| Vulnerability Name |
CVE
CWE
|
CWE |
Severity |
|
WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-2199)
|
CVE-2013-2199
CWE-264
|
CWE-264
|
Medium
|
|
WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-2200)
|
CVE-2013-2200
CWE-264
|
CWE-264
|
Medium
|
|
WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-2203)
|
CVE-2013-2203
CWE-264
|
CWE-264
|
Medium
|
|
WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-0165)
|
CVE-2014-0165
CWE-264
|
CWE-264
|
Medium
|
|
WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-5715)
|
CVE-2015-5715
CWE-264
|
CWE-264
|
Medium
|
|
WordPress pingback scanner
|
CVE-2013-0235
CWE-918
|
CWE-918
|
Medium
|
|
Wordpress Plugin Backup Migration Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-36884)
|
CVE-2021-36884
CWE-707
|
CWE-707
|
Medium
|
|
WordPress Resource Management Errors Vulnerability (CVE-2014-5265)
|
CVE-2014-5265
|
|
Medium
|
|
WordPress Resource Management Errors Vulnerability (CVE-2014-5266)
|
CVE-2014-5266
|
|
Medium
|
|
WordPress Time-of-check Time-of-use (TOCTOU) Race Condition Vulnerability (CVE-2022-3590)
|
CVE-2022-3590
CWE-367
|
CWE-367
|
Medium
|
|
WordPress Ultimate Member Plugin Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2020-6859)
|
CVE-2020-6859
CWE-639
|
CWE-639
|
Medium
|
|
WordPress Ultimate Member Plugin Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2024-8520)
|
CVE-2024-8520
CWE-352
|
CWE-352
|
Medium
|
|
WordPress Ultimate Member Plugin CVE-2019-10271 Vulnerability (CVE-2019-10271)
|
CVE-2019-10271
|
|
Medium
|
|
WordPress Ultimate Member Plugin CVE-2020-36170 Vulnerability (CVE-2020-36170)
|
CVE-2020-36170
|
|
Medium
|
|
WordPress Ultimate Member Plugin CVE-2025-0318 Vulnerability (CVE-2025-0318)
|
CVE-2025-0318
|
|
Medium
|
|
WordPress Ultimate Member Plugin Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2022-3361)
|
CVE-2022-3361
CWE-22
|
CWE-22
|
Medium
|
|
WordPress Ultimate Member Plugin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-8354)
|
CVE-2015-8354
CWE-707
|
CWE-707
|
Medium
|
|
WordPress Ultimate Member Plugin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-9304)
|
CVE-2015-9304
CWE-707
|
CWE-707
|
Medium
|
|
WordPress Ultimate Member Plugin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-10872)
|
CVE-2016-10872
CWE-707
|
CWE-707
|
Medium
|
|
WordPress Ultimate Member Plugin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-0585)
|
CVE-2018-0585
CWE-707
|
CWE-707
|
Medium
|
|
WordPress Ultimate Member Plugin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-6944)
|
CVE-2018-6944
CWE-707
|
CWE-707
|
Medium
|
|
WordPress Ultimate Member Plugin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-13136)
|
CVE-2018-13136
CWE-707
|
CWE-707
|
Medium
|
|
WordPress Ultimate Member Plugin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-17866)
|
CVE-2018-17866
CWE-707
|
CWE-707
|
Medium
|
|
WordPress Ultimate Member Plugin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-20965)
|
CVE-2018-20965
CWE-707
|
CWE-707
|
Medium
|
|
WordPress Ultimate Member Plugin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-14945)
|
CVE-2019-14945
CWE-707
|
CWE-707
|
Medium
|
|
WordPress Ultimate Member Plugin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-14946)
|
CVE-2019-14946
CWE-707
|
CWE-707
|
Medium
|
|
WordPress Ultimate Member Plugin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-14947)
|
CVE-2019-14947
CWE-707
|
CWE-707
|
Medium
|
|
WordPress Ultimate Member Plugin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-24306)
|
CVE-2021-24306
CWE-707
|
CWE-707
|
Medium
|
|
WordPress Ultimate Member Plugin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-1208)
|
CVE-2022-1208
CWE-707
|
CWE-707
|
Medium
|
|
WordPress Ultimate Member Plugin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-2123)
|
CVE-2024-2123
CWE-707
|
CWE-707
|
Medium
|
|
WordPress Ultimate Member Plugin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-2765)
|
CVE-2024-2765
CWE-707
|
CWE-707
|
Medium
|
|
WordPress Ultimate Member Plugin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-8519)
|
CVE-2024-8519
CWE-707
|
CWE-707
|
Medium
|
|
WordPress Ultimate Member Plugin Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2024-12276)
|
CVE-2024-12276
CWE-138
|
CWE-138
|
Medium
|
|
WordPress Ultimate Member Plugin Missing Authorization Vulnerability (CVE-2024-10528)
|
CVE-2024-10528
CWE-862
|
CWE-862
|
Medium
|
|
WordPress Ultimate Member Plugin URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2022-1209)
|
CVE-2022-1209
CWE-601
|
CWE-601
|
Medium
|
|
WordPress URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2017-14725)
|
CVE-2017-14725
CWE-601
|
CWE-601
|
Medium
|
|
WordPress URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2018-10100)
|
CVE-2018-10100
CWE-601
|
CWE-601
|
Medium
|
|
WordPress URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2018-10101)
|
CVE-2018-10101
CWE-601
|
CWE-601
|
Medium
|
|
WordPress URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2019-16220)
|
CVE-2019-16220
CWE-601
|
CWE-601
|
Medium
|
|
WordPress URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2020-4048)
|
CVE-2020-4048
CWE-601
|
CWE-601
|
Medium
|
|
WordPress username enumeration
|
CWE-200
|
CWE-200
|
Medium
|
|
WordPress Weak Password Recovery Mechanism for Forgotten Password Vulnerability (CVE-2017-8295)
|
CVE-2017-8295
CWE-640
|
CWE-640
|
Medium
|
|
WordPress XML-RPC authentication brute force
|
CWE-521
|
CWE-521
|
Medium
|
|
WP Plugin Contact Form 7 Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2023-6630)
|
CVE-2023-6630
CWE-639
|
CWE-639
|
Medium
|
|
WP Plugin Contact Form 7 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-2242)
|
CVE-2024-2242
CWE-707
|
CWE-707
|
Medium
|
|
WP Plugin Contact Form 7 Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-2265)
|
CVE-2014-2265
CWE-264
|
CWE-264
|
Medium
|
|
WP Plugin Contact Form 7 URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2024-4704)
|
CVE-2024-4704
CWE-601
|
CWE-601
|
Medium
|
|
WSO2 Management Console XSS (CVE-2022-29548)
|
CVE-2022-29548
CWE-79
|
CWE-79
|
Medium
|
|
XOOPS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-3822)
|
CVE-2011-3822
CWE-200
|
CWE-200
|
Medium
|
|
XOOPS Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2006-2516)
|
CVE-2006-2516
CWE-22
|
CWE-22
|
Medium
|
|
XOOPS Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2008-6884)
|
CVE-2008-6884
CWE-22
|
CWE-22
|
Medium
|
|
XOOPS Improper Link Resolution Before File Access ('Link Following') Vulnerability (CVE-2008-0613)
|
CVE-2008-0613
CWE-59
|
CWE-59
|
Medium
|
|
XOOPS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2003-1453)
|
CVE-2003-1453
CWE-707
|
CWE-707
|
Medium
|
|
XOOPS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2004-2756)
|
CVE-2004-2756
CWE-707
|
CWE-707
|
Medium
|
|
XOOPS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-2035)
|
CVE-2008-2035
CWE-707
|
CWE-707
|
Medium
|
|
XOOPS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-3295)
|
CVE-2008-3295
CWE-707
|
CWE-707
|
Medium
|
|
XOOPS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-4432)
|
CVE-2008-4432
CWE-707
|
CWE-707
|
Medium
|
|
XOOPS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-4435)
|
CVE-2008-4435
CWE-707
|
CWE-707
|
Medium
|
|
XOOPS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-6885)
|
CVE-2008-6885
CWE-707
|
CWE-707
|
Medium
|
|
XOOPS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-2783)
|
CVE-2009-2783
CWE-707
|
CWE-707
|
Medium
|
|
XOOPS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-4565)
|
CVE-2011-4565
CWE-707
|
CWE-707
|
Medium
|
|
XOOPS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-0984)
|
CVE-2012-0984
CWE-707
|
CWE-707
|
Medium
|
|
XOOPS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-7944)
|
CVE-2017-7944
CWE-707
|
CWE-707
|
Medium
|
|
XOOPS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-12139)
|
CVE-2017-12139
CWE-707
|
CWE-707
|
Medium
|
|
XOOPS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-16683)
|
CVE-2019-16683
CWE-707
|
CWE-707
|
Medium
|
|
XOOPS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-16684)
|
CVE-2019-16684
CWE-707
|
CWE-707
|
Medium
|
|
XOOPS Other Vulnerability (CVE-2005-2112)
|
CVE-2005-2112
|
|
Medium
|
|
XOOPS Other Vulnerability (CVE-2005-3680)
|
CVE-2005-3680
|
|
Medium
|
|
XOOPS Other Vulnerability (CVE-2006-5810)
|
CVE-2006-5810
|
|
Medium
|
|
XOOPS Permissions, Privileges, and Access Controls Vulnerability (CVE-2009-4851)
|
CVE-2009-4851
CWE-264
|
CWE-264
|
Medium
|
|
XOOPS URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2017-12138)
|
CVE-2017-12138
CWE-601
|
CWE-601
|
Medium
|
|
XSS on Apache HTTP Server 413 error pages via malformed HTTP method
|
CVE-2007-6203
CWE-79
|
CWE-79
|
Medium
|
|
XWiki Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2022-41932)
|
CVE-2022-41932
CWE-770
|
CWE-770
|
Medium
|
|
XWiki Credentials Management Errors Vulnerability (CVE-2005-4862)
|
CVE-2005-4862
|
|
Medium
|
|
XWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2021-32730)
|
CVE-2021-32730
CWE-352
|
CWE-352
|
Medium
|
