WordPress Plugin Contact Form to DB by BestWebSoft-Messages Database For WordPress Cross-Site Scripting (1.5.6) CVE-2017-2171 CVE-2017-2171 CVE-2017-18492
WordPress Plugin Contact Form to DB by BestWebSoft-Messages Database For WordPress SQL Injection (1.7.0) CVE-2023-29096
WordPress Plugin Contact Form to DB by BestWebSoft-Messages Database For WordPress SQL Injection (1.7.1) CVE-2023-36508
WordPress Plugin Contact Form to DB by BestWebSoft-Messages Database For WordPress SQL Injection (1.7.2) CVE-2024-35678
WordPress Plugin Contact Form Unspecified Vulnerability (1.1.9)
WordPress Plugin Contact Form Unspecified Vulnerability (1.2)
WordPress Plugin Contact Form Widget-Contact Query, Form Maker SQL Injection (1.0.9) CVE-2019-17072
WordPress Plugin Contact Form With Captcha Cross-Site Request Forgery (1.6.2) CVE-2021-42358
WordPress Plugin Contact Form X Cross-Site Scripting (2.4) CVE-2022-25601
WordPress Plugin Contact List-Easy Business Directory, Staff Directory and Address Book Cross-Site Scripting (2.9.41)
WordPress Plugin Content Audit Blind SQL Injection (1.6) CVE-2014-5389
WordPress Plugin Content Audit Multiple Vulnerabilities (1.9.1)
WordPress Plugin Content Aware Sidebars-Unlimited Widget Areas Security Bypass (3.8)
WordPress Plugin Content Blocks (Custom Post Widget) Cross-Site Scripting (3.0)
WordPress Plugin Content Blocks (Custom Post Widget) Local File Inclusion (3.3.0) CVE-2024-3564
WordPress Plugin Contentboxes Cross-Site Scripting (1.1)
WordPress Plugin Content Cards Cross-Site Scripting (0.9.6) CVE-2017-17096
WordPress Plugin Content Control-User Access Restriction Cross-Site Scripting (1.1.9) CVE-2022-4509
WordPress Plugin Content Copy Protection & Prevent Image Save Cross-Site Request Forgery (1.3) CVE-2021-24333
WordPress Plugin Content Grabber Multiple Vulnerabilities (1.0)
WordPress Plugin Content Staging Cross-Site Scripting (2.0.1) CVE-2021-39356
WordPress Plugin ContentStudio Multiple Vulnerabilities (1.2.5) CVE-2023-0556 CVE-2023-0557 CVE-2023-0558
WordPress Plugin Content text slider on post Cross-Site Scripting (6.8)
WordPress Plugin Content Timeline Multiple SQL Injection Vulnerabilities (4.4.2) CVE-2017-14507
WordPress Plugin Contest Gallery-Photo Contest for WordPress Cross-Site Request Forgery (10.4.1.1) CVE-2019-5974
WordPress Plugin Contest Gallery-Photo Contest for WordPress Cross-Site Scripting (13.1.0.9)
WordPress Plugin Contest Gallery-Photo Contest for WordPress Cross-Site Scripting (14.1.7)
WordPress Plugin Contest Gallery-Photo Contest for WordPress Security Bypass (13.1.0.6)
WordPress Plugin Contest Gallery-Photo Contest for WordPress SQL Injection (13.1.0.5) CVE-2021-24915
WordPress Plugin Contextual Adminbar Color Cross-Site Scripting (0.2)
WordPress Plugin Contextual Related Posts Cross-Site Request Forgery (1.8.6) CVE-2013-2710
WordPress Plugin Contextual Related Posts Cross-Site Request Forgery (2.9.3)
WordPress Plugin Contextual Related Posts Cross-Site Scripting (3.3.0) CVE-2023-0252
WordPress Plugin Contextual Related Posts Multiple Vulnerabilities (3.3.1)
WordPress Plugin Controlled Admin Access Security Bypass (1.4.0) CVE-2021-24215
WordPress Plugin Controlled Admin Access Security Bypass (1.5.5)
WordPress Plugin Contus HD FLV Player 'process-sortable.php' SQL Injection (1.3)
WordPress Plugin Contus HD FLV Player 'uploadVideo.php' Arbitrary File Upload (1.7)
WordPress Plugin CONTUS VBLOG-Video Blogging 'save.php' Arbitrary File Upload (1.0)
WordPress Plugin Conversador Cross-Site Scripting (2.61) CVE-2014-4519
WordPress Plugin Convert Docx2post Arbitrary File Upload (1.4)
WordPress Plugin Convert Plus Security Bypass (3.4.2)
WordPress Plugin Convert Plus Security Bypass (3.4.4) CVE-2019-15863
WordPress Plugin Convert Plus Unspecified Vulnerability (3.5.6)
WordPress Plugin Cooked-Recipe Cross-Site Scripting (1.7.9)
WordPress Plugin Cooked Pro Cross-Site Scripting (1.7.5.5) CVE-2021-24233
WordPress Plugin Cookie Bar Cross-Site Scripting (1.8.8)
WordPress Plugin Cookiebot-GDPR/CCPA Compliant Cookie Consent and Control Cross-Site Scripting (3.6.0)
WordPress Plugin Cookie Consent for WP-Cookie Consent, Consent Log, Cookie Scanner, Script Blocker (for GDPR, CCPA & ePrivacy) Cross-Site Scripting (3.2.0) CVE-2024-4869
WordPress Plugin Cookie Consent for WP-Cookie Consent, Consent Log, Cookie Scanner, Script Blocker (for GDPR, CCPA & ePrivacy) CSV Injection (2.2.5) CVE-2023-23678
WordPress Plugin Cookie Consent for WP-Cookie Consent, Consent Log, Cookie Scanner, Script Blocker (for GDPR, CCPA & ePrivacy) Security Bypass (3.0.2) CVE-2024-3599
WordPress Plugin Cookie Information-Free GDPR Consent Solution Cross-Site Scripting (1.5.5)
WordPress Plugin Cookie Information-Free GDPR Consent Solution Privilege Escalation (1.4.2) CVE-2018-19207
WordPress Plugin Cookie Information-Free GDPR Consent Solution Security Bypass (2.0.22) CVE-2023-6700
WordPress Plugin Cookie Law Bar Cross-Site Scripting (1.2.1)
WordPress Plugin Cookie Notice & Compliance for GDPR/CCPA Cross-Site Scripting (2.1.1) CVE-2021-24569
WordPress Plugin Cookie Notice & Consent Banner for GDPR & CCPA Compliance Cross-Site Scripting (1.7.1) CVE-2021-24590
WordPress Plugin Cookie Notification for WordPress-WP Cookie User Info includes Backdoor [Only if downloaded via the vendor website] (1.0.7) CVE-2021-24867
WordPress Plugin CoolClock-a Javascript Analog Clock Cross-Site Scripting (4.3.4) CVE-2021-24670
WordPress Plugin Cool Flickr Slideshow Cross-Site Scripting (1.0)
WordPress Plugin Cool Tag Cloud Cross-Site Scripting (2.25) CVE-2021-24682
WordPress Plugin Cool Timeline (Horizontal & Vertical Timeline) Cross-Site Request Forgery (2.0.2)