| Vulnerability Name |
CVE
CWE
|
CWE |
Severity |
|
WordPress Plugin File Manager Information Disclosure (6.4)
|
CVE-2020-24312
CWE-200
|
CWE-200
|
High
|
|
WordPress Plugin File Manager Multiple Cross-Site Request Forgery Vulnerabilities (5.0)
|
CWE-352
|
CWE-352
|
High
|
|
WordPress Plugin File Manager Multiple Vulnerabilities (4.8)
|
CWE-200
CWE-264
|
CWE-200
CWE-264
|
High
|
|
WordPress Plugin File Manager Pro Arbitrary File Upload (8.3.4)
|
CVE-2023-6846
CWE-434
|
CWE-434
|
High
|
|
WordPress Plugin File Manager Remote Code Execution (4.5)
|
CWE-94
|
CWE-94
|
High
|
|
WordPress Plugin File Manager Unspecified Vulnerability (2.2.0)
|
|
|
High
|
|
WordPress Plugin File Manager Unspecified Vulnerability (3.0)
|
|
|
High
|
|
WordPress Plugin File Manager Unspecified Vulnerability (4.1.4)
|
|
|
High
|
|
WordPress Plugin File Manager Unspecified Vulnerability (5.0.0)
|
|
|
High
|
|
WordPress Plugin File Manager Unspecified Vulnerability (5.1.5)
|
|
|
High
|
|
WordPress Plugin File Uploader Arbitrary File Upload (1.1)
|
CWE-434
|
CWE-434
|
High
|
|
WordPress Plugin Fileviewer Cross-Site Request Forgery (2.2)
|
CVE-2021-24491
CWE-352
|
CWE-352
|
High
|
|
WordPress Plugin Filter & Grids Local File Inclusion (2.8.32)
|
CVE-2024-6164
CWE-22
|
CWE-22
|
High
|
|
WordPress Plugin Filter Custom Fields & Taxonomies Light Unspecified Vulnerability (1.04)
|
|
|
High
|
|
WordPress Plugin Filtre de Surveillance Gouvernemental Cross-Site Scripting (1.1)
|
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Find My Blocks Information Disclosure (3.3.2)
|
CVE-2021-24677
CWE-200
|
CWE-200
|
High
|
|
WordPress Plugin FireCask Like & Share Button Cross-Site Scripting (1.1.5)
|
CVE-2023-25783
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin FireDrum Email Marketing PHP Object Injection (1.47)
|
CWE-915
|
CWE-915
|
High
|
|
WordPress Plugin FireStats 'firestats-wordpress.php' Remote File Include (1.6.1)
|
CVE-2009-2143
CWE-94
|
CWE-94
|
High
|
|
WordPress Plugin FireStats Arbitrary File Download (1.6.5)
|
CWE-538
|
CWE-538
|
High
|
|
WordPress Plugin FireStats Cross-Site Scripting (1.6.4)
|
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin FireStats Multiple Cross-Site Scripting and Authentication Bypass Vulnerabilities (1.0.2)
|
CWE-79
CWE-287
|
CWE-79
CWE-287
|
High
|
|
WordPress Plugin FireStorm Professional Real Estate 'id' Parameter SQL Injection (2.06.03)
|
CWE-89
|
CWE-89
|
High
|
|
WordPress Plugin FireStorm Professional Real Estate Multiple SQL Injection Vulnerabilities (2.05.01)
|
CWE-89
|
CWE-89
|
High
|
|
WordPress Plugin FireStorm Shopping Cart eCommerce SQL Injection (2.07.02)
|
CWE-89
|
CWE-89
|
High
|
|
WordPress Plugin fitness calculators Cross-Site Request Forgery (1.9.5)
|
CVE-2021-24272
CWE-352
|
CWE-352
|
High
|
|
WordPress Plugin Fitness Trainer-Training Membership Cross-Site Scripting (1.0.8)
|
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Five Star Restaurant Menu-WordPress Ordering Remote Code Execution (2.2.0)
|
CVE-2020-29045
CWE-502
|
CWE-502
|
High
|
|
WordPress Plugin Fixedly Media Gallery Cross-Site Scripting (1.3.1)
|
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin FL3R FeelBox Multiple Vulnerabilities (8.1)
|
CVE-2022-4445
CVE-2022-4552
CVE-2022-4553
CWE-89
CWE-352
|
CWE-89
CWE-352
|
High
|
|
WordPress Plugin Flamingo Code Injection (1.1)
|
CWE-95
|
CWE-95
|
High
|
|
WordPress Plugin Flamingo CSV Injection (2.1)
|
CWE-20
|
CWE-20
|
High
|
|
WordPress Plugin Flash Photo Gallery Cross-Site Scripting (0.7)
|
CVE-2014-4529
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Flat Preloader Cross-Site Request Forgery (1.5.3)
|
CVE-2021-24685
CWE-352
|
CWE-352
|
High
|
|
WordPress Plugin Flat Preloader Cross-Site Scripting (1.5.4)
|
CVE-2021-24789
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Flexible Captcha Multiple Vulnerabilities (3.3)
|
CWE-352
CWE-434
|
CWE-352
CWE-434
|
High
|
|
WordPress Plugin Flexible Captcha Security Bypass (4.0)
|
CWE-264
|
CWE-264
|
High
|
|
WordPress Plugin Flexible Checkout Fields for WooCommerce Security Bypass (2.3.1)
|
CWE-264
|
CWE-264
|
High
|
|
WordPress Plugin Flexible Custom Post Type Cross-Site Scripting (0.1.5)
|
CVE-2011-5106
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Flexi Quote Rotator SQL Injection and Cross-Site Request Forgery Vulnerabilities (0.9)
|
CWE-89
CWE-352
|
CWE-89
CWE-352
|
High
|
|
WordPress Plugin Flickr Gallery PHP Object Injection (1.5.2)
|
CWE-915
|
CWE-915
|
High
|
|
WordPress Plugin Flickr Justified Gallery Cross-Site Scripting (3.3.6)
|
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin flickr picture backup Arbitrary File Upload (0.7)
|
CVE-2017-1002016
CWE-434
|
CWE-434
|
High
|
|
WordPress Plugin Flickrpress PHP Object Injection (1.0.2)
|
CWE-915
|
CWE-915
|
High
|
|
WordPress Plugin flickrRSS Multiple Vulnerabilities (5.3.1)
|
CVE-2018-6466
CVE-2018-6467
CVE-2018-6468
CVE-2018-6469
CWE-79
CWE-352
|
CWE-79
CWE-352
|
High
|
|
WordPress Plugin FlightLog SQL Injection (3.0.2)
|
CVE-2021-24336
CWE-89
|
CWE-89
|
High
|
|
WordPress Plugin Flight Search Widget and Blocks Cross-Site Scripting (1.1.0)
|
CVE-2021-24435
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Flip Book 'php.php' Arbitrary File Upload (1.0)
|
CWE-434
|
CWE-434
|
High
|
|
WordPress Plugin Flipbox-Awesomes Flip Boxes Image Overlay Security Bypass (2.6.0)
|
CVE-2022-33969
CWE-863
|
CWE-863
|
High
|
|
WordPress Plugin Flipbox Builder PHP Object Injection (1.5)
|
CVE-2024-6152
CWE-915
|
CWE-915
|
High
|
|
WordPress Plugin Flip Slideshow Cross-Site Scripting (2.2)
|
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Floating Cart for WooCommerce Security Bypass (1.2.2)
|
CWE-264
|
CWE-264
|
High
|
|
WordPress Plugin Floating Chat Widget:Contact Chat Icons, Telegram Chat, Line, WeChat, Email, SMS, Call Button-Chaty Multiple Cross-Site Scripting Vulnerabilities (2.8.3)
|
CVE-2021-25016
CVE-2021-36846
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Floating Chat Widget:Contact Chat Icons, Telegram Chat, Line, WeChat, Email, SMS, Call Button-Chaty SQL Injection (3.0.2)
|
CVE-2022-3858
CWE-89
|
CWE-89
|
High
|
|
WordPress Plugin Floating Chat Widget:Contact Chat Icons, Telegram Chat, Line, WeChat, Email, SMS, Call Button-Chaty Unspecified Vulnerability (2.0.5)
|
|
|
High
|
|
WordPress Plugin Floating Social Bar Cross-Site Scripting (1.1.5)
|
CVE-2015-5528
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Floating Social Bar Cross-Site Scripting (1.1.6)
|
CVE-2015-3299
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Floating Social Media Links 'wpp' Parameter Multiple Remote File Include Vulnerabilities (1.4.2)
|
CWE-94
|
CWE-94
|
High
|
|
WordPress Plugin Floating Tweets Multiple Vulnerabilities (1.0.1)
|
CWE-22
CWE-79
|
CWE-22
CWE-79
|
High
|
|
WordPress Plugin Float to Top Button Cross-Site Scripting (2.3.6)
|
CVE-2022-2709
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Flo Forms-Easy Drag & Drop Form Builder Multiple Vulnerabilities (1.0.35)
|
CWE-79
CWE-264
|
CWE-79
CWE-264
|
High
|
|
WordPress Plugin Flog Cross-Site Scripting (0.1)
|
CVE-2014-4530
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Flog Server-Side Request Forgery (1.0beta3)
|
CWE-918
|
CWE-918
|
High
|
|
WordPress Plugin Flow-Flow Social Stream Unspecified Vulnerability (3.0.71)
|
|
|
High
|
|
WordPress Plugin FluentAuth-The Ultimate Authorization & Security for WordPress Security Bypass (1.0.1)
|
CVE-2022-4746
CWE-693
|
CWE-693
|
High
|
|
WordPress Plugin FluentSMTP-WP Mail SMTP, Amazon SES, SendGrid, MailGun and Any SMTP Connector Cross-Site Scripting (2.0.0)
|
CVE-2021-24528
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin FluentSMTP-WP Mail SMTP, Amazon SES, SendGrid, MailGun and Any SMTP Connector Cross-Site Scripting (2.2.2)
|
CVE-2023-0219
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin FluentSMTP-WP Mail SMTP, Amazon SES, SendGrid, MailGun and Any SMTP Connector Cross-Site Scripting (2.2.4)
|
CVE-2023-3087
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Fluid Responsive Slideshow Multiple Vulnerabilities (2.2.6)
|
CVE-2016-10974
CVE-2016-10975
CWE-79
CWE-352
|
CWE-79
CWE-352
|
High
|
|
WordPress Plugin FlyingPress Security Bypass (3.9.6)
|
CVE-2022-4948
CWE-284
|
CWE-284
|
High
|
|
WordPress Plugin fMoblog 'id' Parameter SQL Injection (2.1)
|
CVE-2009-0968
CWE-89
|
CWE-89
|
High
|
|
WordPress Plugin Folders-Organize Pages, Posts and Media Library Folders with Drag and Drop Cross-Site Scripting (2.0.5)
|
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Foliopress WYSIWYG Cross-Site Scripting (2.6.8.4)
|
CVE-2014-1232
CWE-79
|
CWE-79
|
High
|
|
WordPress Plugin Follow Me Cross-Site Request Forgery (3.1.1)
|
CVE-2022-3240
CWE-352
|
CWE-352
|
High
|
|
WordPress Plugin Font-official webfonts plugin of Fonts For Web Cross-Site Scripting (7.5.1)
|
CWE-79
|
CWE-79
|
High
|
