Vulnerability Name |
CVE
CWE
|
CWE |
Severity |
1 Flash Gallery Cross-Site Scripting and SQL Injection Vulnerabilities (0.2.5)
|
CWE-79
CWE-89
|
CWE-79
CWE-89
|
High
|
10Web Map Builder for Google Maps SQL Injection (1.0.72)
|
CWE-89
|
CWE-89
|
High
|
301 Redirects-Easy Redirect Manager SQL Injection (2.50)
|
CVE-2021-24142
CWE-89
|
CWE-89
|
High
|
404 SEO Redirection SQL Injection (1.0)
|
CWE-89
|
CWE-89
|
High
|
404 to 301-Redirect, Log and Notify 404 Errors SQL Injection (2.0.2)
|
CWE-89
|
CWE-89
|
High
|
Abandoned Cart Lite for WooCommerce SQL Injection (1.8)
|
CWE-89
|
CWE-89
|
High
|
Abandoned Cart Lite for WooCommerce SQL Injection (5.8.1)
|
CWE-89
|
CWE-89
|
High
|
Accessibility Suite by Online ADA SQL Injection (2.0.10)
|
CWE-89
|
CWE-89
|
High
|
AccessPress Social Icons Multiple SQL Injection Vulnerabilities (1.6.6)
|
CWE-89
|
CWE-89
|
High
|
AccessPress Social Icons SQL Injection (1.8.0)
|
CVE-2021-24143
CWE-89
|
CWE-89
|
High
|
ACF:Better Search SQL Injection (2.0.2)
|
CWE-89
|
CWE-89
|
High
|
Active Directory Integration SQL Injection (1.1.8)
|
CWE-89
|
CWE-89
|
High
|
Add Edit Delete Listing Module SQL Injection (1.0)
|
CVE-2017-1002025
CWE-89
|
CWE-89
|
High
|
Adicon Server SQL Injection (1.2)
|
CWE-89
|
CWE-89
|
High
|
AdRotate-Ad manager & AdSense Ads 'adrotate-out.php' SQL Injection (3.6.6)
|
CVE-2011-4671
CWE-89
|
CWE-89
|
High
|
AdRotate-Ad manager & AdSense Ads 'track' Parameter SQL Injection (3.6.5)
|
CVE-2011-4671
CWE-89
|
CWE-89
|
High
|
AdRotate-Ad manager & AdSense Ads SQL Injection (3.9.4)
|
CVE-2014-1854
CWE-89
|
CWE-89
|
High
|
AdRotate-Ad manager & AdSense Ads SQL Injection (5.2)
|
CVE-2019-13570
CWE-89
|
CWE-89
|
High
|
AdRotate-Ad manager & AdSense Ads SQL Injection (5.8.3.1)
|
CVE-2021-24138
CWE-89
|
CWE-89
|
High
|
AdServe 'id' Parameter SQL Injection (0.2)
|
CVE-2008-0507
CWE-89
|
CWE-89
|
High
|
Advanced Booking Calendar SQL Injection (1.6.1)
|
CWE-89
|
CWE-89
|
High
|
Advanced Contact form 7 DB SQL Injection (1.6.0)
|
CWE-89
|
CWE-89
|
High
|
Advanced Contact form 7 DB SQL Injection (1.6.1)
|
CVE-2019-13571
CWE-89
|
CWE-89
|
High
|
Advanced Database Cleaner SQL Injection (3.0.1)
|
CVE-2021-24141
CWE-89
|
CWE-89
|
High
|
Advertizer 'id' Parameter SQL Injection (1.0)
|
CWE-89
|
CWE-89
|
High
|
Affiliates Manager SQL Injection (2.8.6)
|
CVE-2021-24844
CWE-89
|
CWE-89
|
High
|
AffiliateWP SQL Injection (1.5.6)
|
CWE-89
|
CWE-89
|
High
|
Agentejo Cockpit CMS resetpassword NoSQLi (CVE-2020-35847)
|
CVE-2020-35847
CWE-89
|
CWE-89
|
High
|
Ajax Category Dropdown Cross-Site Scripting and SQL Injection Vulnerabilities (0.1.5)
|
CWE-79
CWE-89
|
CWE-79
CWE-89
|
High
|
Ajax Gallery 'list.php' SQL Injection (3.0)
|
CWE-89
|
CWE-89
|
High
|
AJAX Post Search 'srch_txt' Parameter SQL Injection (1.2)
|
CVE-2012-5853
CWE-89
|
CWE-89
|
High
|
Ajax Store Locator SQL Injection (1.2.0)
|
CWE-89
|
CWE-89
|
High
|
All-in-one Floating Contact Form, Call, Chat, and 50+ Social Icon Tabs-My Sticky Elements SQL Injection (2.0.8)
|
CVE-2023-0487
CWE-89
|
CWE-89
|
High
|
All-In-One Security (AIOS)-Security and Firewall Multiple SQL Injection Vulnerabilities (3.8.2)
|
CVE-2014-6242
CWE-89
|
CWE-89
|
High
|
All-In-One Security (AIOS)-Security and Firewall SQL Injection (3.8.7)
|
CVE-2015-0894
CWE-89
|
CWE-89
|
High
|
All-In-One Security (AIOS)-Security and Firewall SQL Injection (3.9.0)
|
CWE-89
|
CWE-89
|
High
|
All-In-One Security (AIOS)-Security and Firewall SQL Injection (4.0.8)
|
CWE-89
|
CWE-89
|
High
|
Allow PHP in Posts and Pages 'id' Parameter SQL Injection (2.0.0.RC1)
|
CWE-89
|
CWE-89
|
High
|
All Video Gallery 'vid' Parameter Multiple SQL Injection Vulnerabilities (1.1)
|
CVE-2012-6653
CWE-89
|
CWE-89
|
High
|
All Video Gallery SQL Injection (1.2)
|
CVE-2014-5186
CWE-89
|
CWE-89
|
High
|
Amazon Product in a Post SQL Injection (3.5.2)
|
CWE-89
|
CWE-89
|
High
|
Answer My Question SQL Injection (1.3)
|
CWE-89
|
CWE-89
|
High
|
Appointment Booking Calendar SQL Injection (1.1.23)
|
CWE-89
|
CWE-89
|
High
|
Asgaros Forum Multiple SQL Injection Vulnerabilities (1.15.12)
|
CVE-2021-24827
CWE-89
|
CWE-89
|
High
|
A to Z Category Listing 'R' Parameter SQL Injection (1.3)
|
CWE-89
|
CWE-89
|
High
|
Auto Affiliate Links Multiple SQL Injection Vulnerabilities (4.9.9.4)
|
CWE-89
|
CWE-89
|
High
|
Automatic 'q' Parameter SQL Injection (2.0.3)
|
CWE-89
|
CWE-89
|
High
|
Availability Calendar SQL Injection (1.2)
|
CVE-2021-24606
CWE-89
|
CWE-89
|
High
|
AVH Extended Categories Widgets SQL Injection (4.0.0)
|
CWE-89
|
CWE-89
|
High
|
Awesome Filterable Portfolio Multiple SQL Injection Vulnerabilities (1.8.6)
|
CWE-89
|
CWE-89
|
High
|
Backup, Restore and Migrate WordPress Sites With the XCloner SQL Injection (4.2.161)
|
CWE-89
|
CWE-89
|
High
|
BadgeOS SQL Injection (3.7.0)
|
CVE-2022-0817
CWE-89
|
CWE-89
|
High
|
BadgeOS SQL Injection (3.7.1.2)
|
CVE-2022-2958
CWE-89
|
CWE-89
|
High
|
bbPress Like Button SQL Injection (1.5)
|
CWE-89
|
CWE-89
|
High
|
bbPress SQL Injection (2.5.14)
|
CWE-89
|
CWE-89
|
High
|
BBS e-Franchise SQL Injection (1.1.1)
|
CWE-89
|
CWE-89
|
High
|
Better Search SQL Injection (2.2.2)
|
CWE-89
|
CWE-89
|
High
|
BillQuick Web Suite SQL injection (CVE-2021-42258)
|
CVE-2021-42258
CWE-89
|
CWE-89
|
High
|
Blog2Social:Social Media Auto Post & Scheduler SQL Injection (5.5.0)
|
CVE-2019-13572
CWE-89
|
CWE-89
|
High
|
Blog2Social:Social Media Auto Post & Scheduler SQL Injection (6.3.0)
|
CVE-2021-24137
CWE-89
|
CWE-89
|
High
|
Blogger To WordPress SQL Injection (2.2.1)
|
CWE-89
|
CWE-89
|
High
|
Booking Calendar SQL Injection (6.2.2)
|
CWE-89
|
CWE-89
|
High
|
Booking Calendar SQL Injection (8.4.4)
|
CVE-2018-20556
CWE-89
|
CWE-89
|
High
|
BookingPress-Appointments Booking Calendar and Online Scheduling SQL Injection (1.0.10)
|
CVE-2022-0739
CWE-89
|
CWE-89
|
High
|
Breezing Forms SQL Injection (1.2.7.30)
|
CWE-89
|
CWE-89
|
High
|
Broken Link Manager SQL Injection (0.6.5)
|
CVE-2021-24550
CWE-89
|
CWE-89
|
High
|
BSK PDF Manager Multiple SQL Injection Vulnerabilities (1.3.2)
|
CVE-2014-4944
CWE-89
|
CWE-89
|
High
|
BSK PDF Manager SQL Injection (3.1.1)
|
CVE-2021-24860
CWE-89
|
CWE-89
|
High
|
BuddyPress 'page' Parameter SQL Injection (1.5.4)
|
CVE-2012-2109
CWE-89
|
CWE-89
|
High
|
BuddyPress Multiple SQL Injection Vulnerabilities (1.7.1)
|
CWE-89
|
CWE-89
|
High
|
Build App Online SQL Injection (1.0.18)
|
CVE-2022-3241
CWE-89
|
CWE-89
|
High
|
Calculated Fields Form Multiple SQL Injection Vulnerabilities (1.0.10)
|
CWE-89
|
CWE-89
|
High
|
Calendar by WD-Responsive Event Calendar for WordPress Multiple Cross-Site Scripting and SQL Injection Vulnerabilities (1.3.0)
|
CWE-79
CWE-89
|
CWE-79
CWE-89
|
High
|
Calendar by WD-Responsive Event Calendar for WordPress SQL Injection (1.4.9)
|
CVE-2015-2196
CWE-89
|
CWE-89
|
High
|
Calendar by WD-Responsive Event Calendar for WordPress SQL Injection (1.5.51)
|
CVE-2017-7719
CWE-89
|
CWE-89
|
High
|
Calendar Event Multi View Multiple SQL Injection Vulnerabilities (1.1.7)
|
CWE-89
|
CWE-89
|
High
|
Calendar Event Multi View SQL Injection (1.01)
|
CVE-2014-8586
CWE-89
|
CWE-89
|
High
|
Captcha by BestWebSoft SQL Injection (4.1.4)
|
CWE-89
|
CWE-89
|
High
|
Captcha by BestWebSoft SQL Injection (4.1.7)
|
CWE-89
|
CWE-89
|
High
|
Car Rental System SQL Injection (3.0)
|
CWE-89
|
CWE-89
|
High
|
Car Seller-Auto Classifieds Script SQL Injection (2.1.0)
|
CVE-2021-24285
CWE-89
|
CWE-89
|
High
|
Cart66 Lite::WordPress Ecommerce SQL Injection (1.5.1.17)
|
CVE-2014-9305
CWE-89
|
CWE-89
|
High
|
Cashtomer SQL Injection (1.0.0)
|
CVE-2021-24391
CWE-89
|
CWE-89
|
High
|
CBX Petition for WordPress SQL Injection (1.0.3)
|
CVE-2022-4383
CWE-89
|
CWE-89
|
High
|
cdnvote 'cdnvote-post.php' Multiple SQL Injection Vulnerabilities (0.4.1)
|
CVE-2011-5308
CWE-89
|
CWE-89
|
High
|
CevherShare 'cevhershare-admin.php' SQL Injection (2.0)
|
CWE-89
|
CWE-89
|
High
|
cformsII SQL Injection (14.12.3)
|
CWE-89
|
CWE-89
|
High
|
Chained Quiz SQL Injection (1.0.8)
|
CWE-89
|
CWE-89
|
High
|
Chameleon CSS SQL Injection (1.2)
|
CVE-2021-24626
CWE-89
|
CWE-89
|
High
|
Chat-Support Board-WordPress Chat Multiple SQL Injection Vulnerabilities (3.3.3)
|
CVE-2021-24741
CWE-89
|
CWE-89
|
High
|
Check & Log Email SQL Injection (1.0.2)
|
CVE-2021-24774
CWE-89
|
CWE-89
|
High
|
Chop Slider 3 SQL Injection (3.4)
|
CVE-2020-11530
CWE-89
|
CWE-89
|
High
|
CM Pop-Up banners for WordPress SQL Injection (1.5.10)
|
CVE-2023-30750
CWE-89
|
CWE-89
|
High
|
Collision Testimonials 'admin.php' SQL Injection (3.0)
|
CWE-89
|
CWE-89
|
High
|
Comic Book Management System SQL Injection (2.1.0)
|
CVE-2022-3856
CWE-89
|
CWE-89
|
High
|
Comment Highlighter SQL Injection (0.13)
|
CVE-2021-24393
CWE-89
|
CWE-89
|
High
|
Comment Rating 'id' Parameter SQL Injection (2.9.23)
|
CWE-89
|
CWE-89
|
High
|
Comment Rating SQL Injection and Security Bypass Weakness Vulnerabilities (2.9.32)
|
CWE-89
CWE-264
|
CWE-89
CWE-264
|
High
|
Comments-wpDiscuz SQL Injection (5.3.5)
|
CVE-2020-13640
CWE-89
|
CWE-89
|
High
|
Community Events 'id' Parameter SQL Injection (1.2.2)
|
CWE-89
|
CWE-89
|
High
|
Community Events SQL Injection (1.3.5)
|
CVE-2015-3313
CWE-89
|
CWE-89
|
High
|
Complianz-GDPR/CCPA Cookie Consent SQL Injection (6.3.3)
|
CVE-2022-3494
CWE-89
|
CWE-89
|
High
|
Contact Form 'wpcf_easyform_formid' Parameter SQL Injection (2.7.5)
|
CWE-89
|
CWE-89
|
High
|
Contact Form, Drag and Drop Form Builder for WordPress-Everest Forms SQL Injection (1.4.9)
|
CVE-2019-13575
CWE-89
|
CWE-89
|
High
|
Contact Form Builder-a plugin for creating contact and feedback forms Multiple SQL Injection Vulnerabilities (1.0.24)
|
CWE-89
|
CWE-89
|
High
|
Contact Form by WD-responsive drag & drop contact form builder tool SQL Injection (1.7.30)
|
CWE-89
|
CWE-89
|
High
|
Contact Form Submissions SQL Injection (1.6.4)
|
CVE-2021-24125
CWE-89
|
CWE-89
|
High
|
Contact Form Widget-Contact Query, Form Maker SQL Injection (1.0.9)
|
CVE-2019-17072
CWE-89
|
CWE-89
|
High
|
Content Audit Blind SQL Injection (1.6)
|
CVE-2014-5389
CWE-89
|
CWE-89
|
High
|
Content Timeline Multiple SQL Injection Vulnerabilities (4.4.2)
|
CVE-2017-14507
CWE-89
|
CWE-89
|
High
|
Contest Gallery-Photo Contest for WordPress SQL Injection (13.1.0.5)
|
CVE-2021-24915
CWE-89
|
CWE-89
|
High
|
Contus HD FLV Player 'process-sortable.php' SQL Injection (1.3)
|
CWE-89
|
CWE-89
|
High
|
Copperleaf Photolog 'cplphoto.php' SQL Injection (0.16)
|
CVE-2010-0673
CWE-89
|
CWE-89
|
High
|
Count per Day 'month' Parameter SQL Injection (2.17)
|
CWE-89
|
CWE-89
|
High
|
Count per Day SQL Injection (3.4)
|
CVE-2015-5533
CWE-89
|
CWE-89
|
High
|
Couponer 'print-coupon.php' SQL Injection (1.2)
|
CWE-89
|
CWE-89
|
High
|
CP Reservation Calendar SQL Injection (1.1.6)
|
CVE-2015-7235
CWE-89
|
CWE-89
|
High
|
Cryptocurrency Widgets Pack SQL Injection (1.8.1)
|
CVE-2022-4059
CWE-89
|
CWE-89
|
High
|
CSS & JavaScript Toolbox SQL Injection (9.2)
|
CWE-89
|
CWE-89
|
High
|
Custom Permalinks SQL Injection (1.1)
|
CWE-89
|
CWE-89
|
High
|
Daily Prayer Time SQL Injection (2022.02.28)
|
CVE-2022-0785
CWE-89
|
CWE-89
|
High
|
Dbox 3D Slider Lite SQL Injection (1.2.2)
|
CVE-2018-5374
CWE-89
|
CWE-89
|
High
|
Diary & Availability Calendar SQL Injection (1.0.3)
|
CVE-2021-24555
CWE-89
|
CWE-89
|
High
|
Display Users SQL Injection (2.0.0)
|
CVE-2021-24400
CWE-89
|
CWE-89
|
High
|
Donation with Goals and Paypal IPN by NonprofitCMS.org 'exporttocsv.php' SQL Injection (1.0)
|
CWE-89
|
CWE-89
|
High
|
Double Opt-In for Download SQL Injection (2.0.8)
|
CVE-2015-7517
CWE-89
|
CWE-89
|
High
|
Double Opt-In for Download SQL Injection (2.0.9)
|
CWE-89
|
CWE-89
|
High
|
Download Monitor SQL Injection (4.4.4)
|
CVE-2021-24786
CWE-89
|
CWE-89
|
High
|
Drupal Core 4.6.x SQL Injection (4.6.0 - 4.6.6)
|
CVE-2006-2742
CWE-89
|
CWE-89
|
High
|
Drupal Core 4.7.x SQL Injection (4.7.0 - 4.7.8)
|
CVE-2007-6299
CWE-89
|
CWE-89
|
High
|
Drupal Core 4.7.x SQL Injection (4.7.0)
|
CVE-2006-2742
CWE-89
|
CWE-89
|
High
|
Drupal Core 5.x SQL Injection (5.0 - 5.3)
|
CVE-2007-6299
CWE-89
|
CWE-89
|
High
|
Drupal Core 5.x SQL Injection (5.0 - 5.14)
|
CWE-89
|
CWE-89
|
High
|
Drupal Core 7.x SQL Injection (7.0 - 7.31)
|
CVE-2014-3704
CWE-89
|
CWE-89
|
High
|
Drupal core 7.x SQL injection vulnerability
|
CVE-2014-3704
CWE-89
|
CWE-89
|
High
|
DSubscribers SQL Injection (1.2)
|
CWE-89
|
CWE-89
|
High
|
DukaPress SQL Injection (2.5.9)
|
CVE-2015-1000011
CWE-89
|
CWE-89
|
High
|
Duplicate Page and Post SQL Injection (2.5.6)
|
CWE-89
|
CWE-89
|
High
|
Duplicate Page SQL Injection (3.3)
|
CWE-89
|
CWE-89
|
High
|
Duplicate Post SQL Injection (1.1.9)
|
CVE-2021-43408
CWE-89
|
CWE-89
|
High
|
Duplicator-WordPress Migration SQL Injection (0.5.14)
|
CWE-89
|
CWE-89
|
High
|
Easy2Map Multiple SQL Injection Vulnerabilities (1.2.4)
|
CVE-2015-4614
CVE-2015-4616
CWE-89
|
CWE-89
|
High
|
Easy Contact Form Lite 'sort_row.request.php' SQL Injection (1.0.7)
|
CWE-89
|
CWE-89
|
High
|
Easy Digital Downloads-Simple eCommerce for Selling Digital Files SQL Injection (3.1.0.3)
|
CVE-2023-23489
CWE-89
|
CWE-89
|
High
|
Easy Filter SQL Injection (1.5)
|
CWE-89
|
CWE-89
|
High
|
Easy Modal Multiple SQL Injection Vulnerabilities (2.0.17)
|
CVE-2017-12946
CVE-2017-12947
CWE-89
|
CWE-89
|
High
|
Easy Team Manager SQL Injection (1.3.2)
|
CVE-2017-1002023
CWE-89
|
CWE-89
|
High
|
Easy Testimonial Manager SQL Injection (1.2.0)
|
CVE-2021-24394
CWE-89
|
CWE-89
|
High
|
Edit Comments SQL Injection (0.3)
|
CVE-2021-24551
CWE-89
|
CWE-89
|
High
|
Ektron CMS400.NET ContentRatingGraph.aspx SQL injection
|
CVE-2008-5122
CWE-89
|
CWE-89
|
High
|
Email Before Download SQL Injection (3.4)
|
CWE-89
|
CWE-89
|
High
|
Email Before Download SQL Injection (3.6)
|
CWE-89
|
CWE-89
|
High
|
Email Before Download SQL Injection (6.7)
|
CVE-2021-24748
CWE-89
|
CWE-89
|
High
|
Email Log SQL Injection (2.4.6)
|
CVE-2021-24758
CWE-89
|
CWE-89
|
High
|
Email Subscribers & Newsletters SQL Injection (4.1.7)
|
CVE-2019-13569
CWE-89
|
CWE-89
|
High
|
Email Subscribers & Newsletters SQL Injection (4.3.0)
|
CVE-2019-20361
CWE-89
|
CWE-89
|
High
|
Embed Youtube Video SQL Injection (1.0)
|
CVE-2021-24395
CWE-89
|
CWE-89
|
High
|
Enable Media Replace SQL Injection and Arbitrary File Upload Vulnerabilities (2.3)
|
CWE-89
CWE-434
|
CWE-89
CWE-434
|
High
|
ENL Newsletter SQL Injection (1.0.1)
|
CVE-2014-4939
CWE-89
|
CWE-89
|
High
|
Entries For WPForms SQL Injection (1.4.0)
|
CWE-89
|
CWE-89
|
High
|
Evarisk 'ajax.php' SQL Injection (5.1.3.6)
|
CWE-89
|
CWE-89
|
High
|
Event Espresso Lite-Event Management and Registration System SQL Injection (3.1.37.11)
|
CVE-2017-1002026
CWE-89
|
CWE-89
|
High
|
Event Espresso Lite-Event Management and Registration System SQL Injection (3.1.37.12)
|
CVE-2017-14760
CWE-89
|
CWE-89
|
High
|
Eventify-Simple Events 'fetcheventdetails.php' SQL Injection (1.7.f)
|
CWE-89
|
CWE-89
|
High
|
Event List SQL Injection (0.7.8)
|
CVE-2017-9429
CWE-89
|
CWE-89
|
High
|
Event Registration 'event_id' Parameter SQL Injection (5.32)
|
CVE-2010-4839
CWE-89
|
CWE-89
|
High
|
Event Registration 'event_id' Parameter SQL Injection (5.44)
|
CVE-2010-4839
CWE-89
|
CWE-89
|
High
|
Event Registration 'id' Parameter SQL Injection (5.43)
|
CWE-89
|
CWE-89
|
High
|
Eventr SQL Injection (1.02.2)
|
CVE-2017-1002018
CVE-2017-1002019
CWE-89
|
CWE-89
|
High
|
Events Made Easy SQL Injection (2.2.35)
|
CVE-2021-25030
CWE-89
|
CWE-89
|
High
|
Events Manager 'events-manager.php' SQL Injection (2.1)
|
CWE-89
|
CWE-89
|
High
|
Events Manager Extended 'admin.php' SQL Injection (3.1.2)
|
CWE-89
|
CWE-89
|
High
|
Events Registration with PayPal IPN Multiple SQL Injection Vulnerabilities (2.1.2)
|
CWE-89
|
CWE-89
|
High
|
Events SQL Injection (2.3.4)
|
CWE-89
|
CWE-89
|
High
|
Export any WordPress data to XML/CSV SQL Injection (1.3.4)
|
CVE-2022-1800
CWE-89
|
CWE-89
|
High
|
Export Users With Meta SQL Injection (0.6.4)
|
CVE-2021-24451
CWE-89
|
CWE-89
|
High
|
Facebook Opengraph Meta 'all_meta.php' SQL Injection (1.0)
|
CWE-89
|
CWE-89
|
High
|
Facebook Promotion Generator for WordPress 'fbActivate.php' SQL Injection (1.3.3)
|
CWE-89
|
CWE-89
|
High
|
Fancy Product Designer-WooCommerce SQL Injection (4.7.4)
|
CVE-2021-4134
CWE-89
|
CWE-89
|
High
|
FAQs Manager SQL Injection (1.0)
|
CWE-89
|
CWE-89
|
High
|
FB Survey Pro 'id' Parameter SQL Injection (1.0)
|
CWE-89
|
CWE-89
|
High
|
fGallery SQL Injection (2.4.1)
|
CVE-2008-0491
CWE-89
|
CWE-89
|
High
|
FileBird-WordPress Media Library Folders & File Manager SQL Injection (4.7.3)
|
CVE-2021-24385
CWE-89
|
CWE-89
|
High
|
File Groups 'fgid' Parameter SQL Injection (1.1.2)
|
CWE-89
|
CWE-89
|
High
|
FireStorm Professional Real Estate 'id' Parameter SQL Injection (2.06.03)
|
CWE-89
|
CWE-89
|
High
|
FireStorm Professional Real Estate Multiple SQL Injection Vulnerabilities (2.05.01)
|
CWE-89
|
CWE-89
|
High
|
FireStorm Shopping Cart eCommerce SQL Injection (2.07.02)
|
CWE-89
|
CWE-89
|
High
|
Flexi Quote Rotator SQL Injection and Cross-Site Request Forgery Vulnerabilities (0.9)
|
CWE-89
CWE-352
|
CWE-89
CWE-352
|
High
|
FlightLog SQL Injection (3.0.2)
|
CVE-2021-24336
CWE-89
|
CWE-89
|
High
|
Floating Chat Widget:Contact Chat Icons, Telegram Chat, Line, WeChat, Email, SMS, Call Button-Chaty SQL Injection (3.0.2)
|
CVE-2022-3858
CWE-89
|
CWE-89
|
High
|
fMoblog 'id' Parameter SQL Injection (2.1)
|
CVE-2009-0968
CWE-89
|
CWE-89
|
High
|
FormCraft-Contact Form Builder SQL Injection (1.0.5)
|
CVE-2017-13137
CWE-89
|
CWE-89
|
High
|
Formidable Forms-Contact Form, Survey, Quiz, Calculator & Custom Form Builder SQL Injection (1.07.12)
|
CVE-2014-9309
CWE-89
|
CWE-89
|
High
|
Form Maker by 10Web-Mobile-Friendly Drag & Drop Contact Form Builder SQL Injection (1.13.3)
|
CVE-2019-10866
CWE-89
|
CWE-89
|
High
|
Form Maker by 10Web-Mobile-Friendly Drag & Drop Contact Form Builder SQL Injection (1.13.35)
|
CWE-89
|
CWE-89
|
High
|
Form Maker by 10Web-Mobile-Friendly Drag & Drop Contact Form Builder SQL Injection (1.14.2)
|
CWE-89
|
CWE-89
|
High
|
Form Maker by 10Web-Mobile-Friendly Drag & Drop Contact Form Builder SQL Injection (1.15.5)
|
CVE-2022-3300
CWE-89
|
CWE-89
|
High
|
Form Vibes-Database Manager for Forms SQL Injection (1.4.5)
|
CVE-2022-3764
CWE-89
|
CWE-89
|
High
|
ForumConverter SQL Injection (1.11)
|
CWE-89
|
CWE-89
|
High
|
FreshMail For WordPress Multiple SQL Injection Vulnerabilities (1.5.8)
|
CWE-89
|
CWE-89
|
High
|
Fuctweb CapCC 'plugins.php' SQL Injection (1.0)
|
CWE-89
|
CWE-89
|
High
|
FV Flowplayer Video Player SQL Injection (7.3.18.727)
|
CVE-2019-13573
CWE-89
|
CWE-89
|
High
|
FV Flowplayer Video Player SQL Injection (7.5.15.727)
|
CVE-2022-25607
CWE-89
|
CWE-89
|
High
|
G-Lock Double Opt-in Manager 'ajaxbackend.php' SQL Injection (2.6.2)
|
CWE-89
|
CWE-89
|
High
|
Gallery-Flagallery Photo Portfolio SQL Injection (2.55)
|
CWE-89
|
CWE-89
|
High
|
Gallery-Flagallery Photo Portfolio SQL Injection and Information Disclosure Vulnerabilities (0.59)
|
CWE-22
CWE-89
|
CWE-22
CWE-89
|
High
|
Gallery-Video Gallery and Youtube Gallery SQL Injection (2.0.9)
|
CWE-89
|
CWE-89
|
High
|
Gallery Objects SQL Injection (0.4)
|
CVE-2014-5201
CWE-89
|
CWE-89
|
High
|
Gallery transformation SQL Injection (1.0)
|
CVE-2017-1002028
CWE-89
|
CWE-89
|
High
|
GamiPress-The most flexible and powerful gamification for WordPress SQL Injection (2.5.7)
|
CVE-2023-24000
CWE-89
|
CWE-89
|
High
|
G Auto-Hyperlink SQL Injection (1.0.1)
|
CVE-2021-24627
CWE-89
|
CWE-89
|
High
|
GB Gallery Slideshow SQL Injection (1.2)
|
CVE-2014-8375
CWE-89
|
CWE-89
|
High
|
GD Star Rating 'de' Parameter SQL Injection (1.9.10)
|
CWE-89
|
CWE-89
|
High
|
GD Star Rating 'votes' Parameter SQL Injection (1.9.8)
|
CWE-89
|
CWE-89
|
High
|
GeoDirectory-WordPress Business Directory and Classified Ads Listings SQL Injection (2.2.23)
|
CVE-2023-0278
CWE-89
|
CWE-89
|
High
|
GeoDirectory Location Manager Multiple SQL Injection Vulnerabilities (2.1.0.9)
|
CVE-2021-24361
CWE-89
|
CWE-89
|
High
|
GeoServer SQLi (CVE-2023-25157)
|
CVE-2023-25157
CWE-89
|
CWE-89
|
High
|
Gift Vouchers (Gift Cards and Packages) (WooCommerce Supported) SQL Injection (1.0.5)
|
CVE-2018-16159
CWE-89
|
CWE-89
|
High
|
GigPress Multiple SQL Injection Vulnerabilities (2.3.8)
|
CVE-2015-4066
CWE-89
|
CWE-89
|
High
|
GigPress SQL Injection (2.3.28)
|
CVE-2023-0381
CWE-89
|
CWE-89
|
High
|
Giveaway SQL Injection (1.2.2)
|
CVE-2021-24497
CWE-89
|
CWE-89
|
High
|
GiveWP-Donation and Fundraising Platform SQL Injection (2.5.0)
|
CVE-2019-13578
CWE-89
|
CWE-89
|
High
|
GiveWP-Donation and Fundraising Platform SQL Injection (2.24.0)
|
CVE-2023-0224
CWE-89
|
CWE-89
|
High
|
Global Content Blocks 'gcb_export.php' SQL Injection (1.2)
|
CWE-89
|
CWE-89
|
High
|
Good LMS-Learning Management System SQL Injection (2.1.4)
|
CVE-2020-27481
CWE-89
|
CWE-89
|
High
|
Google Analytics Dashboard SQL Injection (2.0.4)
|
CWE-89
|
CWE-89
|
High
|
Google Doc Embedder SQL Injection (2.5.14)
|
CVE-2014-9173
CWE-89
|
CWE-89
|
High
|
Google Doc Embedder SQL Injection (2.5.16)
|
CVE-2014-9173
CWE-89
|
CWE-89
|
High
|
Google Map SQL Injection (2.2.5)
|
CWE-89
|
CWE-89
|
High
|
Gravity Forms SQL Injection (1.9.3.5)
|
CVE-2015-2260
CWE-89
|
CWE-89
|
High
|
Groundhogg-Marketing Automation & CRM for WordPress SQL Injection (1.3.11.13)
|
CWE-89
|
CWE-89
|
High
|
GSEOR-WordPress SEO SQL Injection (1.3)
|
CVE-2021-24396
CWE-89
|
CWE-89
|
High
|
Handsome Testimonials & Reviews SQL Injection (2.0.7)
|
CVE-2021-24492
CWE-89
|
CWE-89
|
High
|
HD Webplayer Multiple SQL Injection Vulnerabilities (1.1)
|
CWE-89
|
CWE-89
|
High
|
HDW Player (Video Player & Video Gallery) SQL Injection (2.4.2)
|
CVE-2014-5180
CWE-89
|
CWE-89
|
High
|
Header Footer Code Manager SQL Injection (1.1.13)
|
CVE-2021-24791
CWE-89
|
CWE-89
|
High
|
Hibernate Query Language (HQL) Injection
|
CWE-564
|
CWE-564
|
High
|
Hitasoft FLV Player 'id' Parameter SQL Injection (1.1)
|
CWE-89
|
CWE-89
|
High
|
iCopyright Toolbar 'icopyright_xml.php' SQL Injection (1.1.4)
|
CWE-89
|
CWE-89
|
High
|
ImageDrop 'ImageDrop.php' Blind SQL Injection (1.1.2)
|
CWE-89
|
CWE-89
|
High
|
Image Gallery-Responsive Photo Gallery SQL Injection (1.0.6)
|
CVE-2014-7153
CWE-89
|
CWE-89
|
High
|
Image Gallery-Responsive Photo Gallery SQL Injection (1.8.9)
|
CVE-2016-11018
CWE-89
|
CWE-89
|
High
|
Image Intense SQL Injection (3.2.5)
|
CWE-89
|
CWE-89
|
High
|
Image Optimizer, Resizer and CDN-Sirv SQL Injection (1.3.1)
|
CWE-89
|
CWE-89
|
High
|
Image Slider by Ays-Responsive Slider and Carousel SQL Injection (2.4.9)
|
CVE-2021-24463
CWE-89
|
CWE-89
|
High
|
InLinks SQL Injection (1.0)
|
CVE-2017-16955
CWE-89
|
CWE-89
|
High
|
IP Logger 'map-details.php' SQL Injection (3.0)
|
CWE-89
|
CWE-89
|
High
|
I Recommend This SQL Injection (3.7.2)
|
CWE-89
|
CWE-89
|
High
|
I Recommend This SQL Injection (3.7.7)
|
CWE-89
|
CWE-89
|
High
|
iThemes Security (formerly Better WP Security) SQL Injection (7.0.2)
|
CVE-2018-12636
CWE-89
|
CWE-89
|
High
|
IWantOneButton 'updateAJAX.php' SQL Injection (3.0.1)
|
CWE-89
|
CWE-89
|
High
|
JiangQie Official Website Mini Program SQL Injection (1.1.0)
|
CVE-2021-24303
CWE-89
|
CWE-89
|
High
|
Joomla! 1.6.0 SQL injection vulnerability
|
CVE-2011-1151
CWE-89
|
CWE-89
|
High
|
Joomla! 1.6/1.7/2.5 privilege escalation vulnerability
|
CVE-2012-1563
CWE-264
|
CWE-264
|
High
|
Joomla! 1.7/2.5 SQL injection vulnerability
|
CVE-2012-1116
CWE-89
|
CWE-89
|
High
|
Joomla! 3.2.1 sql injection
|
CWE-89
|
CWE-89
|
High
|
Joomla! component Kunena Forum multiple vulnerabilities
|
CVE-2014-9102
CVE-2014-9103
CWE-89
|
CWE-89
|
High
|
Joomla! Core 1.0.x SQL Injection (1.0.0 - 1.0.11)
|
CVE-2007-0374
CWE-89
|
CWE-89
|
High
|
Joomla! Core 1.5.x Multiple SQL Injection Vulnerabilities (1.5.0 - 1.5.21)
|
CVE-2010-4166
CVE-2010-4696
CWE-89
|
CWE-89
|
High
|
Joomla! Core 1.7.x SQL Injection (1.7.0 - 1.7.4)
|
CVE-2012-1116
CWE-89
|
CWE-89
|
High
|
Joomla! Core 2.5.x SQL Injection (2.5.0 - 2.5.1)
|
CVE-2012-1116
CWE-89
|
CWE-89
|
High
|
Joomla! Core 3.7.0 SQL Injection (3.7.0)
|
CVE-2017-8917
CWE-89
|
CWE-89
|
High
|
Joomla! Core 3.x.x SQL Injection (3.0.0 - 3.4.6)
|
CWE-89
|
CWE-89
|
High
|
Joomla! Core 3.x.x SQL Injection (3.0.0 - 3.9.22)
|
CVE-2020-35613
CWE-89
|
CWE-89
|
High
|
Joomla! Core 3.x.x SQL Injection (3.1.0 - 3.2.2)
|
CVE-2014-7981
CWE-89
|
CWE-89
|
High
|
Joomla! Core 3.x.x SQL Injection (3.2.0 - 3.4.4)
|
CVE-2015-7297
CVE-2015-7857
CVE-2015-7858
CWE-89
|
CWE-89
|
High
|
Joomla! Core 3.x.x SQL Injection (3.5.0 - 3.8.5)
|
CVE-2018-8045
CWE-89
|
CWE-89
|
High
|
Joomla! Core Multiple SQL Injection Vulnerabilities (2.5.0 - 3.9.13)
|
CVE-2019-19846
CWE-89
|
CWE-89
|
High
|
Joomla! Core SQL Injection (1.7.0 - 3.9.15)
|
CVE-2020-10243
CWE-89
|
CWE-89
|
High
|
Joomla! SQL injection vulnerability
|
CVE-2015-7297
CVE-2015-7857
CVE-2015-7858
CWE-89
|
CWE-89
|
High
|
Joomla! v3.2.2 SQL injection
|
CWE-89
|
CWE-89
|
High
|
JoomSport-for Sports: Team & League, Football, Hockey & more Multiple SQL Injection Vulnerabilities (5.2.5)
|
CVE-2022-2717
CVE-2022-2718
CWE-89
|
CWE-89
|
High
|
JoomSport-for Sports: Team & League, Football, Hockey & more SQL Injection (3.3)
|
CVE-2019-14348
CWE-89
|
CWE-89
|
High
|
Joy Of Text Lite-SMS messaging for WordPress SQL Injection (2.3.0)
|
CVE-2022-4099
CWE-89
|
CWE-89
|
High
|
Js-appointment 'searchdata.php' SQL Injection (1.5)
|
CWE-89
|
CWE-89
|
High
|
JS Help Desk (formerly JS Support Ticket) SQL Injection (2.1.0)
|
CWE-89
|
CWE-89
|
High
|
JTRT Responsive Tables SQL Injection (4.1)
|
CWE-89
|
CWE-89
|
High
|
Kama Click Counter SQL Injection (3.4.9)
|
CVE-2017-18614
CWE-89
|
CWE-89
|
High
|
KittyCatfish Ads by Missilesilo SQL Injection (2.2)
|
CWE-89
|
CWE-89
|
High
|
Knews Multilingual Newsletters SQL Injection (1.7.0)
|
CWE-89
|
CWE-89
|
High
|
KNR Author List Widget 'listItem[]' Parameter SQL Injection (2.0.0)
|
CWE-89
|
CWE-89
|
High
|
LeagueManager Multiple SQL Injection Vulnerabilities (3.9.1.1)
|
CWE-89
|
CWE-89
|
High
|
LeagueManager SQL Injection (3.8)
|
CVE-2013-1852
CWE-89
|
CWE-89
|
High
|
LearnDash LMS SQL Injection (3.1.5)
|
CVE-2020-6009
CWE-89
|
CWE-89
|
High
|
LearnDash LMS SQL Injection (4.5.3)
|
CVE-2023-28777
CWE-89
|
CWE-89
|
High
|
LearnPress-WordPress LMS SQL Injection (3.2.6.7)
|
CVE-2020-6010
CWE-89
|
CWE-89
|
High
|
LearnPress-WordPress LMS SQL Injection (4.1.3.2)
|
CVE-2021-24951
CWE-89
|
CWE-89
|
High
|
LetsRecover-WooCommerce Abandoned Cart Notifications Multiple SQL Injection Vulnerabilities (1.1.0)
|
CVE-2022-4355
CVE-2022-4356
CVE-2022-4357
CWE-89
|
CWE-89
|
High
|
lighttpd v1.4.34 SQL injection and path traversal
|
CVE-2014-2323
CVE-2014-2324
CWE-89
|
CWE-89
|
High
|
Like Dislike Counter SQL Injection (1.2.3)
|
CWE-89
|
CWE-89
|
High
|
Limit Attempts by BestWebSoft SQL Injection (1.1.0)
|
CWE-89
|
CWE-89
|
High
|
Link Library 'id' Parameter Cross-Site Scripting and SQL Injection Vulnerabilities (5.0.8)
|
CWE-79
CWE-89
|
CWE-79
CWE-89
|
High
|
Link Library 'searchll' Parameter SQL Injection (5.2.1)
|
CWE-89
|
CWE-89
|
High
|
Link Library SQL Injection (5.9.13.26)
|
CWE-89
|
CWE-89
|
High
|
Link Log-external link click monitor SQL Injection (2.0)
|
CVE-2015-9344
CWE-89
|
CWE-89
|
High
|
Listing, Classified Ads & Business Directory-uListing SQL Injection (2.0.3)
|
CVE-2021-36880
CWE-89
|
CWE-89
|
High
|
Live Forms-Visual Form Builder SQL Injection (3.0.1)
|
CWE-89
|
CWE-89
|
High
|
Loginizer SQL Injection (1.6.3)
|
CVE-2020-27615
CWE-89
|
CWE-89
|
High
|
M-vSlider SQL Injection (2.1.3)
|
CVE-2021-24557
CWE-89
|
CWE-89
|
High
|
Macromedia Dreamweaver remote database scripts
|
CVE-2004-1893
CWE-200
|
CWE-200
|
High
|
Magento (2.2.0 to 2.3.0) Unauthenticated SQL Injection Vulnerability
|
CWE-89
|
CWE-89
|
High
|
Mail Masta Multiple SQL Injection Vulnerabilities (1.0)
|
CVE-2017-6095
CVE-2017-6096
CVE-2017-6097
CVE-2017-6098
CVE-2017-6570
CVE-2017-6571
CVE-2017-6572
CVE-2017-6573
CVE-2017-6574
CVE-2017-6575
CVE-2017-6576
CVE-2017-6577
CVE-2017-6578
CWE-89
|
CWE-89
|
High
|
MailPoet Newsletters (Previous) SQL Injection (2.2)
|
CVE-2013-1408
CWE-89
|
CWE-89
|
High
|
MainWP Child-Securely connects sites to the MainWP WordPress Manager Dashboard SQL Injection (4.1.7.1)
|
CVE-2021-24877
CWE-89
|
CWE-89
|
High
|
MainWP Child Reports SQL Injection (2.0.7)
|
CVE-2021-24754
CWE-89
|
CWE-89
|
High
|
Mang Board WP SQL Injection (1.9.9)
|
CVE-2021-26609
CWE-89
|
CWE-89
|
High
|
MantisBT multiple security issues
|
CVE-2014-9571
CVE-2014-9572
CVE-2014-9573
CVE-2014-9624
CVE-2015-1042
CWE-200
|
CWE-200
|
High
|
Mapwiz SQL Injection (1.0.1)
|
CVE-2022-4546
CWE-89
|
CWE-89
|
High
|
Master Slider-Responsive Touch Slider SQL Injection (2.5.1)
|
CWE-89
|
CWE-89
|
High
|
MAZ Loader-Preloader Builder for WordPress SQL Injection (1.3.2)
|
CVE-2021-24669
CWE-89
|
CWE-89
|
High
|
Media Library Assistant SQL Injection (2.84)
|
CWE-89
|
CWE-89
|
High
|
Media Library Assistant SQL Injection (3.05)
|
CVE-2023-0279
CWE-89
|
CWE-89
|
High
|
Media Library Categories 'termid' Parameter SQL Injection (1.0.6)
|
CWE-89
|
CWE-89
|
High
|
Media Search Enhanced SQL Injection (0.6.0)
|
CWE-89
|
CWE-89
|
High
|
Membership by Supsystic SQL Injection (1.4.7)
|
CWE-89
|
CWE-89
|
High
|
Membership Simplified Multiple SQL Injection Vulnerabilities (1.58)
|
CVE-2017-1002009
CVE-2017-1002010
CWE-89
|
CWE-89
|
High
|
Menu Creator 'updateSortOrder.php' SQL Injection (1.1.7)
|
CWE-89
|
CWE-89
|
High
|
Meow Gallery (+ Gallery Block) SQL Injection (4.1.8)
|
CVE-2021-24465
CWE-89
|
CWE-89
|
High
|
Microblog Poster SQL Injection (1.6.0)
|
CWE-89
|
CWE-89
|
High
|
Microblog Poster SQL Injection (1.6.1)
|
CWE-89
|
CWE-89
|
High
|
MicroCopy SQL Injection (1.1.0)
|
CVE-2021-24397
CWE-89
|
CWE-89
|
High
|
Migration, Backup, Staging-WPvivid SQL Injection (0.9.52)
|
CWE-89
|
CWE-89
|
High
|
Mingle Forum 'edit_post_id' Parameter SQL Injection (1.0.31)
|
CWE-89
|
CWE-89
|
High
|
Mingle Forum Multiple Cross-Site Scripting and SQL Injection Vulnerabilities (1.0.32.1)
|
CVE-2012-5327
CVE-2012-5328
CWE-79
CWE-89
|
CWE-79
CWE-89
|
High
|
Mingle Forum SQL Injection and Security Bypass Vulnerabilities (1.0.26)
|
CWE-89
CWE-425
|
CWE-89
CWE-425
|
High
|
MiniCart SQL Injection (1.00.1)
|
CWE-89
|
CWE-89
|
High
|
MM Duplicate 'index.php' SQL Injection (1.2)
|
CWE-89
|
CWE-89
|
High
|
MM Forms Community 'edit_details.php' SQL Injection (1.2.3)
|
CWE-89
|
CWE-89
|
High
|
MoodThingy Mood Rating Widget 'postID' Parameter Blind SQL Injection (0.8.7)
|
CWE-89
|
CWE-89
|
High
|
MoodThingy Mood Rating Widget SQL Injection (0.9.1)
|
CWE-89
|
CWE-89
|
High
|
MukioPlayer SQL Injection (1.6)
|
CWE-89
|
CWE-89
|
High
|
Multi Feed Reader SQL Injection (2.2.3)
|
CVE-2017-2195
CWE-89
|
CWE-89
|
High
|
multimedial images SQL Injection (1.0b)
|
CVE-2022-4370
CWE-89
|
CWE-89
|
High
|
My Category Order 'parentID' Parameter SQL Injection (2.8)
|
CVE-2009-4748
CWE-89
|
CWE-89
|
High
|
myCred-Points, Rewards, Gamification, Ranks, Badges & Loyalty SQL Injection (2.2)
|
CVE-2021-24755
CWE-89
|
CWE-89
|
High
|
Myftp SQL Injection (2.0)
|
CWE-89
|
CWE-89
|
High
|
myLinksDump 'url' Parameter SQL Injection (1.2)
|
CVE-2010-2924
CWE-89
|
CWE-89
|
High
|
mySTAT 'mystat.php' SQL Injection (2.6)
|
CWE-89
|
CWE-89
|
High
|
Mz-jajak 'id' Parameter SQL Injection (2.1)
|
CWE-89
|
CWE-89
|
High
|
Nagios core config manager SQL injection vulnerability
|
CVE-2013-6875
CWE-89
|
CWE-89
|
High
|
Nagios XI Unauthenticated SQLi CVE-2018-8734
|
CVE-2018-8734
CWE-89
|
CWE-89
|
High
|
Newsletter by Supsystic SQL Injection (1.5.5)
|
CWE-89
|
CWE-89
|
High
|
Newsletter SQL Injection (3.0.8)
|
CWE-89
|
CWE-89
|
High
|
NEX-Forms-Ultimate Form builder Multiple SQL Injection Vulnerabilities (4.0)
|
CWE-89
|
CWE-89
|
High
|
NEX-Forms-Ultimate Form builder SQL Injection (3.0)
|
CWE-89
|
CWE-89
|
High
|
NextGEN Gallery-WordPress Gallery SQL Injection (2.1.77)
|
CWE-89
|
CWE-89
|
High
|
NextGEN Gallery-WordPress Gallery SQL Injection (3.2.10)
|
CVE-2019-14314
CWE-89
|
CWE-89
|
High
|
NextGEN Smooth Gallery 'galleryID' Parameter SQL Injection (1.2)
|
CWE-89
|
CWE-89
|
High
|
Ninja Announcements Lite 'ninja_annc.php' SQL Injection (1.2.3)
|
CWE-89
|
CWE-89
|
High
|
Ninja Forms Contact Form-The Drag and Drop Form Builder for WordPress SQL Injection (2.9.29)
|
CWE-89
|
CWE-89
|
High
|
Ninja Forms Contact Form-The Drag and Drop Form Builder for WordPress SQL Injection (2.9.55.1)
|
CWE-89
|
CWE-89
|
High
|
Ninja Forms Contact Form-The Drag and Drop Form Builder for WordPress SQL Injection (3.3.21.1)
|
CVE-2019-15025
CWE-89
|
CWE-89
|
High
|
Ninja Forms Contact Form-The Drag and Drop Form Builder for WordPress SQL Injection (3.6.3)
|
CVE-2021-24889
CWE-89
|
CWE-89
|
High
|
NOSpamPTI SQL Injection (2.1)
|
CVE-2013-5917
CWE-89
|
CWE-89
|
High
|
Note Press SQL Injection (0.1.1)
|
CWE-89
|
CWE-89
|
High
|
NotificationX-Best FOMO, Social Proof, WooCommerce Sales Popup & Notification Bar With Elementor SQL Injection (2.3.8)
|
CVE-2022-0349
CWE-89
|
CWE-89
|
High
|
NotificationX-Best FOMO, Social Proof, WooCommerce Sales Popup & Notification Bar With Elementor SQL Injection (2.3.11)
|
CWE-89
|
CWE-89
|
High
|
OdiHost Newsletter 'openstat.php' SQL Injection (1.0)
|
CWE-89
|
CWE-89
|
High
|
Official MailerLite Sign Up Forms SQL Injection (1.4.3)
|
CWE-89
|
CWE-89
|
High
|
Olimometer SQL Injection (2.56)
|
CWE-89
|
CWE-89
|
High
|
Online Hotel Booking System Pro SQL Injection (1.0)
|
CWE-89
|
CWE-89
|
High
|
OpenX xajaxargs SQL injection vulnerability
|
CWE-89
|
CWE-89
|
High
|
oQey Gallery 'gal_id' Parameter SQL Injection (0.4.8)
|
CWE-89
|
CWE-89
|
High
|
oQey Headers 'oqey_settings.php' SQL Injection (0.3)
|
CWE-89
|
CWE-89
|
High
|
Oracle E-Business Suite SQL injection (CVE-2017-3549)
|
CWE-89
|
CWE-89
|
High
|
Page Visit Counter SQL Injection (4.0.9)
|
CWE-89
|
CWE-89
|
High
|
Paid Business Listings Blind SQL Injection (1.0.2)
|
CWE-89
|
CWE-89
|
High
|
Paid Downloads 'download_key' Parameter SQL Injection (2.01)
|
CWE-89
|
CWE-89
|
High
|
Paid Memberships Pro-Restrict Member Access to Content, Courses, Communities-Free or Paid Subscriptions SQL Injection (2.3.2)
|
CVE-2020-5579
CWE-89
|
CWE-89
|
High
|
Paid Memberships Pro-Restrict Member Access to Content, Courses, Communities-Free or Paid Subscriptions SQL Injection (2.5.5)
|
CVE-2021-20678
CWE-89
|
CWE-89
|
High
|
Paid Memberships Pro-Restrict Member Access to Content, Courses, Communities-Free or Paid Subscriptions SQL Injection (2.6.6)
|
CVE-2021-25114
CWE-89
|
CWE-89
|
High
|
Paid Memberships Pro-Restrict Member Access to Content, Courses, Communities-Free or Paid Subscriptions SQL Injection (2.9.7)
|
CVE-2023-23488
CWE-89
|
CWE-89
|
High
|
Parallels Plesk SQL injection vulnerability
|
CVE-2012-1557
CWE-89
|
CWE-89
|
High
|
Participants Database SQL Injection (1.5.4.8)
|
CVE-2014-3961
CWE-89
|
CWE-89
|
High
|
Participants Database SQL Injection (1.9.5.5)
|
CVE-2020-8596
CWE-89
|
CWE-89
|
High
|
Party Hall Booking Manager SQL Injection (1.1)
|
CWE-89
|
CWE-89
|
High
|
Payment Form for PayPal Pro SQL Injection (1.1.64)
|
CVE-2020-14092
CWE-89
|
CWE-89
|
High
|
PayPal WP Button Manager SQL Injection (0.1.1)
|
CWE-89
|
CWE-89
|
High
|
Paytm-Donation SQL Injection (1.3.2)
|
CVE-2021-24554
CWE-89
|
CWE-89
|
High
|
Pay With Tweet SQL Injection and Cross-Site Scripting Vulnerabilities (1.1)
|
CVE-2012-5349
CVE-2012-5350
CWE-89
|
CWE-89
|
High
|
Permalink Manager Lite SQL Injection (2.2.12)
|
CVE-2021-24769
CWE-89
|
CWE-89
|
High
|
Photo Gallery by 10Web-Mobile-Friendly Image Gallery SQL Injection (1.2.7)
|
CVE-2015-1055
CWE-89
|
CWE-89
|
High
|
Photo Gallery by 10Web-Mobile-Friendly Image Gallery SQL Injection (1.3.29)
|
CWE-89
|
CWE-89
|
High
|
Photo Gallery by 10Web-Mobile-Friendly Image Gallery SQL Injection (1.3.50)
|
CVE-2017-12977
CWE-89
|
CWE-89
|
High
|
Photo Gallery by 10Web-Mobile-Friendly Image Gallery SQL Injection (1.5.30)
|
CVE-2019-14313
CWE-89
|
CWE-89
|
High
|
Photo Gallery by 10Web-Mobile-Friendly Image Gallery SQL Injection (1.5.54)
|
CVE-2021-24139
CWE-89
|
CWE-89
|
High
|
Photo Gallery by Ays-Responsive Image Gallery SQL Injection (1.0.0)
|
CWE-89
|
CWE-89
|
High
|
Photo Gallery by Ays-Responsive Image Gallery SQL Injection (4.4.3)
|
CVE-2021-24462
CWE-89
|
CWE-89
|
High
|
Photoracer 'id' Parameter SQL Injection (1.0)
|
CVE-2009-2122
CWE-89
|
CWE-89
|
High
|
Photoracer Multiple Cross-Site Scripting and SQL Injection Vulnerabilities (1.0)
|
CWE-79
CWE-89
|
CWE-79
CWE-89
|
High
|
PHP object deserialization of user-supplied data
|
CWE-20
|
CWE-20
|
Medium
|
PICA Photo Gallery SQL Injection (1.0)
|
CWE-89
|
CWE-89
|
High
|
Pierre's Wordspew 'wordspew.php' Multiple SQL Injection Vulnerabilities (5.61)
|
CWE-89
|
CWE-89
|
High
|
Pinpoint Booking System-#1 WordPress Booking SQL Injection (1.2)
|
CVE-2014-3210
CWE-89
|
CWE-89
|
High
|
Pinpoint Booking System-#1 WordPress Booking SQL Injection (2.0)
|
CWE-89
|
CWE-89
|
High
|
Pinpoint Booking System-#1 WordPress Booking SQL Injection (2.9.9.2.8)
|
CVE-2023-0220
CWE-89
|
CWE-89
|
High
|
Plugmatter Optin Feature Box Multiple SQL Injection Vulnerabilities (2.0.13)
|
CWE-89
|
CWE-89
|
High
|
Podcast Importer SecondLine SQL Injection (1.3.7)
|
CVE-2022-1023
CWE-89
|
CWE-89
|
High
|
Podlove Podcast Publisher SQL Injection (2.5.3)
|
CVE-2017-12949
CWE-89
|
CWE-89
|
High
|
Podlove Podcast Publisher SQL Injection (3.5.5)
|
CVE-2021-24666
CWE-89
|
CWE-89
|
High
|
Pods-Custom Content Types and Fields SQL Injection (2.5.1.1)
|
CWE-89
|
CWE-89
|
High
|
Poll, Survey, Questionnaire and Voting system SQL Injection (1.2.4)
|
CWE-89
|
CWE-89
|
High
|
Poll, Survey, Questionnaire and Voting system SQL Injection (1.5.2)
|
CVE-2021-24442
CWE-89
|
CWE-89
|
High
|
Poll Maker SQL Injection (3.2.0)
|
CVE-2021-24483
CWE-89
|
CWE-89
|
High
|
Poll Maker SQL Injection (3.4.1)
|
CVE-2021-24651
CWE-89
|
CWE-89
|
High
|
Popup box SQL Injection (2.3.3)
|
CVE-2021-24458
CWE-89
|
CWE-89
|
High
|
Popup Builder-Responsive WordPress Pop up-Subscription & Newsletter SQL Injection (2.6.7.6)
|
CVE-2020-9006
CWE-89
|
CWE-89
|
High
|
Popup Builder-Responsive WordPress Pop up-Subscription & Newsletter SQL Injection (3.44)
|
CVE-2019-14695
CWE-89
|
CWE-89
|
High
|
Popup Like box-Page SQL Injection (3.5.2)
|
CVE-2021-24460
CWE-89
|
CWE-89
|
High
|
Portfolio Responsive Gallery SQL Injection (1.1.7)
|
CVE-2021-24457
CWE-89
|
CWE-89
|
High
|
Post Content XMLRPC SQL Injection (1.0)
|
CVE-2021-24629
CWE-89
|
CWE-89
|
High
|
Post Form-Registration Form-Profile Form for User Profiles and Content Forms for User Submissions SQL Injection (2.2.7)
|
CVE-2018-21003
CWE-89
|
CWE-89
|
High
|
post highlights 'ph_settings.php' SQL Injection (2.2)
|
CWE-89
|
CWE-89
|
High
|
PowerPress Podcasting by Blubrry SQL Injection (6.0.2)
|
CWE-89
|
CWE-89
|
High
|
Product Catalog 8 SQL Injection (1.2.0)
|
CWE-89
|
CWE-89
|
High
|
Product Catalog Multiple SQL Injection Vulnerabilities (2.1)
|
CWE-89
|
CWE-89
|
High
|
Product Catalog SQL Injection (3.1.2)
|
CWE-89
|
CWE-89
|
High
|
Product Catalog SQL Injection (3.9.8)
|
CWE-89
|
CWE-89
|
High
|
Product Catalog SQL Injection (4.2.2)
|
CWE-89
|
CWE-89
|
High
|
Product Feed on WooCommerce for Google, Awin, Shareasale, Bing, and More SQL Injection (3.3.0.3)
|
CVE-2021-24511
CWE-89
|
CWE-89
|
High
|
Profile Builder-User Profile & User Registration Forms SQL Injection (3.3.2)
|
CWE-89
|
CWE-89
|
High
|
Profile Builder Pro SQL Injection (3.3.2)
|
CWE-89
|
CWE-89
|
High
|
Profiles 'bio-img.php' SQL Injection (2.0RC1)
|
CWE-89
|
CWE-89
|
High
|
Progress MOVEit Transfer SQL Injection
|
CVE-2023-34362
CWE-89
|
CWE-89
|
High
|
ProPlayer 'pp_playlist_id' Parameter SQL Injection (4.7.7)
|
CWE-89
|
CWE-89
|
High
|
ProPlayer SQL Injection (4.7.9.1)
|
CWE-89
|
CWE-89
|
High
|
PureHTML 'alter.php' SQL Injection (1.0.0)
|
CWE-89
|
CWE-89
|
High
|
Python object deserialization of user-supplied data
|
CWE-20
|
CWE-20
|
Medium
|
Q and A FAQ and Knowledge Base for WordPress Multiple SQL Injection Vulnerabilities (1.0.6.2)
|
CWE-89
|
CWE-89
|
High
|
Qe SEO Handyman SQL Injection (1.0)
|
CVE-2022-4352
CWE-89
|
CWE-89
|
High
|
Quartz SQL Injection (1.01.1)
|
CVE-2014-5185
CWE-89
|
CWE-89
|
High
|
Quiz And Survey Master-Best Quiz, Exam and Survey Multiple SQL Injection Vulnerabilities (4.4.2)
|
CWE-89
|
CWE-89
|
High
|
Quiz And Survey Master-Best Quiz, Exam and Survey Multiple SQL Injection Vulnerabilities (4.4.3)
|
CWE-89
|
CWE-89
|
High
|
Quiz And Survey Master-Best Quiz, Exam and Survey SQL Injection (7.1.11)
|
CVE-2021-24221
CWE-89
|
CWE-89
|
High
|
Quiz And Survey Master-Best Quiz, Exam and Survey SQL Injection (7.1.13)
|
CWE-89
|
CWE-89
|
High
|
Quiz And Survey Master-Best Quiz, Exam and Survey SQL Injection (7.3.4)
|
CWE-89
|
CWE-89
|
High
|
Quiz Maker Multiple SQL Injection Vulnerabilities (6.2.0.8)
|
CVE-2021-24456
CWE-89
|
CWE-89
|
High
|
Quote-O-Matic SQL Injection (1.0.5)
|
CVE-2022-4373
CWE-89
|
CWE-89
|
High
|
RapidLoad Power-Up for Autoptimize SQL Injection (1.6.35)
|
CVE-2022-47593
CWE-89
|
CWE-89
|
High
|
Registration Forms-User Registration Forms, Invitation-Based Registrations, Front-end User Profile, Login Form & Content Restriction SQL Injection (3.0.9)
|
CVE-2018-10969
CWE-89
|
CWE-89
|
High
|
Registration Forms-User Registration Forms, Invitation-Based Registrations, Front-end User Profile, Login Form & Content Restriction SQL Injection (3.1.1)
|
CVE-2019-15659
CWE-89
|
CWE-89
|
High
|
Registration Forms-User Registration Forms, Invitation-Based Registrations, Front-end User Profile, Login Form & Content Restriction SQL Injection (3.7.1.5)
|
CVE-2021-24731
CWE-89
|
CWE-89
|
High
|
RegistrationMagic-Custom Registration Forms, User Registration, Payment, and User Login SQL Injection (5.0.1.5)
|
CVE-2021-24862
CWE-89
|
CWE-89
|
High
|
RegistrationMagic-Custom Registration Forms, User Registration, Payment, and User Login SQL Injection (5.0.2.1)
|
CVE-2022-0420
CWE-89
|
CWE-89
|
High
|
Registrations for the Events Calendar-Event Registration SQL Injection (2.7.5)
|
CVE-2021-24943
CWE-89
|
CWE-89
|
High
|
Related Sites 'guid' Parameter SQL Injection (2.1)
|
CVE-2009-2383
CWE-89
|
CWE-89
|
High
|
Relevanssi-A Better Search SQL Injection (3.2)
|
CWE-89
|
CWE-89
|
High
|
Relevanssi-A Better Search SQL Injection (3.6.0)
|
CWE-89
|
CWE-89
|
High
|
RESPONSIVE 3D SLIDER SQL Injection (1.2)
|
CVE-2021-24398
CWE-89
|
CWE-89
|
High
|
Responsive Image Gallery, Gallery Album SQL Injection (1.2.0)
|
CVE-2017-14125
CWE-89
|
CWE-89
|
High
|
Responsive Slider-Image Slider-Slideshow for WordPress SQL Injection (2.6.8)
|
CVE-2015-2062
CWE-89
|
CWE-89
|
High
|
Responsive Slider-Image Slider-Slideshow for WordPress SQL Injection (2.8.6)
|
CWE-89
|
CWE-89
|
High
|
ReviewX-Multi-criteria Rating & Reviews for WooCommerce SQL Injection (1.6.8)
|
CVE-2023-26325
CWE-89
|
CWE-89
|
High
|
Revive Old Post-Auto Post to Social Media 'cat' Parameter SQL Injection (3.2.5)
|
CWE-89
|
CWE-89
|
High
|
RK Responsive Contact Form SQL Injection (1.0.0)
|
CVE-2017-1002027
CWE-89
|
CWE-89
|
High
|
Rockhoist Ratings SQL Injection (1.2.1)
|
CWE-89
|
CWE-89
|
High
|
RSVPMaker SQL Injection (5.6.3)
|
CVE-2018-21004
CWE-89
|
CWE-89
|
High
|
RSVPMaker SQL Injection (6.1.9)
|
CVE-2019-15646
CWE-89
|
CWE-89
|
High
|
RSVPMaker SQL Injection (7.8.1)
|
CWE-89
|
CWE-89
|
High
|
RSVPMaker SQL Injection (9.2.5)
|
CVE-2022-1453
CWE-89
|
CWE-89
|
High
|
RSVPMaker SQL Injection (9.2.6)
|
CVE-2022-1505
CWE-89
|
CWE-89
|
High
|
RSVPMaker SQL Injection (9.3.2)
|
CVE-2022-1768
CWE-89
|
CWE-89
|
High
|
rtMedia for WordPress, BuddyPress and bbPress SQL Injection (3.7.39)
|
CWE-89
|
CWE-89
|
High
|
Ruby on Rails SQL injection
|
CVE-2012-2695
CWE-89
|
CWE-89
|
High
|
Safe Redirect Manager SQL Injection (1.7.7)
|
CWE-89
|
CWE-89
|
High
|
Save Contact Form 7 SQL Injection (1.7)
|
CWE-89
|
CWE-89
|
High
|
Schreikasten SQL Injection (0.14.18)
|
CVE-2021-24630
CWE-89
|
CWE-89
|
High
|
SCORM Cloud For WordPress 'ajax.php' SQL Injection (1.0.6.6)
|
CVE-2011-5216
CWE-89
|
CWE-89
|
High
|
SearchAutocomplete 'tags.php' SQL Injection (1.0.8)
|
CWE-89
|
CWE-89
|
High
|
Search Everything SQL Injection (7.0.2)
|
CVE-2014-2316
CWE-89
|
CWE-89
|
High
|
Search Everything SQL Injection (8.1.5)
|
CWE-89
|
CWE-89
|
High
|
Search Everything SQL Injection (8.1.6)
|
CWE-89
|
CWE-89
|
High
|
Search Logger-Know What Your Visitors Search SQL Injection (0.9)
|
CVE-2022-3131
CWE-89
|
CWE-89
|
High
|
Secure Copy Content Protection and Content Locking SQL Injection (2.6.6)
|
CVE-2021-24484
CWE-89
|
CWE-89
|
High
|
Sendit WP Newsletter 'id' Parameter SQL Injection (2.1.0)
|
CWE-89
|
CWE-89
|
High
|
Sendit WP Newsletter 'submit.php' Blind SQL Injection (1.5.9)
|
CWE-89
|
CWE-89
|
High
|
Sendit WP Newsletter SQL Injection (2.5.1)
|
CVE-2021-24345
CWE-89
|
CWE-89
|
High
|
SEO Redirection-301 Redirect Manager SQL Injection (3.5)
|
CWE-89
|
CWE-89
|
High
|
SEO Redirection-301 Redirect Manager SQL Injection (8.1)
|
CVE-2021-24847
CWE-89
|
CWE-89
|
High
|
Sermon Browser Cross-Site Scripting and SQL Injection Vulnerabilities (0.43)
|
CWE-79
CWE-89
|
CWE-79
CWE-89
|
High
|
Server Status by Hostname/IP SQL Injection (4.6)
|
CVE-2019-12570
CWE-89
|
CWE-89
|
High
|
Sharebar Cross-Site Scripting and SQL Injection Vulnerabilities (1.2.1)
|
CWE-79
CWE-89
|
CWE-79
CWE-89
|
High
|
Shopping Cart Multiple SQL Injection and Arbitrary File Upload Vulnerabilities (8.1.14)
|
CWE-89
CWE-434
|
CWE-89
CWE-434
|
High
|
Shortlinks by Pretty Links-Best WordPress Link Tracking Multiple Cross-Site Scripting and SQL Injection Vulnerabilities (1.5.2)
|
CWE-79
CWE-89
|
CWE-79
CWE-89
|
High
|
Shortlinks by Pretty Links-Best WordPress Link Tracking Multiple SQL Injection Vulnerabilities (1.4.56)
|
CWE-89
|
CWE-89
|
High
|
Shortlinks by Pretty Links-Best WordPress Link Tracking SQL Injection (1.6.7)
|
CWE-89
|
CWE-89
|
High
|
SH Slideshow 'ajax.php' SQL Injection (3.1.4)
|
CWE-89
|
CWE-89
|
High
|
Side Menu-add fixed side buttons SQL Injection (3.1.3)
|
CVE-2021-24348
CWE-89
|
CWE-89
|
High
|
Side Menu Lite-add sticky fixed buttons SQL Injection (2.2)
|
CVE-2021-24521
CWE-89
|
CWE-89
|
High
|
Side Menu Lite-add sticky fixed buttons SQL Injection (2.2.1)
|
CWE-89
|
CWE-89
|
High
|
Side Menu Lite-add sticky fixed buttons SQL Injection (2.2.5)
|
CVE-2021-24580
CWE-89
|
CWE-89
|
High
|
Simple:Press 'sf-header-forum.php' SQL Injection (4.3.0)
|
CWE-89
|
CWE-89
|
High
|
Simple Ads Manager SQL Injection (2.9.4.116)
|
CWE-89
|
CWE-89
|
High
|
Simple Ajax Shoutbox SQL Injection (2.2.1)
|
CWE-89
|
CWE-89
|
High
|
Simple Events Calendar SQL Injection (1.3.5)
|
CWE-89
|
CWE-89
|
High
|
Simple Events Calendar SQL Injection (1.4.0)
|
CVE-2021-24552
CWE-89
|
CWE-89
|
High
|
Simple Login Log SQL Injection (1.1.1)
|
CWE-89
|
CWE-89
|
High
|
Simple Membership SQL Injection (4.0.3)
|
CVE-2021-29232
CWE-89
|
CWE-89
|
High
|
Simple Personal Message SQL Injection (1.0.3)
|
CWE-89
|
CWE-89
|
High
|
Simple Photo Gallery SQL Injection (1.7.9)
|
CWE-89
|
CWE-89
|
High
|
Simple Retail Menus SQL Injection (4.0.1)
|
CVE-2014-5183
CWE-89
|
CWE-89
|
High
|
Simply Poll SQL Injection (1.4.1)
|
CWE-89
|
CWE-89
|
High
|
Slider by 10Web-Responsive Image Slider SQL Injection (1.2.35)
|
CVE-2021-24132
CWE-89
|
CWE-89
|
High
|
Slider Hero with Animation, Video Background SQL Injection (8.2.6)
|
CVE-2021-24506
CWE-89
|
CWE-89
|
High
|
Slimstat Analytics SQL Injection (3.9.5)
|
CWE-89
|
CWE-89
|
High
|
Smart Manager for WooCommerce & WPeC SQL Injection (3.9.6)
|
CWE-89
|
CWE-89
|
High
|
Smooth Slider SQL Injection (2.6.5)
|
CWE-89
|
CWE-89
|
High
|
Smooth Slider SQL Injection (2.8.6)
|
CVE-2018-5373
CWE-89
|
CWE-89
|
High
|
SMTP Mail SQL Injection (1.2.1)
|
CWE-89
|
CWE-89
|
High
|
Social Slider 'rA[]' Parameter SQL Injection (5.6.5)
|
CVE-2011-5286
CWE-89
|
CWE-89
|
High
|
Spam protection, AntiSpam, FireWall by CleanTalk SQL Injection (5.148)
|
CVE-2021-24131
CWE-89
|
CWE-89
|
High
|
Spam protection, AntiSpam, FireWall by CleanTalk SQL Injection (5.153.3)
|
CVE-2021-24295
CWE-89
|
CWE-89
|
High
|
Spam protection, AntiSpam, FireWall by CleanTalk SQL Injection (5.185)
|
CVE-2022-3302
CWE-89
|
CWE-89
|
High
|
Spider Calendar Cross-Site Scripting and SQL Injection Vulnerabilities (1.0.1)
|
CWE-79
CWE-89
|
CWE-79
CWE-89
|
High
|
SpiderCatalog Multiple Cross-Site Scripting and SQL Injection Vulnerabilities (1.4.6)
|
CWE-79
CWE-89
|
CWE-79
CWE-89
|
High
|
SpiderCatalog SQL Injection (1.7.3)
|
CVE-2021-24625
CWE-89
|
CWE-89
|
High
|
Spiffy XSPF Player SQL Injection (0.1)
|
CVE-2013-3530
CWE-89
|
CWE-89
|
High
|
SP Project & Document Manager Multiple SQL Injection Vulnerabilities (2.4.3)
|
CVE-2014-9178
CWE-89
|
CWE-89
|
High
|
SP Project & Document Manager SQL Injection (2.5.3)
|
CWE-89
|
CWE-89
|
High
|
Spreadsheet (wpSS) 'ss_id' Parameter SQL Injection (0.61)
|
CVE-2008-1982
CWE-89
|
CWE-89
|
High
|
Spreadsheet (wpSS) SQL Injection (0.62)
|
CVE-2014-8363
CWE-89
|
CWE-89
|
High
|
SP Rental Manager SQL Injection (1.5.3)
|
CVE-2021-38324
CWE-89
|
CWE-89
|
High
|
SQL Injection
|
CWE-89
|
CWE-89
|
Critical
|
SQL Injection (stylesheet.php) (CMS Made Simple)
|
CVE-2007-2473
CWE-89
|
CWE-89
|
High
|
SQL Injection in Symphony
|
CVE-2013-2559
CWE-89
|
CWE-89
|
High
|
SQL injection in the authentication header
|
CWE-89
|
CWE-89
|
Critical
|
SRS Simple Hits Counter SQL Injection (1.0.4)
|
CVE-2020-5766
CWE-89
|
CWE-89
|
High
|
Stock in & out SQL Injection (1.0.4)
|
CWE-89
|
CWE-89
|
High
|
Store Locator for WordPress with Google Maps-LotsOfLocales SQL Injection (3.11)
|
CVE-2014-8621
CWE-89
|
CWE-89
|
High
|
Store Locator for WordPress with Google Maps-LotsOfLocales SQL Injection (3.33.1)
|
CWE-89
|
CWE-89
|
High
|
Store Locator Plus for WordPress SQL Injection (3.8.6)
|
CWE-89
|
CWE-89
|
High
|
Stream SQL Injection (3.8.1)
|
CVE-2021-24772
CWE-89
|
CWE-89
|
High
|
stripShow SQL Injection (2.5.2)
|
CVE-2014-5184
CWE-89
|
CWE-89
|
High
|
Super CAPTCHA 'admin.php' SQL Injection (2.2.4)
|
CWE-89
|
CWE-89
|
High
|
Super Interactive Maps for WordPress SQL Injection (2.1)
|
CWE-89
|
CWE-89
|
High
|
Super Store Finder for WordPress (Google Maps Store Locator) SQL Injection (6.3)
|
CWE-89
|
CWE-89
|
High
|
Support Ticket System Multiple SQL Injection Vulnerabilities (1.2)
|
CVE-2015-7670
CWE-89
|
CWE-89
|
High
|
Survey Maker-Best WordPress Survey SQL Injection (1.5.5)
|
CVE-2021-24459
CWE-89
|
CWE-89
|
High
|
Survey Maker-Best WordPress Survey SQL Injection (3.1.1)
|
CVE-2023-23490
CWE-89
|
CWE-89
|
High
|
Surveys SQL Injection (1.01.8)
|
CVE-2017-1002020
CVE-2017-1002021
CVE-2017-1002022
CWE-89
|
CWE-89
|
High
|
Testimonial Slider SQL Injection (1.2.4)
|
CVE-2018-5372
CWE-89
|
CWE-89
|
High
|
The Crawl Rate Tracker 'sbtracking-chart-data.php' SQL Injection (2.0.2)
|
CWE-89
|
CWE-89
|
High
|
The Sorter SQL Injection (1.0)
|
CVE-2021-24399
CWE-89
|
CWE-89
|
High
|
Tierra's Billboard Manager SQL Injection (1.14)
|
CWE-89
|
CWE-89
|
High
|
Timeline Calendar SQL Injection (1.2)
|
CVE-2021-24553
CWE-89
|
CWE-89
|
High
|
Top 10-Popular posts for WordPress SQL Injection (2.4.3)
|
CWE-89
|
CWE-89
|
High
|
Traffic Analyzer SQL Injection (3.4.2)
|
CWE-89
|
CWE-89
|
High
|
Tune Library 'letter' Parameter SQL Injection (1.5.1)
|
CWE-89
|
CWE-89
|
High
|
Tune Library SQL Injection (1.5.4)
|
CVE-2015-3314
CWE-89
|
CWE-89
|
High
|
Tutor LMS-eLearning and online course solution SQL Injection (1.8.2)
|
CVE-2021-24182
CVE-2021-24183
CVE-2021-24186
CWE-89
|
CWE-89
|
High
|
Ultimate Maps by Supsystic SQL Injection (1.1.12)
|
CWE-89
|
CWE-89
|
High
|
Ultimate Membership Pro SQL Injection (3.3)
|
CWE-89
|
CWE-89
|
High
|
Ultimate Membership Pro SQL Injection (6.4)
|
CWE-89
|
CWE-89
|
High
|
ULTIMATE TABLES SQL Injection (1.5)
|
CWE-89
|
CWE-89
|
High
|
Universal Post Manager Cross-Site Scripting and SQL Injection Vulnerabilities (1.0.9)
|
CWE-79
CWE-89
|
CWE-79
CWE-89
|
High
|
Unlimited PopUps SQL Injection (4.5.3)
|
CVE-2021-24631
CWE-89
|
CWE-89
|
High
|
UPM Polls 'PID' Parameter SQL Injection (1.0.4)
|
CWE-89
|
CWE-89
|
High
|
UPM Polls 'qid' Parameter SQL Injection (1.0.3)
|
CWE-89
|
CWE-89
|
High
|
User Control SQL Injection (2.1.0)
|
CWE-89
|
CWE-89
|
High
|
User Self Delete SQL Injection (1.1)
|
CWE-89
|
CWE-89
|
High
|
Users Ultra SQL Injection (1.3.58)
|
CWE-89
|
CWE-89
|
High
|
Users Ultra SQL Injection (1.4.35)
|
CWE-89
|
CWE-89
|
High
|
Users Ultra SQL Injection (1.5.15)
|
CVE-2015-4109
CWE-89
|
CWE-89
|
High
|
vBulletin 4 (up to 4.1.2) search.php SQL injection
|
CWE-89
|
CWE-89
|
High
|
vBulletin 5.1.2 SQL injection
|
CVE-2014-5102
CWE-89
|
CWE-89
|
High
|
vBulletin 5.6.1 nodeId SQL injection
|
CVE-2020-12720
CWE-94
|
CWE-94
|
High
|
Video Embed SQL Injection (1.0)
|
CVE-2021-24337
CWE-89
|
CWE-89
|
High
|
VideoWhisper Video Presentation 'c_status.php' SQL Injection (1.1)
|
CWE-89
|
CWE-89
|
High
|
Viral Quiz Maker-OnionBuzz SQL Injection (1.2.1)
|
CVE-2019-14231
CWE-89
|
CWE-89
|
High
|
Viral Quiz Maker-OnionBuzz SQL Injection (1.2.6)
|
CVE-2019-14230
CWE-89
|
CWE-89
|
High
|
Visitor Traffic Real Time Statistics SQL Injection (3.8)
|
CVE-2021-24829
CWE-89
|
CWE-89
|
High
|
Visual Email Designer for WooCommerce SQL Injection (1.7.1)
|
CVE-2022-3860
CWE-89
|
CWE-89
|
High
|
WA Form Builder SQL Injection (1.1)
|
CWE-89
|
CWE-89
|
High
|
WassUp Real Time Analytics 'spy.php' SQL Injection (1.4.3)
|
CVE-2008-0520
CWE-89
|
CWE-89
|
High
|
WatuPRO SQL Injection (5.5.3.6)
|
CVE-2017-9834
CWE-89
|
CWE-89
|
High
|
WCFM-Frontend Manager for WooCommerce along with Bookings Subscription Listings Compatible SQL Injection (6.5.11)
|
CVE-2021-24835
CWE-89
|
CWE-89
|
High
|
Web Invoice-Invoicing and billing for WordPress Multiple SQL Injection Vulnerabilities (2.1.3)
|
CVE-2022-4371
CVE-2022-4372
CWE-89
|
CWE-89
|
High
|
WebLibrarian SQL Injection (3.5.4)
|
CVE-2019-1010034
CWE-89
|
CWE-89
|
High
|
Website FAQ 'website-faq-widget.php' SQL Injection (1.0)
|
CWE-89
|
CWE-89
|
High
|
Welcart e-Commerce Multiple SQL Injection Vulnerabilities (1.5.2)
|
CVE-2015-7791
CWE-89
|
CWE-89
|
High
|
Welcart e-Commerce SQL Injection (2.0.0)
|
CWE-89
|
CWE-89
|
High
|
WooCommerce Blocks SQL Injection (5.5.0)
|
CVE-2021-32789
CWE-89
|
CWE-89
|
High
|
WooCommerce SQL Injection (5.5.0)
|
CVE-2021-32790
CWE-89
|
CWE-89
|
High
|
WordPress 'admin-ajax.php' SQL Injection Vulnerability (2.1.3)
|
CVE-2007-2821
CWE-89
|
CWE-89
|
High
|
WordPress 'blog.header.php' Multiple SQL Injection Vulnerabilities (0.6.2 - 0.71)
|
CWE-89
|
CWE-89
|
High
|
WordPress 'cat' Parameter SQL Injection Vulnerability (1.5 - 1.5.1.1)
|
CVE-2005-1810
CWE-89
|
CWE-89
|
High
|
WordPress 'comment_post_ID' Parameter SQL Injection Vulnerability (3.0.4)
|
CWE-89
|
CWE-89
|
High
|
WordPress 'paged' Parameter SQL Injection Vulnerability (2.0.2 - 2.0.5)
|
CVE-2006-3389
CWE-89
|
CWE-89
|
High
|
WordPress 'wp-db.php' Character Set SQL Injection Vulnerability (2.0 - 2.3.1)
|
CVE-2007-6318
CWE-89
|
CWE-89
|
High
|
WordPress 'wp-trackback.php' SQL Injection Vulnerability (1.5)
|
CVE-2005-1687
CWE-89
|
CWE-89
|
High
|
WordPress 0.7 Posts SQL Injection Vulnerability (0.7)
|
CVE-2003-1598
CWE-89
|
CWE-89
|
High
|
WordPress 2.0.5 Charset Decoding SQL Injection Vulnerability (0.6.2 - 2.0.5)
|
CVE-2007-0107
CWE-89
|
CWE-89
|
High
|
WordPress 2.0.6 'Zend_Hash_Del_Key_Or_Index' SQL Injection Vulnerability (0.6.2 - 2.0.6)
|
CVE-2007-0233
CWE-89
|
CWE-89
|
High
|
WordPress 3.1.3 Multiple SQL Injection Vulnerabilities (3.1 - 3.1.3)
|
CWE-89
|
CWE-89
|
High
|
WordPress 3.7.x Possible SQL Injection Vulnerability (3.7 - 3.7.22)
|
CVE-2017-16510
CWE-89
|
CWE-89
|
High
|
WordPress 3.8.x Possible SQL Injection Vulnerability (3.8 - 3.8.22)
|
CVE-2017-16510
CWE-89
|
CWE-89
|
High
|
WordPress 3.9.x Possible SQL Injection Vulnerability (3.9 - 3.9.20)
|
CVE-2017-16510
CWE-89
|
CWE-89
|
High
|
WordPress 4.0.x Possible SQL Injection Vulnerability (4.0 - 4.0.19)
|
CVE-2017-16510
CWE-89
|
CWE-89
|
High
|
WordPress 4.1.x Possible SQL Injection Vulnerability (4.1 - 4.1.19)
|
CVE-2017-16510
CWE-89
|
CWE-89
|
High
|
WordPress 4.2.x Possible SQL Injection Vulnerability (4.2 - 4.2.16)
|
CVE-2017-16510
CWE-89
|
CWE-89
|
High
|
WordPress 4.3.x Possible SQL Injection Vulnerability (4.3 - 4.3.12)
|
CVE-2017-16510
CWE-89
|
CWE-89
|
High
|
WordPress 4.4.x Possible SQL Injection Vulnerability (4.4 - 4.4.11)
|
CVE-2017-16510
CWE-89
|
CWE-89
|
High
|
WordPress 4.5.x Possible SQL Injection Vulnerability (4.5 - 4.5.10)
|
CVE-2017-16510
CWE-89
|
CWE-89
|
High
|
WordPress 4.6.x Possible SQL Injection Vulnerability (4.6 - 4.6.7)
|
CVE-2017-16510
CWE-89
|
CWE-89
|
High
|
WordPress 4.7.x Possible SQL Injection Vulnerability (4.7 - 4.7.6)
|
CVE-2017-16510
CWE-89
|
CWE-89
|
High
|
WordPress 4.8.x Possible SQL Injection Vulnerability (4.8 - 4.8.2)
|
CVE-2017-16510
CWE-89
|
CWE-89
|
High
|
WordPress Alipay/Tenpay/PayPal SQL Injection (3.7.2)
|
CVE-2021-24390
CWE-89
|
CWE-89
|
High
|
WordPress Clean Up & Optimizer-Clean Up Optimizer SQL Injection (3.0.13)
|
CWE-89
|
CWE-89
|
High
|
WordPress Facebook SQL Injection (1.0.8)
|
CWE-89
|
CWE-89
|
High
|
WordPress Facebook SQL Injection (1.0.13)
|
CWE-89
|
CWE-89
|
High
|
WordPress for Google Maps-WP MAPS SQL Injection (4.0.4)
|
CWE-89
|
CWE-89
|
High
|
WordPress for Google Maps-WP MAPS SQL Injection (4.1.3)
|
CWE-89
|
CWE-89
|
High
|
WordPress for Google Maps-WP MAPS SQL Injection (4.1.4)
|
CVE-2021-24130
CWE-89
|
CWE-89
|
High
|
WordPress Infinite Scroll-Ajax Load More SQL Injection (5.3.1)
|
CVE-2021-24140
CWE-89
|
CWE-89
|
High
|
WordPress Landing Pages SQL Injection (1.2.1)
|
CVE-2013-6243
CWE-89
|
CWE-89
|
High
|
Wordpress Membership SwiftCloud.io SQL Injection (1.0)
|
CVE-2021-24392
CWE-89
|
CWE-89
|
High
|
WordPress Meta Robots SQL Injection (2.1)
|
CWE-89
|
CWE-89
|
High
|
WordPress Multiple Cross-Site Scripting and SQL Injection Vulnerabilities (1.2.1 - 1.2.2)
|
CWE-79
CWE-89
|
CWE-79
CWE-89
|
High
|
WordPress Page Contact SQL Injection (1.0)
|
CVE-2021-24403
CWE-89
|
CWE-89
|
High
|
WordPress Photo Gallery by Gallery Bank SQL Injection (3.0.101)
|
CWE-89
|
CWE-89
|
High
|
WordPress Photo Gallery by Gallery Bank SQL Injection (3.0.229)
|
CWE-89
|
CWE-89
|
High
|
WordPress Poll Multiple SQL Injection and Security Bypass Vulnerabilities (34.04)
|
CVE-2013-1400
CVE-2013-1401
CWE-89
CWE-264
|
CWE-89
CWE-264
|
High
|
WordPress Poll Multiple SQL Injection Vulnerabilities (33.5)
|
CWE-89
|
CWE-89
|
High
|
Wordpress Poll SQL Injection (36)
|
CVE-2020-24315
CWE-89
|
CWE-89
|
High
|
WordPress Possible SQL Injection Vulnerability (0.70 - 3.6.1)
|
CVE-2017-16510
CWE-89
|
CWE-89
|
High
|
WordPress Survey & Poll-Quiz, Survey and Poll SQL Injection (1.1.91)
|
CVE-2015-2090
CWE-89
|
CWE-89
|
High
|
WordPress User-Agent SQL Injection Vulnerability (1.5.2)
|
CVE-2006-1012
CWE-89
|
CWE-89
|
High
|
WordPress Users 'uid' Parameter SQL Injection (1.3)
|
CVE-2011-4669
CWE-89
|
CWE-89
|
High
|
WORDPRESS VIDEO GALLERY SQL Injection (2.0)
|
CVE-2013-3478
CWE-89
|
CWE-89
|
High
|
WORDPRESS VIDEO GALLERY SQL Injection (2.7)
|
CVE-2015-2065
CWE-89
|
CWE-89
|
High
|
WORDPRESS VIDEO GALLERY SQL Injection (2.8)
|
CWE-89
|
CWE-89
|
High
|
WordPress Video Player Multiple SQL Injection Vulnerabilities (1.5.16)
|
CWE-89
|
CWE-89
|
High
|
WordPress WP-Advanced-Search SQL Injection (3.3.5)
|
CWE-89
|
CWE-89
|
High
|
WordPress WP-Advanced-Search SQL Injection (3.3.6)
|
CVE-2020-12104
CWE-89
|
CWE-89
|
High
|
Wordspew 'id' Parameter SQL Injection (1.16)
|
CVE-2008-0682
CWE-89
|
CWE-89
|
High
|
Wow Forms-create any form with custom style SQL Injection (2.1)
|
CWE-89
|
CWE-89
|
High
|
Wow Forms-create any form with custom style SQL Injection (3.1.3)
|
CVE-2021-24628
CWE-89
|
CWE-89
|
High
|
Wow Viral Signups SQL Injection (2.1)
|
CWE-89
|
CWE-89
|
High
|
wp-autosuggest SQL Injection (0.24)
|
CWE-89
|
CWE-89
|
High
|
WP-AutoYoutube 'index.php' Script SQL Injection (0.1)
|
CWE-89
|
CWE-89
|
High
|
WP-Board SQL Injection (1.1)
|
CVE-2021-24404
CWE-89
|
CWE-89
|
High
|
WP-Cal 'id' Parameter SQL Injection (0.3)
|
CVE-2008-0490
CWE-89
|
CWE-89
|
High
|
wp-championship SQL Injection (5.8)
|
CVE-2015-5308
CWE-89
|
CWE-89
|
High
|
WP-Download 'dl_id' Parameter SQL Injection (1.2)
|
CVE-2008-1646
CWE-89
|
CWE-89
|
High
|
WP-Filebase Download Manager 'base' Parameter SQL Injection (0.2.9)
|
CWE-89
|
CWE-89
|
High
|
WP-Forum 'forum_feed.php' SQL Injection (1.7.8)
|
CWE-89
|
CWE-89
|
High
|
WP-Forum 'sendmail.php' SQL Injection (1.7.8)
|
CWE-89
|
CWE-89
|
High
|
WP-Forum Multiple SQL Injection Vulnerabilities (1.7.8)
|
CWE-89
|
CWE-89
|
High
|
WP-Forum Multiple SQL Injection Vulnerabilities (2.3)
|
CVE-2009-3703
CWE-89
|
CWE-89
|
High
|
WP-Forum SQL Injection (1.7.4)
|
CVE-2008-0388
CWE-89
|
CWE-89
|
High
|
WP-Forum SQL Injection (2.4)
|
CWE-89
|
CWE-89
|
High
|
Wp-ImageZoom SQL Injection (1.0.7)
|
CWE-89
|
CWE-89
|
High
|
WP-Polls SQL Injection (2.61)
|
CWE-89
|
CWE-89
|
High
|
WP-Polls SQL Injection (2.71)
|
CVE-2015-9352
CWE-89
|
CWE-89
|
High
|
WP-PostRatings '[ratings]' Shortcode SQL Injection (1.61)
|
CVE-2011-4646
CWE-89
|
CWE-89
|
High
|
WP-PostRatings SQL Injection (1.83.1)
|
CWE-89
|
CWE-89
|
High
|
WP-Predict 'predictId' Parameter Blind SQL Injection (1.0)
|
CWE-89
|
CWE-89
|
High
|
WP-Property-WordPress Powered Real Estate and Property Management SQL Injection (1.36.0)
|
CWE-89
|
CWE-89
|
High
|
WP-RecentComments SQL Injection (2.0.7)
|
CVE-2012-1067
CWE-89
|
CWE-89
|
High
|
WP-SpamFree Anti-Spam 'id' Parameter SQL Injection (3.2.1)
|
CWE-89
|
CWE-89
|
High
|
WP-StarsRateBox 'j' Parameter SQL Injection (1.1)
|
CWE-89
|
CWE-89
|
High
|
WP-Stats 'author' Parameter SQL Injection (2.0)
|
CVE-2006-0238
CWE-89
|
CWE-89
|
High
|
WP-Stats-Dashboard SQL Injection (2.9.4)
|
CWE-89
|
CWE-89
|
High
|
WP-Testimonials SQL Injection (3.4.1)
|
CVE-2017-9418
CWE-89
|
CWE-89
|
High
|
WP-TopBar SQL Injection (5.36)
|
CVE-2023-23824
CWE-89
|
CWE-89
|
High
|
WP Activity Log SQL Injection (4.1.4)
|
CWE-89
|
CWE-89
|
High
|
WP Airbnb Review Slider SQL Injection (3.2)
|
CVE-2023-0262
CWE-89
|
CWE-89
|
High
|
WP Athletics SQL Injection (1.1.7)
|
CWE-89
|
CWE-89
|
High
|
WP Auctions 'wpa_id' Parameter SQL Injection (1.8.8)
|
CWE-89
|
CWE-89
|
High
|
wp audio gallery playlist 'playlist.php' SQL Injection (0.12)
|
CWE-89
|
CWE-89
|
High
|
WP AutoComplete Search SQL Injection (1.0.4)
|
CVE-2022-4297
CWE-89
|
CWE-89
|
High
|
WP Bannerize 'ajax_clickcounter.php' SQL Injection (2.8.6)
|
CWE-89
|
CWE-89
|
High
|
WP Bannerize 'ajax_sorter.php' SQL Injection (2.8.7)
|
CWE-89
|
CWE-89
|
High
|
WP Bannerize SQL Injection (4.0.2)
|
CVE-2021-39351
CWE-89
|
CWE-89
|
High
|
WP Block and Stop Bad Bots Crawlers and Spiders and Anti Spam Protection-StopBadBots SQL Injection (6.59)
|
CWE-89
|
CWE-89
|
High
|
WP Business Intelligence Lite SQL Injection (1.6.1)
|
CWE-89
|
CWE-89
|
High
|
WP Coder-add custom html, css and js code SQL Injection (2.5.3)
|
CVE-2023-0895
CWE-89
|
CWE-89
|
High
|
WP Comment Remix SQL Injection and HTML Injection Vulnerabilities (1.4.3)
|
CWE-79
CWE-89
|
CWE-79
CWE-89
|
High
|
WP CSV Exporter SQL Injection (1.3.6)
|
CVE-2022-3249
CWE-89
|
CWE-89
|
High
|
Wp custom slider SQL Injection (1.6.2)
|
CWE-89
|
CWE-89
|
High
|
WP Data Access SQL Injection (4.3.1)
|
CVE-2021-24866
CWE-89
|
CWE-89
|
High
|
wpDataTables-WordPress Tables & Table Charts Premium SQL Injection (3.4)
|
CVE-2021-26754
CWE-89
|
CWE-89
|
High
|
wpDataTables-WordPress Tables & Table Charts SQL Injection (1.5.3)
|
CVE-2014-9175
CWE-89
|
CWE-89
|
High
|
WP Domain Redirect SQL Injection (1.0)
|
CVE-2021-24401
CWE-89
|
CWE-89
|
High
|
WP DS FAQ 'ajax.php' SQL Injection (1.3.2)
|
CWE-89
|
CWE-89
|
High
|
WP eCommerce 'collected_data[]' SQL Injection (3.8.4)
|
CWE-89
|
CWE-89
|
High
|
WP eCommerce 'cs1' Parameter SQL Injection (3.8.6)
|
CWE-89
|
CWE-89
|
High
|
WP eCommerce 'wpsc-transaction_results_functions.php' SQL Injection (3.8.7.5)
|
CVE-2012-5310
CWE-89
|
CWE-89
|
High
|
WP eCommerce Multiple Cross-Site Scripting and SQL Injection Vulnerabilities (3.8.9)
|
CWE-79
CWE-89
|
CWE-79
CWE-89
|
High
|
WP eCommerce SQL Injection (3.11.3)
|
CWE-89
|
CWE-89
|
High
|
WP Editor SQL Injection (1.2.6.3)
|
CVE-2021-24151
CWE-89
|
CWE-89
|
High
|
WP Email Users SQL Injection (1.4.3)
|
CWE-89
|
CWE-89
|
High
|
WP Events Calendar 'event_id' Parameter SQL Injection (6.5.2)
|
CWE-89
|
CWE-89
|
High
|
WP Events Calendar SQL Injection (1.0)
|
CVE-2018-5315
CWE-89
|
CWE-89
|
High
|
WP Fastest Cache SQL Injection (0.8.4.8)
|
CWE-89
|
CWE-89
|
High
|
WP Fastest Cache SQL Injection (0.8.7.4)
|
CWE-89
|
CWE-89
|
High
|
wpForo Forum SQL Injection (1.4.9)
|
CVE-2018-11515
CWE-89
|
CWE-89
|
High
|
WP Forum Server 'edit_post_id' Parameter SQL Injection (1.7)
|
CVE-2012-6625
CWE-89
|
CWE-89
|
High
|
WP Forum Server Cross-Site Scripting and SQL Injection Vulnerabilities (1.7.3)
|
CVE-2012-6622
CVE-2012-6623
CVE-2012-6625
CWE-79
CWE-89
|
CWE-79
CWE-89
|
High
|
WP Forum Server Multiple SQL Injection (1.6.5)
|
CVE-2011-1047
CWE-89
|
CWE-89
|
High
|
WP Glossary 'ajax.php' SQL Injection (0.1)
|
CWE-89
|
CWE-89
|
High
|
WP Google Maps SQL Injection (7.11.17)
|
CVE-2019-10692
CWE-89
|
CWE-89
|
High
|
WP Google Review Slider SQL Injection (6.1)
|
CWE-89
|
CWE-89
|
High
|
WP Google Review Slider SQL Injection (11.7)
|
CVE-2023-0259
CWE-89
|
CWE-89
|
High
|
WP iCommerce-the first interactive ecommerce for wordpress SQL Injection (1.1.1)
|
CVE-2021-24402
CWE-89
|
CWE-89
|
High
|
WPJobBoard SQL Injection (5.6.4)
|
CWE-89
|
CWE-89
|
High
|
WP Jobs SQL Injection (1.4)
|
CVE-2017-9603
CWE-89
|
CWE-89
|
High
|
WP Limit Login Attempts SQL Injection (2.0.0)
|
CVE-2015-6829
CWE-89
|
CWE-89
|
High
|
Wp Multiple Meta Box SQL Injection (1.0.0)
|
CWE-89
|
CWE-89
|
High
|
WP People 'wp-people-popup.php' SQL Injection (2.0)
|
CWE-89
|
CWE-89
|
High
|
WP Photo Album 'photo' Parameter SQL Injection (1.0)
|
CVE-2008-0939
CWE-89
|
CWE-89
|
High
|
WP Photo Album Plus 'wppa-album' Parameter SQL Injection (4.1.1)
|
CWE-89
|
CWE-89
|
High
|
WP Post Page Clone SQL Injection (1.0)
|
CWE-89
|
CWE-89
|
High
|
WP Private Messages SQL Injection (1.0.1)
|
CWE-89
|
CWE-89
|
High
|
WP PRO Advertising System-All In One Ad Manager SQL Injection (4.6.18)
|
CWE-89
|
CWE-89
|
High
|
WP Reroute Email SQL Injection (1.4.6)
|
CVE-2023-27605
CWE-89
|
CWE-89
|
High
|
WP Review Slider SQL Injection (10.9)
|
CVE-2022-0383
CWE-89
|
CWE-89
|
High
|
WP Review Slider SQL Injection (12.1)
|
CVE-2023-0260
CWE-89
|
CWE-89
|
High
|
WP RSS By Publishers Multiple SQL Injection Vulnerabilities (0.1)
|
CVE-2022-4358
CVE-2022-4359
CVE-2022-4360
CWE-89
|
CWE-89
|
High
|
WP Rss Poster SQL Injection (1.0.0)
|
CVE-2014-4938
CWE-89
|
CWE-89
|
High
|
WP Session Manager SQL Injection (1.2.1)
|
CWE-89
|
CWE-89
|
High
|
WP Shop Multiple SQL Injection Vulnerabilities (3.4.3.15)
|
CWE-89
|
CWE-89
|
High
|
WP Simple Booking Calendar SQL Injection (2.0.6)
|
CWE-89
|
CWE-89
|
High
|
WP Statistics SQL Injection (9.4)
|
CWE-89
|
CWE-89
|
High
|
WP Statistics SQL Injection (12.0.7)
|
CWE-89
|
CWE-89
|
High
|
WP Statistics SQL Injection (12.6.6.1)
|
CVE-2019-13275
CWE-89
|
CWE-89
|
High
|
WP Statistics SQL Injection (13.0.7)
|
CVE-2021-24340
CWE-89
|
CWE-89
|
High
|
WP Statistics SQL Injection (13.1.4)
|
CVE-2022-0513
CWE-89
|
CWE-89
|
High
|
WP Statistics SQL Injection (13.2.8)
|
CVE-2022-4230
CWE-89
|
CWE-89
|
High
|
WP Support Plus Responsive Ticket System SQL Injection (7.1.4)
|
CWE-89
|
CWE-89
|
High
|
WP Symposium 'get_profile_avatar.php' SQL Injection (0.64)
|
CWE-89
|
CWE-89
|
High
|
WP Symposium A Social Network For WordPress Multiple SQL Injection Vulnerabilities (12.06.16)
|
CWE-89
|
CWE-89
|
High
|
WP Symposium Multiple SQL Injection Vulnerabilities (12.09)
|
CWE-89
|
CWE-89
|
High
|
WP Symposium SQL Injection (15.1)
|
CVE-2015-3325
CWE-89
|
CWE-89
|
High
|
WP Symposium SQL Injection (15.5.1)
|
CWE-89
|
CWE-89
|
High
|
WP TripAdvisor Review Slider SQL Injection (10.7)
|
CVE-2023-0261
CWE-89
|
CWE-89
|
High
|
WP Ultimate Exporter SQL Injection (1.1)
|
CWE-89
|
CWE-89
|
High
|
WP Visitor Statistics (Real Time Traffic) SQL Injection (4.7)
|
CVE-2021-24750
CWE-89
|
CWE-89
|
High
|
WP Visitor Statistics (Real Time Traffic) SQL Injection (5.5)
|
CVE-2022-0410
CWE-89
|
CWE-89
|
High
|
WP Visitor Statistics (Real Time Traffic) SQL Injection (5.7)
|
CVE-2022-33965
CWE-89
|
CWE-89
|
High
|
WP Visitor Statistics (Real Time Traffic) SQL Injection (6.8.1)
|
CVE-2023-0600
CWE-89
|
CWE-89
|
High
|
WP Yelp Review Slider SQL Injection (7.0)
|
CVE-2023-0263
CWE-89
|
CWE-89
|
High
|
WR ContactForm SQL Injection (1.1.9)
|
CWE-89
|
CWE-89
|
High
|
WTI Like Post SQL Injection (1.4.2)
|
CWE-89
|
CWE-89
|
High
|
Xllentech English Islamic Calendar SQL Injection (2.6.7)
|
CVE-2021-24341
CWE-89
|
CWE-89
|
High
|
Xtreme Locator Dealer Locator SQL Injection (1.5)
|
CWE-89
|
CWE-89
|
High
|
YARPP-Yet Another Related Posts SQL Injection (5.30.2)
|
CVE-2023-0579
CWE-89
|
CWE-89
|
High
|
Yasr-Yet Another Stars Rating SQL Injection (0.9.0)
|
CWE-89
|
CWE-89
|
High
|
YAWPP (Yet Another WordPress Petition Plugin) SQL Injection (1.2)
|
CVE-2014-5182
CWE-89
|
CWE-89
|
High
|
Yes/No Chart SQL Injection (1.0.11)
|
CVE-2021-24360
CWE-89
|
CWE-89
|
High
|
YITH WooCommerce Wishlist SQL Injection (2.1.2)
|
CWE-89
|
CWE-89
|
High
|
Yoast SEO SQL Injection (1.7.3.3)
|
CVE-2015-2292
CWE-89
|
CWE-89
|
High
|
yolink Search for WordPress 'bulkcrawl.php' SQL Injection (1.1.4)
|
CWE-89
|
CWE-89
|
High
|
Youzify-BuddyPress Community, User Profile, Social Network & Membership for WordPress SQL Injection (1.1.9)
|
CVE-2022-1950
CWE-89
|
CWE-89
|
High
|
Z-Vote 'zvote' Parameter SQL Injection (1.1)
|
CWE-89
|
CWE-89
|
High
|
Zabbix 2.0.8 SQL injection
|
CVE-2013-5743
CWE-89
|
CWE-89
|
High
|
Zero Spam SQL Injection (2.1.2)
|
CWE-89
|
CWE-89
|
High
|
Zingiri Web Shop Cookie Multiple SQL Injection Vulnerabilities (2.4.7)
|
CWE-89
|
CWE-89
|
High
|
Zingiri Web Shop Multiple Cross-Site Scripting and SQL Injection Vulnerabilities (2.3.5)
|
CWE-79
CWE-89
|
CWE-79
CWE-89
|
High
|
ZM Gallery SQL Injection (1.0)
|
CWE-89
|
CWE-89
|
High
|
Zotpress 'zotpress.rss.php' SQL Injection (4.4)
|
CWE-89
|
CWE-89
|
High
|
Zotpress SQL Injection (6.1.2)
|
CVE-2016-1000217
CWE-89
|
CWE-89
|
High
|