XSS Vulnerabilities

Vulnerability Name CVE CWE Severity
Adobe Coldfusion 8 multiple linked XSS vulnerabilies CVE-2009-1872  CWE-79  High
Adobe Flex 3 DOM-based XSS vulnerability CVE-2008-2640  CWE-79  High
AmCharts SWF XSS vulnerability CVE-2012-1303  CWE-79  High
AngularJS client-side template injection CWE-79  High
Apache 2.x version older than 2.0.63 CVE-2007-5000  CVE-2007-6388  CVE-2008-0005  CWE-79  Medium
Apache 2.x version older than 2.2.10 CVE-2008-2939  CVE-2010-2791  CWE-79  Low
Apache Tomcat hello.jsp XSS CVE-2007-1355  CWE-79  Low
Apache Tomcat version older than 4.1.37 CVE-2005-3164  CVE-2007-1355  CVE-2007-2449  CVE-2007-2450  CVE-2007-3382  CVE-2007-3383  CVE-2007-3385  CVE-2007-5333  CVE-2007-5461  CWE-79  Medium
Apache Tomcat version older than 4.1.39 CVE-2008-0128  CVE-2008-1232  CVE-2008-2370  CWE-22  Medium
Apache Tomcat version older than 5.5.25 CVE-2007-2449  CVE-2007-2450  CVE-2007-3382  CVE-2007-3385  CVE-2007-3386  CWE-79  Medium
Apache Tomcat version older than 5.5.27 CVE-2008-1232  CVE-2008-1947  CVE-2008-2370  CWE-22  Medium
Apache Tomcat version older than 6.0.6 CVE-2007-1358  CWE-79  Low
Apache Tomcat version older than 6.0.11 CVE-2005-2090  CVE-2007-1355  CWE-79  Medium
Apache Tomcat version older than 6.0.14 CVE-2007-2449  CVE-2007-2450  CVE-2007-3382  CVE-2007-3385  CVE-2007-3386  CWE-79  Medium
Apache Tomcat version older than 6.0.18 CVE-2008-1232  CVE-2008-1947  CVE-2008-2370  CWE-79  Medium
Apache version older than 1.3.39 CVE-2006-5752  CVE-2007-3304  CWE-79  Medium
Apache version older than 1.3.41 CVE-2007-6388  CWE-79  Medium
Atlassian Jira DOM-based cross-site scripting vulnerability CWE-79  High
Blind XSS CWE-80  High
CKEditor 4.0.1 cross-site scripting vulnerability CWE-79  High
CodeIgniter 2.1.3 xss_clean() filter bypass CVE-2013-4891  CWE-80  High
ColdFusion User-Agent cross-site scripting CVE-2007-0817  CWE-79  High
Cross-site scripting vulnerability in Google Web Toolkit CVE-2012-4563  CWE-80  High
Cross-site scripting vulnerability in Google Web Toolkit (CVE-2012-5920) CVE-2012-5920  CWE-80  High
Cross-site scripting vulnerability in Open Flash Chart CVE-2013-1636  CWE-79  High
Cross site scripting CWE-79  High
Cross site scripting (content-sniffing) CWE-79  Medium
Cross site scripting vulnerability in clipboard.swf CWE-79  High
Cross site scripting vulnerability in flowplayer SWF CVE-2013-7342  CWE-79  High
Cross site scripting vulnerability in jPlayer SWF CVE-2013-2023  CWE-79  High
Cross site scripting vulnerability in JW Player SWF CVE-2012-3351  CWE-79  High
Cross site scripting vulnerability in SimpleViewer CWE-79  High
Cross site scripting vulnerability in Uploadify SWF CWE-79  High
Cross site scripting vulnerability in ZeroClipboard.swf CWE-79  High
DOM-based cross site scripting CWE-79  High
Drupal Core 4.5.x Cross-Site Scripting (4.5.0 - 4.5.1) CVE-2005-0682  CWE-79  High
Drupal Core 4.5.x Cross-Site Scripting (4.5.0 - 4.5.5) CVE-2005-3973  CWE-79  High
Drupal Core 4.5.x Cross-Site Scripting (4.5.0 - 4.5.7) CVE-2006-1226  CWE-79  High
Drupal Core 4.6.x Cross-Site Scripting (4.6.0 - 4.6.3) CVE-2005-3973  CWE-79  High
Drupal Core 4.6.x Cross-Site Scripting (4.6.0 - 4.6.5) CVE-2006-1226  CWE-79  High
Drupal Core 4.6.x Cross-Site Scripting (4.6.0 - 4.6.7) CVE-2006-2833  CWE-79  High
Drupal Core 4.6.x Cross-Site Scripting (4.6.0 - 4.6.8) CVE-2006-4002  CWE-79  High
Drupal Core 4.6.x Cross-Site Scripting (4.6.0 - 4.6.10) CVE-2007-0136  CWE-79  High
Drupal Core 4.6.x Multiple Cross-Site Scripting Vulnerabilities (4.6.0 - 4.6.9) CVE-2006-5475  CWE-79  High
Drupal Core 4.7.x Cross-Site Scripting (4.7.0 - 4.7.1) CVE-2006-2833  CWE-79  High
Drupal Core 4.7.x Cross-Site Scripting (4.7.0 - 4.7.2) CVE-2006-4002  CWE-79  High
Drupal Core 4.7.x Cross-Site Scripting (4.7.0 - 4.7.4) CVE-2007-0136  CWE-79  High
Drupal Core 4.7.x Cross-Site Scripting (4.7.0 - 4.7.7) CVE-2007-5596  CWE-79  High
Drupal Core 4.7.x Cross-Site Scripting (4.7.0 - 4.7.10) CVE-2008-0274  CWE-79  High
Drupal Core 4.7.x Cross-Site Scripting (4.7.0 - 4.7.10) CVE-2008-0273  CWE-79  High
Drupal Core 4.7.x Multiple Cross-Site Scripting Vulnerabilities (4.7.0 - 4.7.3) CVE-2006-5475  CWE-79  High
Drupal Core 4.7.x Multiple Cross-Site Scripting Vulnerabilities (4.7.0 - 4.7.6) CVE-2007-4064  CWE-79  High
Drupal Core 5.x Cross-Site Scripting (5.0 - 5.2) CVE-2007-5596  CWE-79  High
Drupal Core 5.x Cross-Site Scripting (5.0 - 5.5) CVE-2008-0273  CWE-79  High
Drupal Core 5.x Cross-Site Scripting (5.0 - 5.5) CVE-2008-0274  CWE-79  High
Drupal Core 5.x Cross-Site Scripting (5.0 - 5.16) CVE-2009-1575  CVE-2009-1576  CVE-2009-1844  CWE-79  High
Drupal Core 5.x Cross-Site Scripting (5.0 - 5.17) CVE-2009-1844  CWE-79  High
Drupal Core 5.x Cross-Site Scripting (5.0 - 5.20) CVE-2009-4369  CWE-79  High
Drupal Core 5.x Multiple Cross-Site Scripting Vulnerabilities (5.0 - 5.1) CVE-2007-4064  CWE-79  High
Drupal Core 6.x Cross-Site Scripting (6.0 - 6.10) CVE-2009-1575  CVE-2009-1576  CVE-2009-1844  CWE-79  High
Drupal Core 6.x Cross-Site Scripting (6.0 - 6.11) CVE-2009-1844  CWE-79  High
Drupal Core 6.x Multiple Cross-Site Scripting Vulnerabilities (6.0 - 6.0) CVE-2008-1131  CVE-2008-1133  CWE-79  High
Drupal Core 6.x Multiple Cross-Site Scripting Vulnerabilities (6.0 - 6.14) CVE-2009-4369  CVE-2009-4370  CWE-79  High
Drupal Core 6.x Multiple Cross-Site Scripting Vulnerabilities (6.0 - 6.20) CWE-79  High
Drupal Core 8.5.x Cross-Site Scripting (8.5.0 - 8.5.1) CWE-79  High
Drupal Core 8.x.x Cross-Site Scripting (8.0.0 - 8.4.6) CWE-79  High
Edge Side Include injection CWE-918  High
ExtJS charts.swf cross site scripting CWE-80  High
FCKeditor spellchecker.php cross site scripting vulnerability CVE-2012-4000  CWE-79  High
File upload XSS CWE-79  High
Genericons DOM-based XSS vulnerability CWE-80  High
JIRA Security Advisory 2012-08-28 CWE-79  High
Joomla! component Kunena Forum multiple vulnerabilities CVE-2014-9102  CVE-2014-9103  CWE-89  High
Joomla! Core 1.0.x Cross-Site Scripting (1.0.0 - 1.0.11) CVE-2006-6832  CWE-79  High
Joomla! Core 1.0.x Cross-Site Scripting (1.0.0 - 1.0.15) CVE-2011-0005  CWE-79  High
Joomla! Core 1.0.x Cross-Site Scripting (1.0.0 - 1.0.15) CWE-79  High
Joomla! Core 1.0.x Multiple Cross-Site Scripting Vulnerabilities (1.0.0 - 1.0.10) CVE-2006-4474  CWE-79  High
Joomla! Core 1.0.x Multiple Cross-Site Scripting Vulnerabilities (1.0.0 - 1.0.12) CVE-2007-4189  CVE-2007-4190  CVE-2007-5577  CWE-79  High
Joomla! Core 1.5.x Cross-Site Scripting (1.5.0 - 1.5.7) CVE-2008-6299  CWE-79  High
Joomla! Core 1.5.x Cross-Site Scripting (1.5.0 - 1.5.9) CVE-2009-1279  CWE-79  High
Joomla! Core 1.5.x Cross-Site Scripting (1.5.0 - 1.5.10) CVE-2009-1939  CWE-79  High
Joomla! Core 1.5.x Cross-Site Scripting (1.5.0 - 1.5.10) CVE-2009-1940  CWE-79  High
Joomla! Core 1.5.x Cross-Site Scripting (1.5.0 - 1.5.10) CVE-2009-1938  CWE-79  High
Joomla! Core 1.5.x Cross-Site Scripting (1.5.0 - 1.5.11) CVE-2011-4909  CWE-79  High
Joomla! Core 1.5.x Cross-Site Scripting (1.5.0 - 1.5.11) CVE-2011-4910  CWE-79  High
Joomla! Core 1.5.x Multiple Cross-Site Scripting Vulnerabilities (1.5.0 - 1.5.20) CVE-2010-3712  CWE-79  High
Joomla! Core 1.6.x Cross-Site Scripting (1.6.0 - 1.6.3) CVE-2011-4332  CWE-79  High
Joomla! Core 1.6.x Cross-Site Scripting (1.6.0 - 1.6.5) CVE-2011-2710  CWE-79  High
Joomla! Core 1.6.x Cross-Site Scripting (1.6.0 - 1.6.6) CWE-79  High
Joomla! Core 1.6.x Cross-Site Scripting (1.6.0 - 1.6.6) CVE-2011-3595  CWE-79  High
Joomla! Core 1.6.x Cross-Site Scripting (1.6.0 - 1.6.6) CVE-2012-0822  CWE-79  High
Joomla! Core 1.6.x Cross-Site Scripting (1.6.0 - 1.6.6) CVE-2012-0820  CWE-79  High
Joomla! Core 1.6.x Multiple Cross-Site Scripting Vulnerabilities (1.6.0 - 1.6.3) CVE-2011-2509  CWE-79  High
Joomla! Core 1.7.0 Cross-Site Scripting (1.7.0 - 1.7.0) CVE-2011-3595  CWE-79  High
Joomla! Core 1.7.0 Cross-Site Scripting (1.7.0 - 1.7.0) CWE-79  High
Joomla! Core 1.7.x Cross-Site Scripting (1.7.0 - 1.7.2) CWE-79  High
Joomla! Core 1.7.x Cross-Site Scripting (1.7.0 - 1.7.3) CVE-2012-0820  CWE-79  High
Joomla! Core 1.7.x Cross-Site Scripting (1.7.0 - 1.7.3) CVE-2012-0822  CWE-79  High
Joomla! Core 2.5.x Cross-Site Scripting (2.5.0 - 2.5.1) CVE-2012-1117  CWE-79  High
Joomla! Core 2.5.x Cross-Site Scripting (2.5.0 - 2.5.3) CVE-2012-1612  CWE-79  High
Joomla! Core 2.5.x Cross-Site Scripting (2.5.0 - 2.5.6) CVE-2012-4531   CWE-79  High
Joomla! Core 2.5.x Cross-Site Scripting (2.5.0 - 2.5.6) CVE-2012-4532  CWE-79  High
Joomla! Core 2.5.x Cross-Site Scripting (2.5.0 - 2.5.9) CVE-2013-3267  CWE-79  High
Joomla! Core 2.5.x Cross-Site Scripting (2.5.0 - 2.5.9) CVE-2013-3058  CWE-79  High
Joomla! Core 2.5.x Cross-Site Scripting (2.5.0 - 2.5.9) CWE-79  High
Joomla! Core 2.5.x Cross-Site Scripting (2.5.0 - 2.5.9) CVE-2013-3059  CWE-79  High
Joomla! Core 2.5.x Cross-Site Scripting (2.5.0 - 2.5.14) CWE-79  High
Joomla! Core 2.5.x Cross-Site Scripting (2.5.0 - 2.5.18) CVE-2014-7982  CWE-79  High
Joomla! Core 3.0.0 Cross-Site Scripting (3.0.0 - 3.0.0) CWE-79  High
Joomla! Core 3.0.x Cross-Site Scripting (3.0.0 - 3.0.3) CVE-2013-3059  CWE-79  High
Joomla! Core 3.0.x Cross-Site Scripting (3.0.0 - 3.0.3) CVE-2013-3267  CWE-79  High
Joomla! Core 3.0.x Cross-Site Scripting (3.0.0 - 3.0.3) CVE-2013-3058  CWE-79  High
Joomla! Core 3.0.x Cross-Site Scripting (3.0.0 - 3.0.3) CWE-79  High
Joomla! Core 3.2.x Cross-Site Scripting (3.2.0 - 3.2.4) CVE-2014-6631  CWE-79  High
Joomla! Core 3.3.x Cross-Site Scripting (3.3.0 - 3.3.3) CVE-2014-6631  CWE-79  High
Joomla! Core 3.4.x Cross-Site Scripting (3.4.0 - 3.4.3) CVE-2015-6939  CWE-79  High
Joomla! Core 3.x.x Cross-Site Scripting (3.0.0 - 3.1.5) CWE-79  High
Joomla! Core 3.x.x Cross-Site Scripting (3.0.0 - 3.2.2) CVE-2014-7982  CWE-79  High
Joomla! Core 3.x.x Cross-Site Scripting (3.0.0 - 3.8.3) CVE-2018-6380  CWE-79  High
Joomla! Core 3.x.x Cross-Site Scripting (3.1.2 - 3.2.2) CVE-2014-7983  CWE-79  High
Joomla! Core 3.x.x Cross-Site Scripting (3.1.2 - 3.8.7) CVE-2018-11328  CWE-79  High
Joomla! Core 3.x.x Multiple Cross-Site Scripting Vulnerabilities (3.0.0 - 3.8.7) CVE-2018-11326  CWE-79  High
Joomla! Core Cross-Site Scripting (1.5.0 - 3.7.3) CVE-2017-11612  CWE-79  High
Joomla! Core Cross-Site Scripting (1.5.0 - 3.8.3) CVE-2018-6379  CWE-79  High
Joomla! Core Cross-Site Scripting (1.6.0 - 3.6.0) CWE-79  High
Joomla! Core Cross-Site Scripting (1.6.0 - 3.8.8) CVE-2018-12711  CWE-79  High
Joomla! Core Multiple Cross-Site Scripting Vulnerabilities (1.5.0 - 3.8.7) CVE-2018-6378  CWE-79  High
MediaWiki SVG cross-site scripting vulnerability CWE-79  High
Microsoft SharePoint XSS spoofing vulnerability CVE-2015-2522  CWE-80  High
Multiple XSS vulnerabilities in Google Web Toolkit CVE-2013-4204  CWE-80  High
Nginx Redirect Header Injection CWE-93  Medium
Parallels Plesk SSO XML External Entity and Cross-site scripting CWE-611  High
Possible cross site scripting via Host header CWE-79  High
Railo administration panel cross-site scripting CWE-80  High
Remote file inclusion XSS CWE-79  High
Typo3 core sanitizeLocalUrl() non-persistent cross-site scripting CVE-2015-5956  CWE-79  High
Unfiltered header injection in Apache 1.3.34/2.0.57/2.2.1 CVE-2006-3918  CWE-79  High
User controllable script source CWE-79  High
User controllable tag parameter CWE-79  Medium
Vulnerabilities in SharePoint could allow elevation of privilege CVE-2012-1859  CWE-79  High
WebLogic Server Side Request Forgery CVE-2014-4241  CVE-2014-4210  CVE-2014-4242  CWE-918  High
WordPress 'edit.php' Cross-Site Scripting Vulnerability (1.5 - 1.5) CWE-79  High
WordPress 'index.php' Cross-Site Scripting Vulnerability (1.5 - 1.5) CWE-79  High
WordPress 'post.php' Cross-Site Scripting Vulnerability (1.5 - 1.5) CWE-79  High
WordPress 'press-this.php' Multiple Cross-Site Scripting Vulnerabilities (2.0 - 2.5.1) CVE-2008-3233  CWE-79  High
WordPress 'swfupload.swf' Cross-Site Scripting Vulnerability (2.5 - 3.3.1) CVE-2012-3414  CWE-79  High
WordPress 'templates.php' Cross-Site Scripting Vulnerability (0.6.2 - 2.1) CVE-2007-1049  CWE-79  High
WordPress 'wp-register.php' Multiple Cross-Site Scripting Vulnerabilities (2.0 - 2.0.1) CVE-2007-5105  CVE-2007-5106  CWE-79  High
WordPress 2.0.5 Cross-Site Scripting Vulnerability (0.6.2 - 2.0.5) CVE-2006-6808  CWE-79  High
WordPress 2.0.5 Invalid CSRF Token Cross-Site Scripting Vulnerability (0.6.2 - 2.0.5) CVE-2007-0106  CWE-79  High
WordPress 2.1.1 Cross-Site Scripting Vulnerability (2.1.1 - 2.1.1) CVE-2007-1244  CWE-79  High
WordPress 2.2 Cross-Site Scripting Vulnerability (2.2 - 2.2) CVE-2007-3238  CWE-79  High
WordPress 2.3 Cross-Site Scripting Vulnerability (2.3 - 2.3) CVE-2007-5710  CWE-79  High
WordPress 2.5 Cross-Site Scripting Vulnerability (2.5 - 2.5) CVE-2008-2068  CWE-79  High
WordPress 2.6.3 Cross-Site Scripting Vulnerability (0.6.2 - 2.6.3) CVE-2008-5278  CWE-79  High
WordPress 2.8.1 Comment Author URI Cross-Site Scripting Vulnerability (0.6.2 - 2.8.1) CVE-2009-2851  CWE-79  High
WordPress 3.0.3 KSES Library Cross-Site Scripting Vulnerability (0.6.2 - 3.0.3) CVE-2010-4536  CWE-79  High
WordPress 3.3 Cross-Site Scripting Vulnerability (3.3 - 3.3) CVE-2012-0287  CWE-79  High
WordPress 3.8.x Cross-Site Scripting Vulnerability (3.8 - 3.8.11) CVE-2016-1564  CWE-79  High
WordPress 3.8.x Same Origin Method Execution (SOME) Vulnerability (3.8 - 3.8.13) CVE-2016-4566  CWE-79  High
WordPress 3.9.x Cross-Site Scripting Vulnerability (3.9 - 3.9.9) CVE-2016-1564  CWE-79  High
WordPress 3.9.x Same Origin Method Execution (SOME) Vulnerability (3.9 - 3.9.11) CVE-2016-4566  CWE-79  High
WordPress 3.x persistent script injection CWE-79  High
WordPress 4.0.x Cross-Site Scripting Vulnerability (4.0 - 4.0.8) CVE-2016-1564  CWE-79  High
WordPress 4.0.x Same Origin Method Execution (SOME) Vulnerability (4.0 - 4.0.10) CVE-2016-4566  CWE-79  High
WordPress 4.1.x Cross-Site Scripting Vulnerability (4.1 - 4.1.8) CVE-2016-1564  CWE-79  High
WordPress 4.1.x Same Origin Method Execution (SOME) Vulnerability (4.1 - 4.1.10) CVE-2016-4566  CWE-79  High
WordPress 4.2.x Cross-Site Scripting Vulnerability (4.2 - 4.2.5) CVE-2016-1564  CWE-79  High
WordPress 4.2.x Cross-Site Scripting Vulnerability (4.2 - 4.2.7) CVE-2016-4567  CWE-79  High
WordPress 4.2.x Same Origin Method Execution (SOME) Vulnerability (4.2 - 4.2.7) CVE-2016-4566  CWE-79  High
WordPress 4.3.x Cross-Site Scripting Vulnerability (4.3 - 4.3.1) CVE-2016-1564  CWE-79  High
WordPress 4.3.x Cross-Site Scripting Vulnerability (4.3 - 4.3.3) CVE-2016-4567  CWE-79  High
WordPress 4.3.x Same Origin Method Execution (SOME) Vulnerability (4.3 - 4.3.3) CVE-2016-4566  CWE-79  High
WordPress 4.4 Cross-Site Scripting Vulnerability (4.4 - 4.4) CVE-2016-1564  CWE-79  High
WordPress 4.4.x Cross-Site Scripting Vulnerability (4.4 - 4.4.2) CVE-2016-4567  CWE-79  High
WordPress 4.4.x Same Origin Method Execution (SOME) Vulnerability (4.4 - 4.4.2) CVE-2016-4566  CWE-79  High
WordPress 4.5.x Cross-Site Scripting Vulnerability (4.5 - 4.5.1) CVE-2016-4567  CWE-79  High
WordPress 4.5.x Same Origin Method Execution (SOME) Vulnerability (4.5 - 4.5.1) CVE-2016-4566  CWE-79  High
WordPress Comment Post Cross-Site Scripting Vulnerability (2.0 - 2.0) CVE-2006-0733  CWE-79  High
WordPress Cross-Site Scripting Vulnerability (0.70 - 3.7.11) CVE-2016-1564  CWE-79  High
WordPress Cross-Site Scripting Vulnerability (0.70 - 4.1.1) CVE-2015-3438   CWE-79  High
WordPress Cross-Site Scripting Vulnerability (3.0 - 3.6.1) CVE-2014-9031  CWE-79  High
WordPress Cross-Site Scripting Vulnerability (3.9 - 4.1.1) CVE-2015-3439   CWE-79  High
WordPress Cross-Site Scripting Vulnerability (3.9.3 - 4.2) CVE-2015-3440   CWE-79  High
WordPress MU 'wp-admin/wpmu-blogs.php' Multiple Cross-Site Scripting Vulnerabilities (1.0 - 2.5.1) CVE-2008-4671  CWE-79  High
WordPress MU 'wp-includes/wpmu-functions.php' Cross-Site Scripting Vulnerability (1.0 - 2.6) CVE-2009-1030  CWE-79  High
WordPress Multiple Cross-Site Scripting and SQL Injection Vulnerabilities (1.2.1 - 1.2.2) CWE-79  CWE-89  High
WordPress Multiple Cross-Site Scripting Vulnerabilities (1.2 - 1.2.1) CWE-79  High
WordPress Multiple Cross-Site Scripting Vulnerabilities (2.0 - 2.0.1) CVE-2006-0985  CVE-2006-1796  CWE-79  High
WordPress Multiple Cross-Site Scripting Vulnerabilities (2.0.11 - 2.3) CVE-2008-0193  CWE-79  High
WordPress Multiple Cross-Site Scripting Vulnerabilities (4.1 - 4.2.1) CVE-2015-3429  CVE-2015-8834  CWE-79  High
WordPress Plugin 1 Flash Gallery Cross-Site Scripting and SQL Injection Vulnerabilities (0.2.5 ) CWE-79  CWE-89  High
WordPress Plugin 1-click Retweet/Share/Like Cross-Site Scripting (5.2) CWE-79  High
WordPress Plugin 1player Cross-Site Scripting (1.3) CWE-79  High
WordPress Plugin 2 Click Social Media Buttons 'xing-url' Parameter Cross-Site Scripting (0.32.2) CVE-2012-4273  CWE-79  High
WordPress Plugin 2kb Amazon Affiliates Store Cross-Site Scripting (2.1.0) CVE-2017-14622  CWE-79  High
WordPress Plugin 3D Slider Slice Box Multiple Cross-Site Scripting Vulnerabilities (1.0) CWE-79  High
WordPress Plugin 3xSocializer Cross-Site Scripting (0.98.22) CWE-79  High
WordPress Plugin 123devis-affiliation Cross-Site Scripting (1.0.4) CWE-79  High
WordPress Plugin 360 Product Viewer Cross-Site Scripting (2.5.1) CWE-79  High
WordPress Plugin 404 to 301 Cross-Site Scripting (2.3.0) CWE-79  High
WordPress Plugin 404 to 301 Cross-Site Scripting (2.3.1) CWE-79  High
WordPress Plugin A.M.Y. Cross-Site Scripting (1.3.3) CWE-79  High
WordPress Plugin ABC Test 'id' Parameter Cross-Site Scripting (0.1) CWE-79  High
WordPress Plugin AB Press Optimizer Multiple Cross-Site Scripting Vulnerabilities (1.1.1) CWE-79  High
WordPress Plugin Accept Signups 'email' Parameter Cross-Site Scripting (0.1) CWE-79  High
WordPress Plugin Access Expiration Cross-Site Scripting (1.1) CWE-79  High
WordPress Plugin Active Directory Authentication Integration Cross-Site Scripting (0.6) CWE-79  High
WordPress Plugin Active Extra Fields Cross-Site Scripting (1.0.1) CWE-79  High
WordPress Plugin ActiveHelper LiveHelp Live Chat Multiple Cross-Site Scripting Vulnerabilities (3.1.0) CVE-2014-4513  CWE-79  High
WordPress Plugin ActiveHelper LiveHelp Live Chat Multiple Cross-Site Scripting Vulnerabilities (4.5.0) CWE-79  High
WordPress Plugin Activity Log Cross-Site Scripting (2.3.1) CWE-79  High
WordPress Plugin Activity Log Multiple Cross-Site Scripting Vulnerabilities (2.3.2) CWE-79  High
WordPress Plugin Activity Log Multiple Cross-Site Scripting Vulnerabilities (2.4.0) CVE-2018-8729  CWE-79  High
WordPress Plugin Acunetix Secure WordPress Cross-Site Scripting (3.0.3) CWE-79  High
WordPress Plugin Ad-minister Cross-Site Scripting (0.6) CVE-2013-6993   CWE-79  High
WordPress Plugin Add Any Extension to Pages Cross-Site Scripting (1.3) CWE-79  High
WordPress Plugin Add Custom Link to WordPress Admin Bar Cross-Site Scripting (1.0) CWE-79  High
WordPress Plugin Add Link to Facebook Cross-Site Scripting (2.2.7) CWE-79  High
WordPress Plugin Add Link to Facebook Cross-Site Scripting (2.3) CVE-2018-5214  CWE-79  High
WordPress Plugin Add Link to Facebook Multiple Cross-Site Scripting Vulnerabilities (1.215) CWE-79  High
WordPress Plugin AddSearch Cross-Site Scripting (1.1.0) CWE-79  High
WordPress Plugin AddToAny Share Buttons Cross-Site Scripting (1.6.6) CWE-79  High
WordPress Plugin ADIF Log Search Widget Cross-Site Scripting (1.0e) CWE-79  High
WordPress Plugin Ad Inserter Cross-Site Scripting (1.5.5) CWE-79  High
WordPress Plugin Admin Bar User Switching Cross-Site Scripting (1.0.4) CWE-79  High
WordPress Plugin Adminer Cross-Site Scripting (1.4.2) CWE-79  High
WordPress Plugin Adminer Multiple Cross-Site Scripting Vulnerabilities (1.4.3) CWE-79  High
WordPress Plugin Admin Font Editor Cross-Site Scripting (1.8) CVE-2016-1000126  CWE-79  High
WordPress Plugin Adminimize 'page' Parameter Cross-Site Scripting (1.7.21) CVE-2011-4926  CWE-79  High
WordPress Plugin Admin Pack by SITE CASEIRO Cross-Site Scripting (1.1) CWE-79  High
WordPress Plugin AdPlugg WordPress Ad Cross-Site Scripting (1.1.33) CWE-79  High
WordPress Plugin AdRotate 'title' Parameter Multiple Cross-Site Scripting Vulnerabilities (3.7.3.5) CWE-79  High
WordPress Plugin AdSense Manager Cross-Site Scripting (4.0.3) CWE-79  High
WordPress Plugin Advance Categorizer Cross-Site Scripting (0.3) CWE-79  High
WordPress Plugin Advanced ads Management by Inazo Cross-Site Scripting (1.3) CWE-79  High
WordPress Plugin Advanced Custom Fields:Table Field Cross-Site Scripting (1.1.12) CWE-79  High
WordPress Plugin Advanced Custom Fields Cross-Site Scripting (4.4.3) CWE-79  High
WordPress Plugin Advanced Custom Fields Cross-Site Scripting (4.4.7) CWE-79  High
WordPress Plugin Advanced Page Manager Cross-Site Scripting (1.4.1) CWE-79  High
WordPress Plugin Advanced Permalinks Cross-Site Scripting (0.1.19) CWE-79  High
WordPress Plugin Advanced Post Type Ratings Cross-Site Scripting (1.01) CWE-79  High
WordPress Plugin Advanced Shipping Validation for WooCommerce Cross-Site Scripting (1.0.0) CWE-79  High
WordPress Plugin Advanced Text Widget 'page' Parameter Cross-Site Scripting (2.0.0) CVE-2011-4618  CWE-79  High
WordPress Plugin Advanced User Registration and Management Cross-Site Scripting (2.3.5) CWE-79  High
WordPress Plugin Advance Search for WooCommerce Cross-Site Scripting (1.0.9) CWE-79  High
WordPress Plugin AdVert Cross-Site Scripting (1.0.5) CWE-79  High
WordPress Plugin AdWizz 'link' Parameter Cross-Site Scripting (1.0) CWE-79  High
WordPress Plugin Aesop Story Engine Cross-Site Scripting (1.6) CWE-79  High
WordPress Plugin Affiliate Ads for Clickbank Products Cross-Site Scripting (1.6) CVE-2017-18011  CWE-79  High
WordPress Plugin Affiliate Link Manager Cross-Site Scripting (2.1.1) CWE-79  High
WordPress Plugin Affiliate Press Multiple Cross-Site Scripting Vulnerabilities (0.3.8) CWE-79  High
WordPress Plugin Affiliates Multiple Cross-Site Scripting Vulnerabilities (2.13.1) CWE-79  High
WordPress Plugin AffiliateWP Cross-Site Scripting (2.0.9) CWE-79  High
WordPress Plugin AgentEasy Properties Cross-Site Scripting (1.0.4) CWE-79  High
WordPress Plugin AgentPress Broker Listings Cross-Site Scripting (1.0) CWE-79  High
WordPress Plugin Agent Storm by StormRETS Multiple Cross-Site Scripting Vulnerabilities (1.1.35) CWE-79  High
WordPress Plugin Age Verify Cross-Site Scripting (0.2.8) CWE-79  High
WordPress Plugin AGP Font Awesome Collection Cross-Site Scripting (2.7.2) CWE-79  High
WordPress Plugin Ajax Calendar 'example.php' Cross-Site Scripting (1.0) CWE-79  High
WordPress Plugin Ajax Category Dropdown Cross-Site Scripting and SQL Injection Vulnerabilities (0.1.5) CWE-79  CWE-89  High
WordPress Plugin AJAX Comment Page Cross-Site Scripting (3.25) CWE-79  High
WordPress Plugin Ajax Contact Form Cross-Site Scripting (1.0) CWE-79  High
WordPress Plugin Ajax Plugin Helper Cross-Site Scripting (1.0.5) CWE-79  High
WordPress Plugin AJAX Random Post Cross-Site Scripting (2.00) CVE-2016-1000127  CWE-79  High
WordPress Plugin AJS Instagram Feed Cross-Site Scripting (1.0) CWE-79  High
WordPress Plugin Akismet Cross-Site Scripting (3.1.4) CWE-79  High
WordPress Plugin Alert Before Your Post Cross-Site Scripting (0.1.1) CVE-2011-5107  CWE-79  High
WordPress Plugin All-in-One Event Calendar Cross-Site Scripting (2.4.0) CWE-79  High
WordPress Plugin All-in-One Event Calendar Cross-Site Scripting (2.5.18) CWE-79  High
WordPress Plugin All-in-One Event Calendar Multiple Cross-Site Scripting Vulnerabilities (1.5) CVE-2012-1835  CWE-79  High
WordPress Plugin All-in-One WP Migration Cross-Site Scripting (6.45) CWE-79  High
WordPress Plugin All Category SEO Updater Cross-Site Scripting (0.2.7) CWE-79  High
WordPress Plugin All In One Favicon Cross-Site Scripting (4.6) CVE-2018-13832  CWE-79  High
WordPress Plugin All In One Schema.org Rich Snippets Cross-Site Scripting (1.4.4) CWE-79  High
WordPress Plugin All in One SEO Pack Cross-Site Scripting (2.0.3) CWE-79  High
WordPress Plugin All in One SEO Pack Cross-Site Scripting (2.2.2) CWE-79  High
WordPress Plugin All in One SEO Pack Cross-Site Scripting (2.2.6.1) CWE-79  High
WordPress Plugin All in One SEO Pack Cross-Site Scripting (2.3.6.1) CWE-79  High
WordPress Plugin All in One SEO Pack Cross-Site Scripting (2.3.7) CWE-79  High
WordPress Plugin All In One WP Security & Firewall Cross-Site Scripting (3.8.3) CWE-79  High
WordPress Plugin All In One WP Security & Firewall Cross-Site Scripting (3.9.4) CWE-79  High
WordPress Plugin All In One WP Security & Firewall Cross-Site Scripting (3.9.7) CWE-79  High
WordPress Plugin All In One WP Security & Firewall Cross-Site Scripting (4.1.9) CWE-79  High
WordPress Plugin All In One WP Security & Firewall Cross-Site Scripting (4.2.1) CWE-79  High
WordPress Plugin All In One WP Security & Firewall Multiple Cross-Site Scripting Vulnerabilities (4.0.7) CWE-79  High
WordPress Plugin Allopass for WP Cross-Site Scripting (1.0.7) CWE-79  High
WordPress Plugin ALO EasyMail Newsletter Cross-Site Scripting (2.8.1) CWE-79  High
WordPress Plugin ALO EasyMail Newsletter Multiple Cross-Site Scripting Vulnerabilities (2.4.7) CWE-79  High
WordPress Plugin Alpine PhotoTile for Instagram Cross-Site Scripting (1.2.6.5) CWE-79  High
WordPress Plugin Alpine PhotoTile for Instagram Cross-Site Scripting (1.2.7.4) CWE-79  High
WordPress Plugin Alpine PhotoTile for Instagram Cross-Site Scripting (1.2.7.5) CWE-79  High
WordPress Plugin Alpine PhotoTile for Instagram Cross-Site Scripting (1.2.7.7) CWE-79  High
WordPress Plugin Altos Connect Widget Cross-Site Scripting (1.3.0) CWE-79  High
WordPress Plugin AmazonFeed Cross-Site Scripting (2.1) CWE-79  High
WordPress Plugin Amazon Tools Cross-Site Scripting (1.7.2) CWE-79  High
WordPress Plugin AMP Toolbox Cross-Site Scripting (1.9.4) CWE-79  High
WordPress Plugin amtyThumb Cross-Site Scripting (4.1.2) CWE-79  High
WordPress Plugin amtyThumb posts Cross-Site Scripting (8.1.3) CVE-2017-17059  CWE-79  High
WordPress Plugin Analytics Tracker Cross-Site Scripting (1.1.0) CWE-79  High
WordPress Plugin Animal Captcha Cross-Site Scripting (1.6.2) CWE-79  High
WordPress Plugin AnnounceME Cross-Site Scripting (0.3.3) CWE-79  High
WordPress Plugin Another WordPress Classifieds Cross-Site Scripting (3.3.1) CVE-2014-9313  CWE-79  High
WordPress Plugin Answer My Question Cross-Site Scripting (1.3) CWE-79  High
WordPress Plugin Answer My Question Multiple Cross-Site Scripting Vulnerabilities (1.1) CWE-79  High
WordPress Plugin Anthologize Cross-Site Scripting (0.7.7) CWE-79  High
WordPress Plugin Anti-Malware Security and Brute-Force Firewall Cross-Site Scripting (1.2.05.20) CWE-79  High
WordPress Plugin Anti-Malware Security and Brute-Force Firewall Cross-Site Scripting (4.15.22) CWE-79  High
WordPress Plugin Anti-Malware Security and Brute-Force Firewall Cross-Site Scripting (4.15.42) CWE-79  High
WordPress Plugin Anti-Malware Security and Brute-Force Firewall Cross-Site Scripting (4.15.49) CWE-79  High
WordPress Plugin Anti-Malware Security and Brute-Force Firewall Cross-Site Scripting (4.17.29) CWE-79  High
WordPress Plugin Anti-Malware Security and Brute-Force Firewall Multiple Cross-Site Scripting Vulnerabilities (4.15.17) CWE-79  High
WordPress Plugin Anti-spam Cross-Site Scripting (4.1) CWE-79  High
WordPress Plugin Anti-Splog Cross-Site Scripting (2.1.7) CWE-79  High
WordPress Plugin Anti Plagiarism Cross-Site Scripting (3.60) CVE-2016-1000128  CWE-79  High
WordPress Plugin AnyFont Cross-Site Scripting (2.2.3) CVE-2014-4515   CWE-79  High
WordPress Plugin AnyVar Cross-Site Scripting (0.1.1) CVE-2017-6103  CWE-79  High
WordPress Plugin aoringo CAT setter Cross-Site Scripting (0.1.1) CWE-79  High
WordPress Plugin aoringo LOG maker Cross-Site Scripting (0.1.3) CWE-79  High
WordPress Plugin aoringo TAG upper Cross-Site Scripting (0.1.6) CWE-79  High
WordPress Plugin Appointment Calendar Multiple Cross-Site Scripting Vulnerabilities (2.7.4) CWE-79  High
WordPress Plugin Appointments Cross-Site Scripting (2.2.2.2) CWE-79  High
WordPress Plugin Appointments Scheduler Cross-Site Scripting (1.5) CVE-2014-4579  CWE-79  High
WordPress Plugin AppPresser-Mobile App Framework Cross-Site Scripting (1.1.4) CWE-79  High
WordPress Plugin Apptivo Business Site CRM Multiple Cross-Site Scripting Vulnerabilities (1.2.9) CWE-79  High
WordPress Plugin Apptivo eCommerce Multiple Cross-Site Scripting Vulnerabilities (1.1.5) CWE-79  High
WordPress Plugin April's Super Functions Pack Cross-Site Scripting (1.4.7) CVE-2014-100026  CWE-79  High
WordPress Plugin Archive Posts Sort Customize Cross-Site Scripting (1.5) CWE-79  High
WordPress Plugin Are You a Human-The Fun Spam Blocker Cross-Site Scripting (1.4.32) CWE-79  High
WordPress Plugin Arigato Autoresponder and Newsletter Cross-Site Scripting (2.3.1) CWE-79  High
WordPress Plugin Arlo training and event management system Cross-Site Scripting (2.1.7.1) CWE-79  High
WordPress Plugin ARS Reg Secure Cross-Site Scripting (1.1) CWE-79  High
WordPress Plugin Article Directory Cross-Site Scripting (1.3) CWE-79  High
WordPress Plugin Article Directory Redux Cross-Site Scripting (1.0.2) CWE-79  High
WordPress Plugin Asgaros Forum Cross-Site Scripting (1.0.7) CWE-79  High
WordPress Plugin AStickyPostOrderER Cross-Site Scripting (0.3.1) CWE-79  High
WordPress Plugin Attached images title editor Cross-Site Scripting (1.1.1) CWE-79  High
WordPress Plugin Attach Gallery Posts Cross-Site Scripting (1.6) CWE-79  High
WordPress Plugin Audio 'showfile' Parameter Cross-Site Scripting (0.5.1) CWE-79  High
WordPress Plugin Audio Player Cross-Site Scripting (2.0.4.5) CVE-2013-1464  CWE-79  High
WordPress Plugin Audit Trail Cross-Site Scripting (1.1.13) CWE-79  High
WordPress Plugin Author Page Views Cross-Site Scripting (1.0) CWE-79  High
WordPress Plugin Author Periodic Report Cross-Site Scripting (1.0) CWE-79  High
WordPress Plugin Author Stats Cross-Site Scripting (1.3) CWE-79  High
WordPress Plugin Auto Group Join Cross-Site Scripting (1.0) CWE-79  High
WordPress Plugin Automated Editor Cross-Site Scripting (1.3) CWE-79  High
WordPress Plugin Automated Registration of the Course Multiple Cross-Site Scripting Vulnerabilities (1.0) CWE-79  High
WordPress Plugin Automatic Online Backup 'url' Parameter Cross-Site Scripting (0.8.2) CWE-79  High
WordPress Plugin Automattic Stats Referer Field HTML Injection (1.0) CWE-79  High
WordPress Plugin Auto ThickBox Plus Cross-Site Scripting (1.9) CWE-79  High
WordPress Plugin AVK-Shop Multiple Cross-Site Scripting Vulnerabilities (1.1.1) CWE-79  High
WordPress Plugin Awesome Studio Cross-Site Scripting (1.0.7) CWE-79  High
WordPress Plugin Awesome Support-WordPress HelpDesk & Support Cross-Site Scripting (3.2.9) CWE-79  High
WordPress Plugin AzonPost Cross-Site Scripting (1.3) CWE-79  High
WordPress Plugin Backend Localization Multiple Cross-Site Scripting Vulnerabilities (1.6.1) CWE-79  High
WordPress Plugin Background Music Cross-Site Scripting (1.0) CVE-2013-1942  CWE-79  High
WordPress Plugin Backlink Rechecker Multiple Cross-Site Scripting Vulnerabilities (1.2.1) CWE-79  High
WordPress Plugin BackWPup Cross-Site Scripting (3.0.12) CVE-2013-4626   CWE-79  High
WordPress Plugin BackWPup Cross-Site Scripting (3.2.3) CWE-79  High
WordPress Plugin BackWPup Cross-Site Scripting (3.2.5) CWE-79  High
WordPress Plugin Bad Behavior Multiple Cross-Site Scripting Vulnerabilities (2.2.4) CVE-2012-4271  CWE-79  High
WordPress Plugin Badgearoo Cross-Site Scripting (1.0.8) CWE-79  High
WordPress Plugin Bangla Sidebar Login Cross-Site Scripting (1.0) CWE-79  High
WordPress Plugin Banner Effect Header Cross-Site Scripting (1.2.7) CVE-2015-1384   CWE-79  High
WordPress Plugin Banner Garden Multiple Cross-Site Scripting Vulnerabilities (0.1.3) CWE-79  High
WordPress Plugin Bannerlid Cross-Site Scripting (1.1.0) CWE-79  High
WordPress Plugin BannerMan Cross-Site Scripting (0.2.4) CVE-2014-4845  CWE-79  High
WordPress Plugin Banner Slider Cross-Site Scripting (1.0) CWE-79  High
WordPress Plugin Basic Dev Tools Multiple Cross-Site Scripting Vulnerabilities (1.4.1) CWE-79  High
WordPress Plugin Basic Google Maps Placemarks Cross-Site Scripting (1.10.2) CWE-79  High
WordPress Plugin bbPress Cross-Site Scripting (2.5.6) CWE-79  High
WordPress Plugin bbPress Cross-Site Scripting (2.5.8) CWE-79  High
WordPress Plugin bbPress Cross-Site Scripting (2.5.9) CWE-79  High
WordPress Plugin bbPress Social Network Multiple Cross-Site Scripting Vulnerabilities (9.2) CWE-79  High
WordPress Plugin Beer Recipes Cross-Site Scripting (1.0) CWE-79  High
WordPress Plugin BestSmallShopLite Cross-Site Scripting (1.0.1) CWE-79  High
WordPress Plugin betterAmazonAPI Cross-Site Scripting (1.2) CWE-79  High
WordPress Plugin BetterOptin Cross-Site Scripting (1.2.4) CWE-79  High
WordPress Plugin Better User Shortcodes Multiple Cross-Site Scripting Vulnerabilities (1.0) CWE-79  High
WordPress Plugin BezahlCode-Generator 'gen_name' Parameter Cross-Site Scripting (1.0) CWE-79  High
WordPress Plugin bib2html Cross-Site Scripting (0.9.3) CVE-2014-3870  CWE-79  High
WordPress Plugin BIC Media Widget Cross-Site Scripting (1.0) CVE-2014-4516   CWE-79  High
WordPress Plugin BigDoor Quick Gamification for WordPress Cross-Site Scripting (1.0.5) CWE-79  High
WordPress Plugin Bilingual Linker Cross-Site Scripting (2.1.1) CWE-79  High
WordPress Plugin Bind Users to Taxonomy Cross-Site Scripting (0.3) CWE-79  High
WordPress Plugin BingImport Cross-Site Scripting (0.4) CWE-79  High
WordPress Plugin BitMonet Cross-Site Scripting (1.0) CWE-79  High
WordPress Plugin BizLibrary Cross-Site Scripting (1.1) CWE-79  High
WordPress Plugin bizzCam Video Cross-Site Scripting (0.1) CWE-79  High
WordPress Plugin Blogomatic Cross-Site Scripting (1.0) CWE-79  High
WordPress Plugin Blogroll Fun-Show Last Post and Last Update Time Cross-Site Scripting (0.8.4) CWE-79  High
WordPress Plugin Blogstand Banner Cross-Site Scripting (1.0) CVE-2014-4848  CWE-79  High
WordPress Plugin Blubrry PowerPress Podcasting Cross-Site Scripting (6.0) CVE-2015-1385   CWE-79  High
WordPress Plugin Blubrry PowerPress Podcasting Cross-Site Scripting (6.0.4) CWE-79  High
WordPress Plugin BLUE ORIGAMI CRM (Formerly Application Maker/APM-CRM edition) Cross-Site Scripting (1.5.15) CWE-79  High
WordPress Plugin Blue Wrench Video Widget Cross-Site Scripting (2.1.0) CWE-79  High
WordPress Plugin Blunt GA Cross-Site Scripting (4.0.0) CWE-79  High
WordPress Plugin bodi0`s Bots visits counter Cross-Site Scripting (0.8.1) CWE-79  High
WordPress Plugin bodi0`s Easy cache Cross-Site Scripting (0.8) CWE-79  High
WordPress Plugin Bongolive SMS Cross-Site Scripting (1.0.5) CWE-79  High
WordPress Plugin Booking Calendar-Clockwork SMS Cross-Site Scripting (1.0.5) CVE-2017-17780  CWE-79  High
WordPress Plugin Booking Calendar Contact Form Cross-Site Scripting (1.0.24) CWE-79  High
WordPress Plugin Booking Calendar Cross-Site Scripting (7.1) CVE-2017-2151  CWE-79  High
WordPress Plugin Bookings Cross-Site Scripting (1.8.2) CWE-79  High
WordPress Plugin Booking Ultra Pro Appointments Multiple Cross-Site Scripting Vulnerabilities (1.0.19) CWE-79  High
WordPress Plugin Bookly #1 WordPress Booking Plugin (Lite Version) Cross-Site Scripting (14.4) CVE-2018-6891  CWE-79  High
WordPress Plugin Bookshelf Cross-Site Scripting (2.0.4) CWE-79  High
WordPress Plugin Boozang Cross-Site Scripting (1.1) CWE-79  High
WordPress Plugin Border Loading Bar Multiple Cross-Site Scripting Vulnerabilities (1.0) CWE-79  High
WordPress Plugin BP Code Snippets Cross-Site Scripting (2.0) CVE-2013-1808  CWE-79  High
WordPress Plugin BP GTM System Cross-Site Scripting (1.9.5) CWE-79  High
WordPress Plugin BP Portfolio Cross-Site Scripting (1.0.2) CWE-79  High
WordPress Plugin Breezing Forms Cross-Site Scripting (1.2.7.33) CWE-79  High
WordPress Plugin Breezing Forms Cross-Site Scripting (1.2.7.42) CWE-79  High
WordPress Plugin BrewMaster Multiple Cross-Site Scripting Vulnerabilities (1.0) CWE-79  High
WordPress Plugin Broken Link Checker Cross-Site Scripting (1.10.1) CWE-79  High
WordPress Plugin Broken Link Checker Cross-Site Scripting (1.10.4) CWE-79  High
WordPress Plugin Broken Link Checker Cross-Site Scripting (1.10.5) CWE-79  High
WordPress Plugin Broken Link Checker Cross-Site Scripting (1.10.8) CVE-2015-5057  CWE-79  High
WordPress Plugin Broken Link Checker Multiple Cross-Site Scripting Vulnerabilities (1.9.1) CWE-79  High
WordPress Plugin Broken Link Manager Cross-Site Scripting (0.5.5) CWE-79  High
WordPress Plugin Browser Blocker Cross-Site Scripting (0.5.6) CWE-79  High
WordPress Plugin Brute Force Login Protection Cross-Site Scripting (1.5.2) CWE-79  High
WordPress Plugin BSDev.at-Importer:Serendipity Cross-Site Scripting (0.0.1) CWE-79  High
WordPress Plugin BSK PDF Manager Multiple Cross-Site Scripting Vulnerabilities (1.3) CWE-79  High
WordPress Plugin bSuite Cross-Site Scripting (4.0.7) CVE-2011-4955  CWE-79  High
WordPress Plugin Buckets Cross-Site Scripting (0.1.9.2) CVE-2013-1808  CWE-79  High
WordPress Plugin BuddyBoss Media Cross-Site Scripting (3.0.3) CWE-79  High
WordPress Plugin BuddyBoss Media Cross-Site Scripting (3.2.3) CWE-79  High
WordPress Plugin BuddyBoss Wall Cross-Site Scripting (1.1.7) CWE-79  High
WordPress Plugin BuddyDrive Cross-Site Scripting (1.2.2) CWE-79  High
WordPress Plugin BuddyPress Activity Plus Cross-Site Scripting (1.6.3) CWE-79  High
WordPress Plugin BuddyPress Cross-Site Scripting (2.2.2.1) CWE-79  High
WordPress Plugin BuddyPress Edit Activity Cross-Site Scripting (1.0.5) CWE-79  High
WordPress Plugin BuddyPress Extended Friendship Request Cross-Site Scripting (1.0.1) CVE-2013-4944  CWE-79  High
WordPress Plugin BuddyPress Global Search Cross-Site Scripting (1.1.0) CWE-79  High
WordPress Plugin BuddyPress Members Only Cross-Site Scripting (1.8.3) CWE-79  High
WordPress Plugin BuddyStream Multiple Cross-Site Scripting Vulnerabilities (2.6.2) CWE-79  High
WordPress Plugin Bug Library Cross-Site Scripting (1.4.2) CWE-79  High
WordPress Plugin Bulk change of posts terms and post types Cross-Site Scripting (1.0) CWE-79  High
WordPress Plugin Bulk Creator Cross-Site Scripting (1.0.1) CWE-79  High
WordPress Plugin Bulk Page Creator Cross-Site Scripting (1.0.9) CWE-79  High
WordPress Plugin BulletProof Security Cross-Site Scripting (.47) CVE-2012-4268  CWE-79  High
WordPress Plugin BulletProof Security Cross-Site Scripting (.50.9) CWE-79  High
WordPress Plugin BulletProof Security Cross-Site Scripting (.52.4) CWE-79  High
WordPress Plugin BulletProof Security Cross-Site Scripting (.53.3) CWE-79  High
WordPress Plugin BulletProof Security Multiple Cross-Site Scripting Vulnerabilities (.48.9) CVE-2013-3487  CWE-79  High
WordPress Plugin BulletProof Security Multiple Cross-Site Scripting Vulnerabilities (.53.2) CWE-79  High
WordPress Plugin Business Card Cross-Site Scripting (1.0.0) CWE-79  High
WordPress Plugin Buzzwords Cross-Site Scripting (1.1.0) CWE-79  High
WordPress Plugin Calculated Fields Form Cross-Site Scripting (1.0.81) CWE-79  High
WordPress Plugin Caldera Forms-More Than Contact Forms Cross-Site Scripting (1.4.1) CWE-79  High
WordPress Plugin Caldera Forms-More Than Contact Forms Cross-Site Scripting (1.5.4) CWE-79  High
WordPress Plugin Caldera Forms-More Than Contact Forms Multiple Cross-Site Scripting Vulnerabilities (1.5.9.1) CVE-2018-7747  CWE-79  High
WordPress Plugin CalendApp Cross-Site Scripting (1.1) CWE-79  High
WordPress Plugin Calendar by WD-Responsive Event Calendar for WordPress Cross-Site Scripting (1.5.38) CWE-79  High
WordPress Plugin Calendar by WD-Responsive Event Calendar for WordPress Multiple Cross-Site Scripting and SQL Injection Vulnerabilities (1.3.0) CWE-79  CWE-89  High
WordPress Plugin Calendar Cross-Site Scripting (1.3.7) CWE-79  High
WordPress Plugin Calendar Multiple Cross-Site Scripting Vulnerabilities (1.2.1) CWE-79  High
WordPress Plugin Campaign Press Cross-Site Scripting (1.0.5) CWE-79  High
WordPress Plugin Canalplan Cross-Site Scripting (3.22) CWE-79  High
WordPress Plugin Captain Slider Cross-Site Scripting (1.0.6) CWE-79  High
WordPress Plugin Captcha by BestWebSoft Cross-Site Scripting (4.2.9) CVE-2017-2171  CWE-79  High
WordPress Plugin Captcha by BestWebSoft Multiple Cross-Site Scripting Vulnerabilities (4.0.2) CWE-79  High
WordPress Plugin Captcha by BestWebSoft Multiple Cross-Site Scripting Vulnerabilities (4.1.5) CWE-79  High
WordPress Plugin CAPTCHA in Thai Multiple Cross-Site Scripting Vulnerabilities (1.1) CWE-79  High
WordPress Plugin Car Demon Multiple Cross-Site Scripting Vulnerabilities (1.0.1) CWE-79  High
WordPress Plugin Caret Country Access Limit Cross-Site Scripting (1.0.1) CWE-79  High
WordPress Plugin Carousel slideshow 'swfupload.swf' Cross-Site Scripting (3.10) CVE-2012-3414  CWE-79  High
WordPress Plugin Car Rental by BestWebSoft Cross-Site Scripting (1.0.4) CVE-2017-2171  CWE-79  High
WordPress Plugin Cart66 Lite::WordPress Ecommerce Cross-Site Scripting (1.5.4) CWE-79  High
WordPress Plugin Cartogiraffe Map Cross-Site Scripting (1.0) CWE-79  High
WordPress Plugin CataBlog 'category' Parameter Cross-Site Scripting (1.6.2) CWE-79  High
WordPress Plugin Catchers Helpdesk and Ticket system for Support Cross-Site Scripting (1.0.3) CWE-79  High
WordPress Plugin Category and Page Icons Cross-Site Scripting (0.9.2) CWE-79  High
WordPress Plugin Category Grid View Gallery Cross-Site Scripting (2.3.3) CVE-2013-4117  CWE-79  High
WordPress Plugin Category Order and Taxonomy Terms Order Cross-Site Scripting (1.4.6) CWE-79  High
WordPress Plugin CBI Referral Manager Cross-Site Scripting (1.2.1) CVE-2014-4517  CWE-79  High
WordPress Plugin Ceceppa Multilingua Multiple Cross-Site Scripting Vulnerabilities (1.5.13) CWE-79  High
WordPress Plugin CF7 Invisible reCAPTCHA Cross-Site Scripting (1.3.1) CWE-79  High
WordPress Plugin Cf7Save Extension Cross-Site Scripting (1.0) CWE-79  High
WordPress Plugin cformsII 'lib_ajax.php' Multiple Cross-Site Scripting Vulnerabilities (13.1) CVE-2010-3977  CWE-79  High
WordPress Plugin cformsII Multiple Cross-Site Scripting Vulnerabilities (14.13.2) CWE-79  High
WordPress Plugin Chained Quiz Cross-Site Scripting (0.9.9) CWE-79  High
WordPress Plugin Chained Quiz Multiple Cross-Site Scripting Vulnerabilities (0.9.8) CWE-79  High
WordPress Plugin Chamber Dashboard Member Manager Cross-Site Scripting (2.0.5) CWE-79  High
WordPress Plugin Chameleoni Jobs Multiple Cross-Site Scripting Vulnerabilities (1.2.2) CWE-79  High
WordPress Plugin Change Password and E-mail Cross-Site Scripting (1.0) CWE-79  High
WordPress Plugin Chat Cross-Site Scripting (1.0.8) CWE-79  High
WordPress Plugin Check Email Cross-Site Scripting (0.3) CWE-79  High
WordPress Plugin Check Email Cross-Site Scripting (0.5.1) CWE-79  High
WordPress Plugin Cherry Cross-Site Scripting (1.2.8.1) CWE-79  High
WordPress Plugin ChimpExpress Cross-Site Scripting (1.6.3) CWE-79  High
WordPress Plugin Chunks Cross-Site Scripting (1.1) CWE-79  High
WordPress Plugin Church Admin 'id' Parameter Cross-Site Scripting (0.33.4.5) CWE-79  High
WordPress Plugin Church Admin Cross-Site Scripting (0.800) CVE-2015-4127  CWE-79  High
WordPress Plugin Church Admin Cross-Site Scripting (0.856) CWE-79  High
WordPress Plugin CigiCigi Post Guest Cross-Site Scripting (1.0.5) CWE-79  High
WordPress Plugin Cimy Counter HTTP Response Splitting and Cross-Site Scripting Vulnerabilities (0.9.4) CWE-79  CWE-113  High
WordPress Plugin Citizen Space Cross-Site Scripting (1.0) CWE-79  High
WordPress Plugin Citizen Space Cross-Site Scripting (1.1) CWE-79  High
WordPress Plugin CKEditor for WordPress Cross-Site Scripting (4.5.3) CWE-79  High
WordPress Plugin Claptastic Clap! Button Multiple Cross-Site Scripting Vulnerabilities (1.3) CWE-79  High
WordPress Plugin Cleeng-Sell your videos Cross-Site Scripting (2.3.2) CVE-2013-1808  CWE-79  High
WordPress Plugin ClickDesk Live Support-Live Chat-Help Desk 'cdwidgetid' Parameter Cross-Site Scripting (2.0) CVE-2011-5181  CWE-79  High
WordPress Plugin ClickDesk Live Support-Live Chat-Help Desk Cross-Site Scripting (4.2) CWE-79  High
WordPress Plugin ClickSold IDX Cross-Site Scripting (1.48) CWE-79  High
WordPress Plugin Click to Copy Grab Box Multiple Cross-Site Scripting Vulnerabilities (0.1.1) CVE-2013-1808  CWE-79  High
WordPress Plugin Clicky by Yoast Multiple Cross-Site Scripting Vulnerabilities (1.5) CWE-79  High
WordPress Plugin Clipta Video Informer Cross-Site Scripting (1.0) CWE-79  High
WordPress Plugin Clockwork SMS Notfications Cross-Site Scripting (2.0.3) CVE-2017-17780  CWE-79  High
WordPress Plugin CloudFlare Multiple Cross-Site Scripting Vulnerabilities (1.3.20) CWE-79  High
WordPress Plugin CM Ad Changer Cross-Site Scripting (1.7.7) CWE-79  High
WordPress Plugin CM Ad Changer Multiple Cross-Site Scripting Vulnerabilities (1.7.2) CWE-79  High
WordPress Plugin CM Answers Cross-Site Scripting (2.6.1) CWE-79  High
WordPress Plugin CM Footnotes Cross-Site Scripting (1.1.4) CWE-79  High
WordPress Plugin CMS Tree Page View 'cms_tpv_view' Parameter Cross-Site Scripting (0.8.8) CVE-2012-1834  CWE-79  High
WordPress Plugin CMS Tree Page View Cross-Site Scripting (1.2.31) CWE-79  High
WordPress Plugin CM Table Of Contents Cross-Site Scripting (1.0.7) CWE-79  High
WordPress Plugin CM Tooltip Glossary Cross-Site Scripting (3.3.4) CVE-2016-1000132  CWE-79  High
WordPress Plugin Code Embed 'suffix' Parameter Cross-Site Scripting (2.0.1) CWE-79  High
WordPress Plugin Code Insert Manager (Q2W3 Inc Manager) ZeroClipboard Cross-Site Scripting (2.3.1) CVE-2013-1808  CWE-79  High
WordPress Plugin Code Snippets Cross-Site Scripting (2.6.1) CWE-79  High
WordPress Plugin Codestyling Localization 'name' Parameter Cross-Site Scripting (1.99.19) CWE-79  High
WordPress Plugin Collapse-O-Matic Cross-Site Scripting (1.6.8) CWE-79  High
WordPress Plugin ComicPress Manager 'lang' Parameter Cross-Site Scripting (1.4.9.9 ) CWE-79  High
WordPress Plugin Commentator Cross-Site Scripting (2.5.2) CWE-79  High
WordPress Plugin Comment Attachment Cross-Site Scripting (1.5.5) CVE-2013-6010  CWE-79  High
WordPress Plugin Comment Extra Fields Multiple Cross-Site Scripting Vulnerabilities (1.7) CWE-79  High
WordPress Plugin CommentLuv Cross-Site Scripting (2.92.3) CVE-2013-1409  CWE-79  High
WordPress Plugin Comment Rating 'path' Parameter Cross-Site Scripting (2.9.20) CWE-79  High
WordPress Plugin Comments-wpDiscuz Cross-Site Scripting (3.1.4) CWE-79  High
WordPress Plugin Companion Auto Update Cross-Site Scripting (2.9.3) CWE-79  High
WordPress Plugin Compfight Cross-Site Scripting (1.4) CVE-2014-5202  CVE-2014-8622  CWE-79  High
WordPress Plugin Concours Cross-Site Scripting (1.1) CVE-2017-17719  CWE-79  High
WordPress Plugin Conduit Banner 'banner-index-field-id' Parameter Cross-Site Scripting (0.2) CWE-79  High
WordPress Plugin Connections Business Directory Cross-Site Scripting (8.5.8) CVE-2016-0770  CWE-79  High
WordPress Plugin Constant Contact for WordPress Multiple Cross-Site Scripting Vulnerabilities (3.1.7) CWE-79  High
WordPress Plugin Contact Form 7 Cross-Site Scripting (4.0.1) CWE-79  High
WordPress Plugin Contact Form 7 Integrations Multiple Cross-Site Scripting Vulnerabilities (1.3.10) CVE-2014-6445  CWE-79  High
WordPress Plugin Contact Form 7 International Sms Integration Cross-Site Scripting (1.2) CWE-79  High
WordPress Plugin Contact Form 7-Clockwork SMS Cross-Site Scripting (2.3.0) CVE-2017-17780  CWE-79  High
WordPress Plugin Contact Form Builder by Contact Bank 'Label' Field Cross-Site Scripting (2.0.19) CVE-2014-3841  CWE-79  High
WordPress Plugin Contact Form Builder by Contact Bank Cross-Site Scripting (2.0.69) CVE-2014-8807  CWE-79  High
WordPress Plugin Contact Form Builder by Contact Bank Cross-Site Scripting (2.0.225) CWE-79  High
WordPress Plugin Contact Form Builder by Contact Bank Cross-Site Scripting (2.0.226) CWE-79  High
WordPress Plugin Contact Form Builder by Contact Bank Cross-Site Scripting (2.1.22) CWE-79  High
WordPress Plugin Contact Form Builder by Contact Bank Cross-Site Scripting (2.1.23) CWE-79  High
WordPress Plugin Contact Form by BestWebSoft Cross-Site Scripting (3.34) CWE-79  High
WordPress Plugin Contact Form by BestWebSoft Cross-Site Scripting (3.51) CWE-79  High
WordPress Plugin Contact Form by BestWebSoft Cross-Site Scripting (3.81) CWE-79  High
WordPress Plugin Contact Form by BestWebSoft Cross-Site Scripting (3.95) CWE-79  High
WordPress Plugin Contact Form by BestWebSoft Cross-Site Scripting (4.0.1) CWE-79  High
WordPress Plugin Contact Form by BestWebSoft Cross-Site Scripting (4.0.5) CVE-2017-2171  CWE-79  High
WordPress Plugin Contact Form by ContactMe.com Cross-Site Scripting (2.3) CVE-2014-4518   CWE-79  High
WordPress Plugin Contact Form by WD-responsive drag & drop contact form builder tool Cross-Site Scripting (1.7.18) CVE-2014-8796  CWE-79  High
WordPress Plugin Contact Form Clean and Simple Cross-Site Scripting (4.4.0) CVE-2014-8955  CWE-79  High
WordPress Plugin Contact Form DB Cross-Site Scripting (2.8.19) CWE-79  High
WordPress Plugin Contact Form DB Cross-Site Scripting (2.8.27) CVE-2015-2040  CWE-79  High
WordPress Plugin Contact Form DB Cross-Site Scripting (2.10.29) CWE-79  High
WordPress Plugin Contact Form DB Multiple Cross-Site Scripting Vulnerabilities (2.8.15) CVE-2014-7139  CWE-79  High
WordPress Plugin Contact Form Email Cross-Site Scripting (1.0) CVE-2014-8798  CWE-79  High
WordPress Plugin Contact Form Email Cross-Site Scripting (1.1.47) CWE-79  High
WordPress Plugin Contact Form Email Cross-Site Scripting (1.1.49) CWE-79  High
WordPress Plugin Contact Form Email Cross-Site Scripting (1.1.87) CWE-79  High
WordPress Plugin Contact Form for WordPress-Ultimate Form Builder Lite Cross-Site Scripting (1.3.3) CWE-79  High
WordPress Plugin Contact Form for WordPress-Ultimate Form Builder Lite Multiple Cross-Site Scripting Vulnerabilities (1.3.2) CWE-79  High
WordPress Plugin Contact Form Integrated With Google Maps Cross-Site Scripting (2.4) CVE-2014-7238  CWE-79  High
WordPress Plugin Contact Form Manager Multiple Cross-Site Scripting Vulnerabilities (1.4.1) CWE-79  High
WordPress Plugin Contact Form Multi by BestWebSoft Cross-Site Scripting (1.2.0) CVE-2017-2171  CWE-79  High
WordPress Plugin Contact Form to DB by BestWebSoft Cross-Site Scripting (1.4.0) CWE-79  High
WordPress Plugin Contact Form to DB by BestWebSoft Cross-Site Scripting (1.5.6) CVE-2017-2171  CWE-79  High
WordPress Plugin Content Blocks (Custom Post Widget) Cross-Site Scripting (3.0) CWE-79  High
WordPress Plugin Contentboxes Cross-Site Scripting (1.1) CWE-79  High
WordPress Plugin Content Cards Cross-Site Scripting (0.9.6) CVE-2017-17096  CWE-79  High
WordPress Plugin Content text slider on post Cross-Site Scripting (6.8) CWE-79  High
WordPress Plugin Conversador Cross-Site Scripting (2.61) CVE-2014-4519   CWE-79  High
WordPress Plugin Cool Flickr Slideshow Cross-Site Scripting (1.0) CWE-79  High
WordPress Plugin Corner Ad Cross-Site Scripting (1.0.7) CWE-79  High
WordPress Plugin Count per Day 'notes.php' Cross-Site Scripting (3.2.3) CWE-79  High
WordPress Plugin Count per Day 'userperspan.php' Multiple Cross-Site Scripting Vulnerabilities (3.1.1) CVE-2012-3434  CWE-79  High
WordPress Plugin Count per Day Arbitrary File Download and Cross-Site Scripting Vulnerabilities (3.1) CVE-2012-0896  CWE-22  CWE-79  High
WordPress Plugin Count per Day Multiple Cross-Site Scripting Vulnerabilities (3.5.4) CWE-79  High
WordPress Plugin Count per Day Search Bar Cross-Site Scripting (3.2.2) CWE-79  High
WordPress Plugin Coupon Tab for DirectoryPress Multiple Cross-Site Scripting Vulnerabilities (0.2.0) CWE-79  High
WordPress Plugin Crafty Social Buttons Cross-Site Scripting (1.5.6) CWE-79  High
WordPress Plugin Crazy Bone Cross-Site Scripting (0.5.6) CWE-79  High
WordPress Plugin Crowd Ideas Cross-Site Scripting (1.0) CWE-79  High
WordPress Plugin Csv Import-Export Multiple Cross-Site Scripting Vulnerabilities (1.1.0) CVE-2017-17753  CWE-79  High
WordPress Plugin CSV Import Cross-Site Scripting (1.0) CWE-79  High
WordPress Plugin CSV Import for WordPress Cross-Site Scripting (3.8.7) CWE-79  High
WordPress Plugin Custom Admin Page by BestWebSoft Cross-Site Scripting (0.1.1) CVE-2017-2171  CWE-79  High
WordPress Plugin Custom Banners Cross-Site Scripting (1.2.2.2) CVE-2014-4724  CWE-79  High
WordPress Plugin Custom Contact Forms Multiple Cross-Site Scripting Vulnerabilities (5.0.0.1) CWE-79  High
WordPress Plugin Custom Fields Search by BestWebSoft Cross-Site Scripting (1.3.1) CVE-2017-2171  CWE-79  High
WordPress Plugin Customize WordPress Login Page Cross-Site Scripting (2.5.3.1) CWE-79  High
WordPress Plugin Custom Login Cross-Site Scripting (3.2) CWE-79  High
WordPress Plugin Custom Map Cross-Site Scripting (1.1) CVE-2017-17744  CWE-79  High
WordPress Plugin Custom Metas Cross-Site Scripting (1.5.1) CWE-79  High
WordPress Plugin Custom Post Type UI 'wp-admin/admin.php' Cross-Site Scripting (0.7) CWE-79  High
WordPress Plugin Custom Post Type UI Cross-Site Scripting (1.0.6) CWE-79  High
WordPress Plugin Custom Post Type UI Cross-Site Scripting (1.1.1) CWE-79  High
WordPress Plugin Custom Search by BestWebSoft Cross-Site Scripting (1.35) CVE-2017-2171  CWE-79  High
WordPress Plugin Custom Sidebars-Dynamic Widget Area Manager Cross-Site Scripting (2.1.0.1) CWE-79  High
WordPress Plugin Custom Tables 'key' Parameter Cross-Site Scripting (3.4.4) CWE-79  High
WordPress Plugin Custom Website Data Cross-Site Scripting (1.0) CWE-79  High
WordPress Plugin Daily Inspiration Generator Cross-Site Scripting (2.0) CWE-79  High
WordPress Plugin Daily Maui Photo Widget Multiple Cross-Site Scripting Vulnerabilities (0.2) CWE-79  High
WordPress Plugin Dark Mode Cross-Site Scripting (1.6) CVE-2018-5651  CVE-2018-5652  CWE-79  High
WordPress Plugin Database Sync Cross-Site Scripting (0.4) CWE-79  High
WordPress Plugin Defa Online Image Protector Cross-Site Scripting (3.3) CVE-2016-1000129  CWE-79  High
WordPress Plugin Delete Comments By Status Multiple Cross-Site Scripting Vulnerabilities (1.5.2) CWE-79  High
WordPress Plugin Design Approval System Cross-Site Scripting (3.6) CVE-2013-5711  CWE-79  High
WordPress Plugin Dexs PM System Cross-Site Scripting (1.0.1) CWE-79  High
WordPress Plugin DFD Reddcoin Tips Cross-Site Scripting (1.1.1) CWE-79  High
WordPress Plugin Dialog Contact Form Cross-Site Scripting (1.2.0) CWE-79  High
WordPress Plugin Disable Comments Cross-Site Scripting (1.3) CWE-79  High
WordPress Plugin Display Widgets Cross-Site Scripting (2.03) CWE-79  High
WordPress Plugin Disqus Comment System Cross-Site Scripting (2.68) CWE-79  High
WordPress Plugin DMCA WaterMarker Cross-Site Scripting (1.0) CVE-2014-4520  CWE-79  High
WordPress Plugin Donate by BestWebSoft Cross-Site Scripting (2.0.1) CWE-79  High
WordPress Plugin Donate by BestWebSoft Cross-Site Scripting (2.1.1) CVE-2017-2171  CWE-79  High
WordPress Plugin DosCero.Menu Cross-Site Scripting (1.0) CWE-79  High
WordPress Plugin Double Opt-In for Download Multiple Cross-Site Scripting Vulnerabilities (2.1.5) CWE-79  High
WordPress Plugin Download Monitor 'dlsearch' Parameter Cross-Site Scripting (3.3.5.8) CVE-2012-4768  CWE-79  High
WordPress Plugin Download Monitor Cross-Site Scripting (1.7.0) CWE-79  High
WordPress Plugin Download Monitor Cross-Site Scripting (3.3.6.1) CVE-2013-3262  CVE-2013-5098  CWE-79  High
WordPress Plugin DP Maintenance Mode Lite Cross-Site Scripting (1.3.2) CWE-79  High
WordPress Plugin dsIDXpress IDX Cross-Site Scripting (2.1.0) CVE-2014-4521  CWE-79  High
WordPress Plugin dsSearchAgent:WordPress Edition Cross-Site Scripting (1.0-beta10) CVE-2014-4522  CWE-79  High
WordPress Plugin DukaPress Multiple Cross-Site Scripting Vulnerabilities (2.5.9) CWE-79  High
WordPress Plugin Duplicate Post Cross-Site Scripting (2.6) CWE-79  High
WordPress Plugin Duplicator-WordPress Migration Cross-Site Scripting (0.4.4) CVE-2013-4625   CWE-79  High
WordPress Plugin Duplicator-WordPress Migration Cross-Site Scripting (0.5.26) CWE-79  High
WordPress Plugin Duplicator-WordPress Migration Cross-Site Scripting (1.2.28) CVE-2017-16815  CWE-79  High
WordPress Plugin Duplicator-WordPress Migration Cross-Site Scripting (1.2.32) CVE-2018-7543  CWE-79  High
WordPress Plugin dwnldr Cross-Site Scripting (1.0) CWE-79  High
WordPress Plugin DW Question & Answer Cross-Site Scripting (1.4.2.2) CWE-79  High
WordPress Plugin Dynamic Widgets 'id' Parameter Cross-Site Scripting (1.5.1) CWE-79  High
WordPress Plugin Dynamic Widgets Multiple Cross-Site Scripting Vulnerabilities (1.5.10) CWE-79  High
WordPress Plugin DZS Video Gallery Multiple Cross-Site Scripting Vulnerabilities (All) CVE-2014-3923  CVE-2014-9094  CWE-79  High
WordPress Plugin E-Search Multiple Cross-Site Scripting Vulnerabilities (1.0) CVE-2016-1000130  CVE-2016-1000131  CWE-79  High
WordPress Plugin Easing Slider Multiple Cross-Site Scripting Vulnerabilities (2.2.0.6) CVE-2015-1436  CWE-79  High
WordPress Plugin Easy2Map Photos Cross-Site Scripting (2.0.6) CWE-79  High
WordPress Plugin Easy Appointments Cross-Site Scripting (1.11.7) CVE-2017-15812  CWE-79  High
WordPress Plugin Easy Banners Cross-Site Scripting (1.4) CVE-2014-4723  CWE-79  High
WordPress Plugin Easy Career Openings Cross-Site Scripting (0.4) CVE-2014-4523   CWE-79  High
WordPress Plugin Easy Coming Soon Cross-Site Scripting (1.6.2) CWE-79  High
WordPress Plugin Easy Coming Soon Cross-Site Scripting (1.8.1) CWE-79  High
WordPress Plugin Easy Contact Form Builder Cross-Site Scripting (1.0) CVE-2016-1000152  CWE-79  High
WordPress Plugin Easy Contact Form Solution Cross-Site Scripting (1.6) CVE-2014-7240  CWE-79  High
WordPress Plugin Easy Custom Auto Excerpt Cross-Site Scripting (2.4.6) CVE-2018-5311  CWE-79  High
WordPress Plugin Easy Digital Downloads-htaccess Editor Cross-Site Scripting (1.0.0) CWE-79  High
WordPress Plugin Easy Digital Downloads Attach Accounts to Orders Cross-Site Scripting (2.0.1) CWE-79  High
WordPress Plugin Easy Digital Downloads Cross-Site Scripting (2.3.6) CWE-79  High
WordPress Plugin Easy Digital Downloads QR Code Cross-Site Scripting (1.1.0) CWE-79  High
WordPress Plugin Easy Forms for MailChimp Cross-Site Scripting (6.1.2) CWE-79  High
WordPress Plugin Easy Google Fonts Cross-Site Scripting (1.3.6) CWE-79  High
WordPress Plugin Easy Image Gallery Cross-Site Scripting (1.1.1) CWE-79  High
WordPress Plugin Easy MailChimp Forms Cross-Site Scripting (5.0.6) CVE-2014-7152  CWE-79  High
WordPress Plugin Easy Social Share Buttons for WordPress Multiple Cross-Site Scripting Vulnerabilities (3.4.1) CWE-79  High
WordPress Plugin Easy Table Cross-Site Scripting (1.5.2) CWE-79  High
WordPress Plugin Easy Table Cross-Site Scripting (1.6) CWE-79  High
WordPress Plugin Easy Testimonials Cross-Site Scripting (1.36.1) CWE-79  High
WordPress Plugin Easy Testimonials Cross-Site Scripting (3.0.4) CVE-2017-12131  CWE-79  High
WordPress Plugin Easy WP SMTP Cross-Site Scripting (1.2.4) CVE-2017-7723  CWE-79  High
WordPress Plugin eBay Feeds for WordPress Cross-Site Scripting (1.0) CVE-2014-4525  CWE-79  High
WordPress Plugin Echo Sign Multiple Cross-Site Scripting Vulnerabilities (1.1) CWE-79  High
WordPress Plugin EDD Favorites Cross-Site Scripting (1.0.6) CWE-79  High
WordPress Plugin Edit Author Slug Cross-Site Scripting (1.0.5.1) CWE-79  High
WordPress Plugin EELV Newsletter Cross-Site Scripting (3.3.0) CWE-79  High
WordPress Plugin Efence Multiple Cross-Site Scripting Vulnerabilities (1.3.2) CVE-2014-4526  CWE-79  High
WordPress Plugin eHive Account Details Cross-Site Scripting (2.1.2) CWE-79  High
WordPress Plugin eHive Object Details Cross-Site Scripting (2.1.6) CWE-79  High
WordPress Plugin Emag Marketplace Connector Cross-Site Scripting (1.0.0) CVE-2017-17043  CWE-79  High
WordPress Plugin Email Encoder Bundle-Protect Email Address Cross-Site Scripting (1.4.1) CWE-79  High
WordPress Plugin Email Encoder Bundle-Protect Email Address Multiple Cross-Site Scripting Vulnerabilities (1.4.3) CWE-79  High
WordPress Plugin Email Log Cross-Site Scripting (2.2.2) CWE-79  High
WordPress Plugin Email newsletter Cross-Site Scripting (20.13.6) CWE-79  High
WordPress Plugin Email Queue by BestWebSoft Cross-Site Scripting (1.1.1) CVE-2017-2171  CWE-79  High
WordPress Plugin Email Subscribers & Newsletters Cross-Site Scripting (3.2.5) CWE-79  High
WordPress Plugin Email Subscribers & Newsletters Cross-Site Scripting (3.4.12) CWE-79  High
WordPress Plugin Email Users Cross-Site Scripting (4.7.5) CWE-79  High
WordPress Plugin Email Users Cross-Site Scripting (4.8.2) CWE-79  High
WordPress Plugin Embedded Video 'lembedded-video.php' Cross-Site Scripting (4.1) CVE-2010-4277  CWE-79  High
WordPress Plugin Embed Images in Comments Cross-Site Scripting (0.5) CWE-79  High
WordPress Plugin EMC2 Custom Help Videos Cross-Site Scripting (1.2) CWE-79  High
WordPress Plugin EnvialoSimple:Email Marketing y Newsletters Multiple Cross-Site Scripting Vulnerabilities (1.97) CVE-2014-4527  CWE-79  High
WordPress Plugin Error Log Viewer by BestWebSoft Cross-Site Scripting (1.0.5) CVE-2017-2171  CWE-79  High
WordPress Plugin eShop Multiple Cross-Site Scripting Vulnerabilities (6.2.8) CWE-79  High
WordPress Plugin Esponce QR Code Generator Cross-Site Scripting (1.4) CWE-79  High
WordPress Plugin Event Calendar WD-Responsive Event Calendar Cross-Site Scripting (1.0.93) CVE-2017-2224  CWE-79  High
WordPress Plugin EventCommerce WP Event Calendar Cross-Site Scripting (1.0) CWE-79  High
WordPress Plugin Event List Cross-Site Scripting (0.7.9) CVE-2017-12068  CWE-79  High
WordPress Plugin Event Notifier Cross-Site Scripting (1.2.0) CWE-79  High
WordPress Plugin eventON Multiple Cross-Site Scripting Vulnerabilities (2.6.11) CWE-79  High
WordPress Plugin Event Organiser Cross-Site Scripting (2.12.4) CWE-79  High
WordPress Plugin Events Calendar 'ec_management.class.php' Cross-Site Scripting (6.7.11) CWE-79  High
WordPress Plugin Events Made Easy Cross-Site Scripting (1.6.20) CWE-79  High
WordPress Plugin Events Manager Cross-Site Scripting (5.8.1.1) CVE-2018-9020  CWE-79  High
WordPress Plugin Events Manager Cross-Site Scripting (5.8.1.3) CVE-2018-0576  CWE-79  High
WordPress Plugin Events Manager Extended Multiple HTML Injection Vulnerabilities (3.1.2) CWE-79  High
WordPress Plugin Events Manager Multiple Cross-Site Scripting Vulnerabilities (5.3.3) CVE-2013-1407  CWE-79  High
WordPress Plugin EWWW Image Optimizer Cloud Cross-Site Scripting (2.0.1) CWE-79  High
WordPress Plugin EWWW Image Optimizer Cross-Site Scripting (2.0.1) CVE-2014-6243  CWE-79  High
WordPress Plugin Exit Popups & Onsite Retargeting by OptiMonk Cross-Site Scripting (1.2.5) CWE-79  High
WordPress Plugin External 'Video for Everybody' Cross-Site Scripting (2.0) CWE-79  High
WordPress Plugin External Media without Import Cross-Site Scripting (1.0.1) CWE-79  High
WordPress Plugin EZ Google Analytics Cross-Site Scripting (4.1.06) CWE-79  High
WordPress Plugin EZP Coming Soon Page Cross-Site Scripting (1.0.0) CWE-79  High
WordPress Plugin EZ Portfolio Multiple Cross-Site Scripting Vulnerabilities (1.0.1) CWE-79  High
WordPress Plugin EZPZ One Click Backup 'mail' Parameter Cross-Site Scripting (12.03.10) CWE-79  High
WordPress Plugin Facebook Button by BestWebSoft Cross-Site Scripting (2.33) CWE-79  High
WordPress Plugin Facebook Button by BestWebSoft Cross-Site Scripting (2.53) CVE-2017-2171  CWE-79  High
WordPress Plugin Facebook Members Cross-Site Scripting (7.0) CWE-79  High
WordPress Plugin Facebook Page Photo Gallery Cross-Site Scripting (2.0.9) CWE-79  High
WordPress Plugin Facebook Promotion Generator for WordPress Multiple Cross-Site Scripting Vulnerabilities (1.3.4) CVE-2014-4528   CWE-79  High
WordPress Plugin FancyBox for WordPress Cross-Site Scripting (3.0.2) CWE-79  High
WordPress Plugin Fancy Cats Multiple Cross-Site Scripting Vulnerabilities (1.1) CWE-79  High
WordPress Plugin FancyFlickr Cross-Site Scripting (1.0) CWE-79  High
WordPress Plugin Fancy Gallery Cross-Site Scripting (1.5.12) CWE-79  High
WordPress Plugin Fancy Product Designer Cross-Site Scripting (3.4.1) CWE-79  High
WordPress Plugin FAQ Multiple Cross-Site Scripting Vulnerabilities (1.0.14) CWE-79  High
WordPress Plugin FAQs Manager Cross-Site Scripting and Cross-Site Request Forgery Vulnerabilities (1.0) CWE-79  CWE-352  High
WordPress Plugin Fast Secure Contact Form 'index.php' Cross-Site Scripting (3.0.3.1) CWE-79  High
WordPress Plugin Fast Secure Contact Form-Clockwork SMS Cross-Site Scripting (2.1.2) CVE-2017-17780  CWE-79  High
WordPress Plugin Fast Secure Contact Form Cross-Site Scripting (4.0.35) CWE-79  High
WordPress Plugin Fast Secure Contact Form Cross-Site Scripting (4.0.37) CWE-79  High
WordPress Plugin Favicon by RealFaviconGenerator Cross-Site Scripting (1.2.12) CWE-79  High
WordPress Plugin FCChat Widget 'path' Parameter Cross-Site Scripting (2.1.7) CWE-79  High
WordPress Plugin Featured Content 'param' Parameter Cross-Site Scripting (0.0.1) CWE-79  High
WordPress Plugin Featured Posts by BestWebSoft Cross-Site Scripting (1.0.0) CVE-2017-2171  CWE-79  High
WordPress Plugin Feature Slideshow 'src' Parameter Cross-Site Scripting (1.0.6beta) CWE-79  High
WordPress Plugin Featurific For WordPress 'snum' Parameter Cross-Site Scripting (1.6.2) CVE-2011-5265  CWE-79  High
WordPress Plugin FeedList 'handler_image.php' Cross-Site Scripting (2.61.01) CVE-2010-4637  CWE-79  High
WordPress Plugin Feed Them Social-Facebook, Instagram, Twitter, Vine, Pinterest, etc Cross-Site Scripting (1.6.9) CWE-79  High
WordPress Plugin Feedweb Cross-Site Scripting (1.8.8) CVE-2013-3720  CWE-79  High
WordPress Plugin Feedweb Cross-Site Scripting (2.4) CWE-79  High
WordPress Plugin FeedWordPress Cross-Site Scripting (2014.0805) CWE-79  High
WordPress Plugin FG Joomla to WordPress Cross-Site Scripting (3.30.0) CWE-79  High
WordPress Plugin File Manager Cross-Site Scripting (2.9) CVE-2018-16363  CWE-79  High
WordPress Plugin Filtre de Surveillance Gouvernemental Cross-Site Scripting (1.1) CWE-79  High
WordPress Plugin FireStats Cross-Site Scripting (1.6.4) CWE-79  High
WordPress Plugin FireStats Multiple Cross-Site Scripting and Authentication Bypass Vulnerabilities (1.0.2) CWE-79  CWE-287  High
WordPress Plugin Fitness Trainer-Training Membership Cross-Site Scripting (1.0.8) CWE-79  High
WordPress Plugin Fixedly Media Gallery Cross-Site Scripting (1.3.1) CWE-79  High
WordPress Plugin Flash Photo Gallery Cross-Site Scripting (0.7) CVE-2014-4529  CWE-79  High
WordPress Plugin Flexible Custom Post Type Cross-Site Scripting (0.1.5) CVE-2011-5106  CWE-79  High
WordPress Plugin Flickr Justified Gallery Cross-Site Scripting (3.3.6) CWE-79  High
WordPress Plugin Flip Slideshow Cross-Site Scripting (2.2) CWE-79  High
WordPress Plugin Floating Social Bar Cross-Site Scripting (1.1.5) CVE-2015-5528  CWE-79  High
WordPress Plugin Floating Social Bar Cross-Site Scripting (1.1.6) CVE-2015-3299   CWE-79  High
WordPress Plugin Flog Cross-Site Scripting (0.1) CVE-2014-4530  CWE-79  High
WordPress Plugin Foliopress WYSIWYG Cross-Site Scripting (2.6.8.4) CVE-2014-1232  CWE-79  High
WordPress Plugin FooBox Image Lightbox Cross-Site Scripting (1.0.4) CWE-79  High
WordPress Plugin Forget About Shortcode Buttons Cross-Site Scripting (1.1.1) CVE-2016-1000133  CWE-79  High
WordPress Plugin FormBuilder Cross-Site Scripting (0.90) CWE-79  High
WordPress Plugin FormBuilder Cross-Site Scripting (1.05) CWE-79  High
WordPress Plugin FormBuilder Cross-Site Scripting (1.05) CWE-79  High
WordPress Plugin Form Builder Cross-Site Scripting (1.2.0) CWE-79  High
WordPress Plugin FormCraft-Premium WordPress Form Builder Cross-Site Scripting (3.2.31) CWE-79  High
WordPress Plugin FormGet Contact Form Cross-Site Scripting (5.3) CWE-79  High
WordPress Plugin Formidable-Clockwork SMS Cross-Site Scripting (1.0.3) CVE-2017-17780  CWE-79  High
WordPress Plugin Form Maker by WD-user-friendly drag & drop Form Builder Cross-Site Scripting (1.11.1) CWE-79  High
WordPress Plugin Forms:3rd-Party Inject Results Cross-Site Scripting (0.2) CWE-79  High
WordPress Plugin Fourteen Extended Cross-Site Scripting (1.2.31) CVE-2014-5156   CWE-79  High
WordPress Plugin FoxyShop Cross-Site Scripting (4.6) CWE-79  High
WordPress Plugin Free counter Cross-Site Scripting (1.1) CVE-2015-4084   CWE-79  High
WordPress Plugin Front-End Only Users Cross-Site Scripting (3.1.10) CWE-79  High
WordPress Plugin Frontend Uploader Cross-Site Scripting (0.9.2) CVE-2014-9444  CWE-79  High
WordPress Plugin FunCaptcha-Anti-Spam CAPTCHA Multiple Cross-Site Scripting Vulnerabilities (0.4.3) CWE-79  High
WordPress Plugin Fungif The Awesome GIFs Cross-Site Scripting (2.0) CWE-79  High
WordPress Plugin Funky Penguin WP-PHPList 'unsubscribeemail' Parameter Cross-Site Scripting (2.10.2) CWE-79  High
WordPress Plugin FV Flowplayer Video Player Cross-Site Scripting (6.0.3.3) CWE-79  High
WordPress Plugin FV Flowplayer Video Player Cross-Site Scripting (6.6.4) CVE-2018-0642  CWE-79  High
WordPress Plugin FV Flowplayer Video Player URL Cross-Site Scripting (1.2.11) CVE-2011-4568  CWE-79  High
WordPress Plugin Gallery-Photo Albums-Portfolio Cross-Site Scripting (1.2.25) CWE-79  High
WordPress Plugin Gallery-Photo Albums-Portfolio Cross-Site Scripting (1.3.47) CVE-2015-7386  CWE-79  High
WordPress Plugin Gallery-Photo Albums-Portfolio Multiple Cross-Site Scripting Vulnerabilities (1.2.29) CWE-79  High
WordPress Plugin Gallery-Video Gallery and Youtube Gallery Cross-Site Scripting (1.2.4) CWE-79  High
WordPress Plugin Gallery-Video Gallery and Youtube Gallery Cross-Site Scripting (1.7.01) CWE-79  High
WordPress Plugin Gallery by BestWebSoft Cross-Site Scripting (4.2.1) CWE-79  High
WordPress Plugin Gallery by BestWebSoft Cross-Site Scripting (4.4.9) CVE-2017-2171  CWE-79  High
WordPress Plugin Gallery Categories by BestWebSoft Cross-Site Scripting (1.0.8) CVE-2017-2171  CWE-79  High
WordPress Plugin Gallery Master-Responsive Photo Galleries & Albums Cross-Site Scripting (1.0.22) CWE-79  High
WordPress Plugin Game tabs Cross-Site Scripting (0.4.0) CVE-2014-4531  CWE-79  High
WordPress Plugin Gantry 4 Framework Cross-Site Scripting (4.1.5) CWE-79  High
WordPress Plugin Gantry 5 Framework Cross-Site Scripting (5.4.8) CWE-79  High
WordPress Plugin GarageSale Cross-Site Scripting (1.2.2) CVE-2014-4532  CWE-79  High
WordPress Plugin Garee's Flickr Feed Multiple Cross-Site Scripting Vulnerabilities (0.8) CWE-79  High
WordPress Plugin GB Team Stats Cross-Site Scripting (1.5.1) CWE-79  High
WordPress Plugin GD bbPress Attachments Cross-Site Scripting (2.5) CWE-79  High
WordPress Plugin GD bbPress Tools Cross-Site Scripting (1.7) CWE-79  High
WordPress Plugin GD Rating System Cross-Site Scripting (2.0.2) CWE-79  High
WordPress Plugin GD Star Rating 'tpl_section' Parameter Cross-Site Scripting (1.9.16) CWE-79  High
WordPress Plugin GD Star Rating 'wpfn' Parameter Cross-Site Scripting (1.9.8) CWE-79  High
WordPress Plugin Genesis Simple Share Cross-Site Scripting (1.0.6) CWE-79  High
WordPress Plugin GeoDirectory-Directory Cross-Site Scripting (1.4.4) CWE-79  High
WordPress Plugin Geo Mashup Cross-Site Scripting (1.8.2) CVE-2015-1383   CWE-79  High
WordPress Plugin GEO Redirector Cross-Site Scripting (1.0.1) CVE-2014-4533  CWE-79  High
WordPress Plugin GeSHi Source Colorer Cross-Site Scripting (0.13) CVE-2013-1808  CWE-79  High
WordPress Plugin Gift Certificate Creator Cross-Site Scripting (1.0.0) CVE-2017-1002017  CWE-79  High
WordPress Plugin GigPress 'Notes' Field HTML Injection (2.1.10) CWE-79  High
WordPress Plugin Gigya-Social Infrastructure Cross-Site Scripting (1.1.8) CWE-79  High
WordPress Plugin Give-Democratizing Generosity Cross-Site Scripting (0.8) CWE-79  High
WordPress Plugin Global Flash Galleries Cross-Site Scripting (0.13.4) CWE-79  High
WordPress Plugin Gmedia Gallery-Photo Gallery, Image Slider, Music Player, Video Player, Media Library Cross-Site Scripting (0.9.3) CWE-79  High
WordPress Plugin GNUCommerce Cross-Site Scripting (1.4.1) CWE-79  High
WordPress Plugin Google +1 by BestWebSoft Cross-Site Scripting (1.1.6) CWE-79  High
WordPress Plugin Google +1 by BestWebSoft Cross-Site Scripting (1.3.3) CVE-2017-2171  CWE-79  High
WordPress Plugin Google AdSense by BestWebSoft Cross-Site Scripting (1.29) CWE-79  High
WordPress Plugin Google AdSense by BestWebSoft Cross-Site Scripting (1.43) CVE-2017-2171  CWE-79  High
WordPress Plugin Google AdSense Click-Fraud Monitoring Cross-Site Scripting (1.8.6) CVE-2015-3998  CWE-79  High
WordPress Plugin Google Analyticator Multiple Cross-Site Scripting Vulnerabilities (6.4.9.5) CVE-2015-6238  CWE-79  High
WordPress Plugin Google Analytics by BestWebSoft Cross-Site Scripting (1.7.0) CVE-2017-2171  CWE-79  High
WordPress Plugin Google Analytics by MonsterInsights 404 Error Page Cross-Site Scripting (3.2.4) CWE-79  High
WordPress Plugin Google Analytics by MonsterInsights Cross-Site Scripting (5.1.2) CVE-2014-9174  CWE-79  High
WordPress Plugin Google Analytics by MonsterInsights Cross-Site Scripting (5.4.4) CWE-79  High
WordPress Plugin Google Analytics by MonsterInsights Multiple Cross-Site Scripting Vulnerabilities (4.2.4) CWE-79  High
WordPress Plugin Google Analytics by MonsterInsights Multiple Cross-Site Scripting Vulnerabilities (5.3.3) CWE-79  High
WordPress Plugin Google Analytics Dashboard Cross-Site Scripting (2.1.1) CWE-79  High
WordPress Plugin Google Analytics Top Content Widget Cross-Site Scripting (1.5.6) CWE-79  High
WordPress Plugin Google Calendar Events Cross-Site Scripting (2.0.3.1) CVE-2014-7138  CWE-79  High
WordPress Plugin Google Captcha (reCAPTCHA) by BestWebSoft Cross-Site Scripting (1.05) CWE-79  High
WordPress Plugin Google Captcha (reCAPTCHA) by BestWebSoft Cross-Site Scripting (1.27) CVE-2017-2171  CWE-79  High
WordPress Plugin Google Doc Embedder Cross-Site Scripting (2.5.18) CVE-2015-1879  CWE-79  High
WordPress Plugin Google Forms Cross-Site Scripting (0.84) CWE-79  High
WordPress Plugin Google Language Translator Cross-Site Scripting (4.0.9) CWE-79  High
WordPress Plugin Google Language Translator Cross-Site Scripting (5.0.05) CWE-79  High
WordPress Plugin Google Map Generator Cross-Site Scripting (1.3.1) CWE-79  High
WordPress Plugin Google Maps by BestWebSoft Cross-Site Scripting (1.3.5) CVE-2017-2171  CWE-79  High
WordPress Plugin Google Maps by BestWebSoft Multiple Cross-Site Scripting Vulnerabilities (1.2.1) CWE-79  High
WordPress Plugin Google Maps CP Cross-Site Scripting (1.0.3) CWE-79  High
WordPress Plugin Google Maps Cross-Site Scripting (2.1.3) CWE-79  High
WordPress Plugin Google Maps in Posts Cross-Site Scripting (1.5.3) CWE-79  High
WordPress Plugin Google Maps Widget Cross-Site Scripting (2.30) CWE-79  High
WordPress Plugin Google Pagespeed Insights Cross-Site Scripting (3.0.0) CWE-79  High
WordPress Plugin Google SEO Pressor for Rich snippets Cross-Site Scripting (1.2.6) CWE-79  High
WordPress Plugin Google Shortlink by BestWebSoft Cross-Site Scripting (1.5.2) CVE-2017-2171  CWE-79  High
WordPress Plugin Google Sitemap by BestWebSoft Cross-Site Scripting (2.9.1) CWE-79  High
WordPress Plugin Google Sitemap by BestWebSoft Cross-Site Scripting (3.0.7) CVE-2017-2171  CWE-79  High
WordPress Plugin Google XML Sitemaps Cross-Site Scripting (4.0.8) CWE-79  High
WordPress Plugin Grand Flagallery-Photo Gallery 'facebook.php' Cross-Site Scripting (1.56) CVE-2011-4624  CWE-79  High
WordPress Plugin Grand Flagallery-Photo Gallery 'flagshow.php' Cross-Site Scripting (1.57) CWE-79  High
WordPress Plugin Grand Flagallery-Photo Gallery 'skin' Parameter Cross-Site Scripting (1.72) CWE-79  High
WordPress Plugin Grand Flagallery-Photo Gallery Cross-Site Scripting (2.70) CVE-2013-3261  CWE-79  High
WordPress Plugin Gravity Forms-Clockwork SMS Cross-Site Scripting (2.2) CVE-2017-17780  CWE-79  High
WordPress Plugin Gravity Forms Cross-Site Scripting (1.9.5) CWE-79  High
WordPress Plugin Gravity Forms Cross-Site Scripting (1.9.15.11) CWE-79  High
WordPress Plugin Gravity Forms Cross-Site Scripting (2.0.6.5) CWE-79  High
WordPress Plugin Gravity Forms Directory Cross-Site Scripting (3.7.1) CWE-79  High
WordPress Plugin Greg's High Performance SEO Cross-Site Scripting (1.6.1) CWE-79  High
WordPress Plugin Groups Multiple Cross-Site Scripting Vulnerabilities (1.8.0) CWE-79  High
WordPress Plugin Gwolle Guestbook Cross-Site Scripting (2.5.3) CWE-79  High
WordPress Plugin Haiku minimalist audio player Cross-Site Scripting (1.0.0) CVE-2013-1942  CWE-79  High
WordPress Plugin HDW WordPress Video Gallery Multiple Cross-Site Scripting Vulnerabilities (1.2) CVE-2016-1000134  CVE-2016-1000135  CWE-79  High
WordPress Plugin Heat Trackr Cross-Site Scripting (1.0) CVE-2016-1000136  CWE-79  High
WordPress Plugin Hero Maps Pro Cross-Site Scripting (2.1.0) CVE-2016-1000137  CWE-79  High
WordPress Plugin Hide My WP Cross-Site Scripting (4.51.1) CWE-79  High
WordPress Plugin Hide My WP Cross-Site Scripting (4.53) CWE-79  High
WordPress Plugin Highlight Search Terms Cross-Site Scripting (1.3) CWE-79  High
WordPress Plugin HK Exif Tags Cross-Site Scripting (1.11) CVE-2014-100007  CWE-79  High
WordPress Plugin HMS Testimonials Multiple Cross-Site Scripting and Cross-Site Request Forgery Vulnerabilities (2.0.10) CVE-2013-4240  CVE-2013-4241  CWE-79  CWE-352  High
WordPress Plugin Hot Files:File Sharing and Download Manager Cross-Site Scripting (1.0.0) CVE-2014-4588  CWE-79  High
WordPress Plugin Hover Effects Builder Free Cross-Site Scripting (1.0.3) CWE-79  High
WordPress Plugin Htaccess by BestWebSoft Cross-Site Scripting (1.4) CWE-79  High
WordPress Plugin Htaccess by BestWebSoft Cross-Site Scripting (1.7.5) CVE-2017-2171  CWE-79  High
WordPress Plugin HTML5 jQuery Audio Player Multiple Cross-Site Scripting Vulnerabilities (2.3) CWE-79  High
WordPress Plugin HTML5 Lyrics Karaoke Player Cross-Site Scripting (1.06) CWE-79  High
WordPress Plugin HTML5 Video Player with Playlist Multiple Cross-Site Scripting Vulnerabilities (2.40) CVE-2014-4534  CWE-79  High
WordPress Plugin Hunk External Links Cross-Site Scripting (3.0.5) CWE-79  High
WordPress Plugin Hustle-Pop-Ups, Slide-ins and Email Opt-ins Cross-Site Scripting (4.7.0.5) CWE-79  High
WordPress Plugin iFrame Admin Pages 'url' Parameter Cross-Site Scripting (0.1) CWE-79  High
WordPress Plugin iframe Cross-Site Scripting (3.0) CWE-79  High
WordPress Plugin iframe Cross-Site Scripting (4.0) CWE-79  High
WordPress Plugin IGIT Posts Slider Widget 'src' Parameter Cross-Site Scripting (1.0) CWE-79  High
WordPress Plugin Image Gallery-Responsive Photo Gallery Cross-Site Scripting (1.4.0) CWE-79  High
WordPress Plugin Image Gallery-Responsive Photo Gallery Cross-Site Scripting (1.5.1) CWE-79  High
WordPress Plugin Image Gallery-Responsive Photo Gallery Cross-Site Scripting (1.7.0) CWE-79  High
WordPress Plugin Image Gallery-Responsive Photo Gallery Cross-Site Scripting (2.0.5) CWE-79  High
WordPress Plugin Image Gallery Plugin by Gallery Bank Cross-Site Scripting (3.0.69) CVE-2014-8758  CWE-79  High
WordPress Plugin Image Gallery Plugin by Gallery Bank Cross-Site Scripting (3.0.228) CWE-79  High
WordPress Plugin Image Gallery Plugin by Gallery Bank Multiple Cross-Site Scripting Vulnerabilities (2.0.19) CWE-79  High
WordPress Plugin Image Rotator Cross-Site Scripting (1.0) CWE-79  High
WordPress Plugin Images Lazyload and Slideshow Cross-Site Scripting (3.2) CWE-79  High
WordPress Plugin ImmoPress Cross-Site Scripting (0.0.4) CWE-79  High
WordPress Plugin Import any XML or CSV File to WordPress Cross-Site Scripting (3.4.5) CVE-2018-0546  CWE-79  High
WordPress Plugin Import any XML or CSV File to WordPress Cross-Site Scripting (3.4.6) CVE-2018-0547  CWE-79  High
WordPress Plugin Import Legacy Media Cross-Site Scripting (0.1) CVE-2014-4535   CWE-79  High
WordPress Plugin Import Woocommerce Cross-Site Scripting (1.0.1) CWE-79  High
WordPress Plugin IMPress Listings Cross-Site Scripting (2.0.1) CWE-79  High
WordPress Plugin Indexisto WordPress Site Search Cross-Site Scripting (1.0.5) CVE-2016-1000138  CWE-79  High
WordPress Plugin Indieweb Post Kinds Cross-Site Scripting (1.3.1) CWE-79  High
WordPress Plugin Influencer Marketing & Press Release System Cross-Site Scripting (2.2) CWE-79  High
WordPress Plugin Infusionsoft Gravity Forms Add-on Cross-Site Scripting (1.5.11) CVE-2016-1000139  CWE-79  High
WordPress Plugin Infusionsoft Gravity Forms Add-on Multiple Cross-Site Scripting Vulnerabilities (1.5.6) CVE-2014-4536   CWE-79  High
WordPress Plugin Inline Gallery 'do' Parameter Cross-Site Scripting (0.3.9 ) CWE-79  High
WordPress Plugin Instagram Feed Cross-Site Scripting (1.4.6.2) CWE-79  High
WordPress Plugin Instagram Feed Cross-Site Scripting (1.5.1) CWE-79  High
WordPress Plugin Instagram Plugin-InstaLinker Cross-Site Scripting (1.1.1) CWE-79  High
WordPress Plugin Integrator 'redirect_to' Parameter Cross-Site Scripting (1.32) CVE-2012-5913  CWE-79  High
WordPress Plugin iQ Block Country Cross-Site Scripting (1.1.19) CWE-79  High
WordPress Plugin iThemes Exchange:Simple WP Ecommerce Cross-Site Scripting (1.11.18) CWE-79  High
WordPress Plugin iThemes Security (formerly Better WP Security) Cross-Site Scripting (3.2.4) CVE-2012-4263  CWE-79  High
WordPress Plugin iThemes Security (formerly Better WP Security) Cross-Site Scripting (3.5.3) CWE-79  High
WordPress Plugin iThemes Security (formerly Better WP Security) Cross-Site Scripting (4.6.12) CWE-79  High
WordPress Plugin iThemes Security (formerly Better WP Security) Cross-Site Scripting (5.3.4) CWE-79  High
WordPress Plugin iThemes Security (formerly Better WP Security) Cross-Site Scripting (5.6.1) CWE-79  High
WordPress Plugin iThemes Security (formerly Better WP Security) Multiple Cross-Site Scripting Vulnerabilities (3.4.3) CWE-79  High
WordPress Plugin Itinerary Cross-Site Scripting (1.0.0) CWE-79  High
WordPress Plugin IzeeChat-Live Chat Cross-Site Scripting (1.0) CWE-79  High
WordPress Plugin Jammer Cross-Site Scripting (0.2) CVE-2013-1942  CWE-79  High
WordPress Plugin JC Coupon Cross-Site Scripting (2.5) CVE-2013-1808  CWE-79  High
WordPress Plugin jcwp youtube channel embed Cross-Site Scripting (1.5.2) CWE-79  High
WordPress Plugin Jetpack by WordPress.com Cross-Site Scripting (3.4.2) CWE-79  High
WordPress Plugin Jetpack by WordPress.com Cross-Site Scripting (3.5.2) CWE-79  High
WordPress Plugin Jetpack by WordPress.com Cross-Site Scripting (3.9.1) CWE-79  High
WordPress Plugin Jetpack by WordPress.com Cross-Site Scripting (4.0.2) CWE-79  High
WordPress Plugin Job Board by BestWebSoft Cross-Site Scripting (1.0.0) CWE-79  High
WordPress Plugin Job Board by BestWebSoft Cross-Site Scripting (1.1.3) CVE-2017-2171  CWE-79  High
WordPress Plugin Job Manager Cross-Site Scripting (0.7.22) CVE-2015-2321   CWE-79  High
WordPress Plugin Job Manager Cross-Site Scripting (0.7.24) CWE-79  High
WordPress Plugin Job Manager Multiple Cross-Site Scripting Vulnerabilities (0.7.18) CWE-79  High
WordPress Plugin JS MultiHotel Cross-Site Scripting (2.2.1) CVE-2013-7419  CWE-79  High
WordPress Plugin Juiz Social Post Sharer Multiple Cross-Site Scripting Vulnerabilities (1.3.3.7) CWE-79  High
WordPress Plugin JW Player 6 Cross-Site Scripting (2.1.14) CWE-79  High
WordPress Plugin Kama Click Counter Cross-Site Scripting (3.4.9) CWE-79  High
WordPress Plugin Keyring Cross-Site Scripting (1.5) CWE-79  High
WordPress Plugin Keyword Strategy Internal Links Multiple Cross-Site Scripting Vulnerabilities (2.0) CVE-2014-4537  CWE-79  High
WordPress Plugin Kindeditor For WordPress Cross-Site Scripting (1.3.3) CWE-79  High
WordPress Plugin Kiwi Logo Carousel Cross-Site Scripting (1.7.1) CWE-79  High
WordPress Plugin Knews Multilingual Newsletters 'ff' Parameter Cross-Site Scripting (1.1.0) CWE-79  High
WordPress Plugin lasTunes Cross-Site Scripting (3.6.1) CWE-79  High
WordPress Plugin Latest Posts by BestWebSoft Cross-Site Scripting (0.2) CVE-2017-2171  CWE-79  High
WordPress Plugin Lazyest Backup 'xml_or_all' Parameter Cross-Site Scripting (0.2.1) CVE-2011-5264  CWE-79  High
WordPress Plugin Lazyest Gallery 'image' Parameter Cross-Site Scripting (1.0.28 ) CWE-79  High
WordPress Plugin Lazyest Gallery EXIF Code Cross-Site Scripting (1.1.20) CVE-2014-2333   CWE-79  High
WordPress Plugin Lazy Load Cross-Site Scripting (0.6) CWE-79  High
WordPress Plugin LB Tube Video for WordPress Cross-Site Scripting (1.0) CWE-79  High
WordPress Plugin Leaflet 'id' Parameter Cross-Site Scripting (0.0.1) CVE-2012-2913  CWE-79  High
WordPress Plugin Leaflet Maps Marker (Google Maps, OpenStreetMap, Bing Maps) Multiple Cross-Site Scripting Vulnerabilities (3.9.8) CWE-79  High
WordPress Plugin Leaflet Maps Marker (Google Maps, OpenStreetMap, Bing Maps) Multiple Cross-Site Scripting Vulnerabilities (3.11.2) CWE-79  High
WordPress Plugin Leaflet Maps Marker Pro (Google Maps, OpenStreetMap, Bing Maps) Multiple Cross-Site Scripting Vulnerabilities (2.3) CWE-79  High
WordPress Plugin LeagueManager Multiple Cross-Site Scripting Vulnerabilities (3.7) CVE-2012-2912  CWE-79  High
WordPress Plugin Lightbox Plus Colorbox Cross-Site Scripting (2.7.2) CWE-79  High
WordPress Plugin Limit Attempts by BestWebSoft Cross-Site Scripting (1.1.7) CVE-2017-2171  CWE-79  High
WordPress Plugin Limit Login Attempts Cross-Site Scripting (1.7.1) CWE-79  High
WordPress Plugin Limit Login Attempts Reloaded Cross-Site Scripting (2.6.3) CWE-79  High
WordPress Plugin Lingotek Translation Multiple Cross-Site Scripting Vulnerabilities (1.1.8) CWE-79  High
WordPress Plugin LinkedIn by BestWebSoft Cross-Site Scripting (1.0.4) CVE-2017-2171  CWE-79  High
WordPress Plugin Link Library 'id' Parameter Cross-Site Scripting and SQL Injection Vulnerabilities (5.0.8) CWE-79  CWE-89  High
WordPress Plugin Link Library Cross-Site Scripting (5.8.10.6) CWE-79  High
WordPress Plugin Link Library Cross-Site Scripting (5.9.5.5) CWE-79  High
WordPress Plugin Link Library Cross-Site Scripting (5.9.12.29) CWE-79  High
WordPress Plugin Live Comment Preview Cross-Site Scripting (2.0.2) CWE-79  High
WordPress Plugin Livefyre Comments 3 Cross-Site Scripting (4.1.4) CWE-79  High
WordPress Plugin LiveGrounds 'uid' Parameter Cross-Site Scripting (0.42) CWE-79  High
WordPress Plugin Live Streaming/Broadcast Live Video Cross-Site Scripting (4.27.2) CVE-2014-4569  CWE-79  High
WordPress Plugin Live Streaming/Broadcast Live Video Multiple Cross-Site Scripting Vulnerabilities (4.25.3) CVE-2013-5714  CWE-79  High
WordPress Plugin Live Streaming/Broadcast Live Video Multiple Cross-Site Scripting Vulnerabilities (4.29.6) CWE-79  High
WordPress Plugin Local Market Explorer 'api-key' Parameter Cross-Site Scripting (3.1.1) CWE-79  High
WordPress Plugin Local Weather Cross-Site Scripting (1.0) CVE-2014-4561   CWE-79  High
WordPress Plugin Loginizer Cross-Site Scripting (1.3.9) CVE-2018-11366  CWE-79  High
WordPress Plugin Login With Ajax Cross-Site Scripting (3.0.4) CVE-2012-2759  CVE-2012-4283  CWE-79  High
WordPress Plugin Login With Ajax Cross-Site Scripting (3.1.6) CWE-79  High
WordPress Plugin MAC PHOTO GALLERY 'macalbajax.php' Multiple Cross-Site Scripting Vulnerabilities (2.10) CWE-79  High
WordPress Plugin Magic Fields 2 Cross-Site Scripting (2.3.2.4) CWE-79  High
WordPress Plugin Magic Fields Cross-Site Scripting (1.7.1) CWE-79  High
WordPress Plugin MailChimp for WordPress Cross-Site Scripting (2.2.7) CWE-79  High
WordPress Plugin MailChimp for WordPress Cross-Site Scripting (4.0.10) CWE-79  High
WordPress Plugin MailChimp for WordPress Cross-Site Scripting (4.1.6) CWE-79  High
WordPress Plugin MailPoet 2 'swfupload.swf' Cross-Site Scripting (2.1.6) CVE-2012-3414  CWE-79  High
WordPress Plugin MailPoet 2 Cross-Site Scripting (2.6.11) CWE-79  High
WordPress Plugin MailPoet 2 Cross-Site Scripting (2.6.19) CWE-79  High
WordPress Plugin MainWP Child Cross-Site Scripting (2.0.12) CWE-79  High
WordPress Plugin MainWP Dashboard Cross-Site Scripting (3.1.2) CWE-79  High
WordPress Plugin Malware Finder Cross-Site Scripting (1.1) CVE-2014-4538  CWE-79  High
WordPress Plugin Manage Calameo Publications by Athlon Cross-Site Scripting (1.1.0) CWE-79  High
WordPress Plugin Manual Image Crop Cross-Site Scripting (1.10) CWE-79  High
WordPress Plugin Marekkis Watermark Cross-Site Scripting (0.9.1) CVE-2013-1758  CWE-79  High
WordPress Plugin Markdown on Save Improved Cross-Site Scripting (2.5) CVE-2017-9337  CWE-79  High
WordPress Plugin Markdown on Save Improved Cross-Site Scripting (2.5) CVE-2016-4812  CWE-79  High
WordPress Plugin Mass Pages/Posts Creator Cross-Site Scripting (1.2.2) CVE-2018-11580  CWE-79  High
WordPress Plugin Master Slider-Responsive Touch Slider Cross-Site Scripting (2.7.1) CWE-79  High
WordPress Plugin MATRIX 3D Cross-Site Scripting (1.2) CWE-79  High
WordPress Plugin MaxBlogPress Max Banner Ads Cross-Site Scripting (1.9) CWE-79  High
WordPress Plugin Max Mega Menu Cross-Site Scripting (2.3.8) CWE-79  High
WordPress Plugin mb.miniAudioPlayer-an HTML5 audio player for your mp3 files Multiple Cross-Site Scripting Vulnerabilities (1.3.8) CWE-79  High
WordPress Plugin McAvoy Cross-Site Scripting (0.1.0) CWE-79  High
WordPress Plugin MDC Private Message Cross-Site Scripting (1.0.0) CVE-2015-6805  CWE-79  High
WordPress Plugin Media File Renamer Cross-Site Scripting (1.7.0) CVE-2014-2040  CWE-79  High
WordPress Plugin Media from FTP Cross-Site Scripting (9.89) CWE-79  High
WordPress Plugin Media Library Assistant Multiple Cross-Site Scripting Vulnerabilities (2.73) CWE-79  High
WordPress Plugin Media Library Categories Multiple Cross-Site Scripting Vulnerabilities (1.1.1) CVE-2012-6630  CWE-79  High
WordPress Plugin Meta Slider Cross-Site Scripting (2.6.2) CVE-2014-4846  CWE-79  High
WordPress Plugin MF Gig Calendar 'page_id' Parameter Cross-Site Scripting (0.9.4.1) CVE-2012-4242  CWE-79  High
WordPress Plugin Mingle Forum Cross-Site Scripting (1.0.28 ) CWE-79  High
WordPress Plugin Mingle Forum Multiple Cross-Site Scripting and SQL Injection Vulnerabilities (1.0.32.1) CVE-2012-5327  CVE-2012-5328  CWE-79  CWE-89  High
WordPress Plugin Mingle Forum Multiple Cross-Site Scripting Vulnerabilities (1.0.33) CWE-79  High
WordPress Plugin Mini Mail Dashboard Widget Cross-Site Scripting (1.42) CVE-2012-2583  CWE-79  High
WordPress Plugin MiniMax-Page Layout Builder Cross-Site Scripting (1.3.4) CWE-79  High
WordPress Plugin MiniMax-Page Layout Builder Cross-Site Scripting (1.9.3) CVE-2016-1000141  CWE-79  High
WordPress Plugin mklasen's Photobox Cross-Site Scripting (1.0) CWE-79  High
WordPress Plugin MobileChief-Mobile Site Builder Cross-Site Scripting (1.5.7) CWE-79  High
WordPress Plugin Mobile Device Detection by 51Degrees Cross-Site Scripting (3.1.5.2) CWE-79  High
WordPress Plugin MobileView by ColorLabs & Company Cross-Site Scripting (1.0.7) CVE-2013-1808  CWE-79  High
WordPress Plugin Mobiloud-Native Mobile Apps for your WordPress site (iPhone, iPad, Android) Multiple Cross-Site Scripting Vulnerabilities (2.3.7) CVE-2014-5344  CWE-79  High
WordPress Plugin moreAds SE Cross-Site Scripting (1.4.6) CWE-79  High
WordPress Plugin Movies Cross-Site Scripting (0.6) CVE-2014-4539   CWE-79  High
WordPress Plugin MP3-jPlayer Cross-Site Scripting (1.8.3) CVE-2013-1942  CWE-79  High
WordPress Plugin MP3-jPlayer Multiple Cross-Site Scripting Vulnerabilities (1.8.7) CWE-79  High
WordPress Plugin MP3-jPlayer Multiple Cross-Site Scripting Vulnerabilities (1.8.11) CWE-79  High
WordPress Plugin Multicons [Multiple Favicons] Cross-Site Scripting (2.1) CWE-79  High
WordPress Plugin Multilanguage by BestWebSoft Cross-Site Scripting (1.2.1) CVE-2017-2171  CWE-79  High
WordPress Plugin Multisite Global Search 'mssearch' Parameter Cross-Site Scripting (1.2.5) CWE-79  High
WordPress Plugin Multisite Plugin Manager Multiple Cross-Site Scripting Vulnerabilities (3.1.1) CWE-79  High
WordPress Plugin Multi Step Form Multiple Cross-Site Scripting Vulnerabilities (1.2.5) CVE-2018-14430  CWE-79  High
WordPress Plugin Music Store Cross-Site Scripting (1.0.41) CWE-79  High
WordPress Plugin Music Store Cross-Site Scripting (1.0.52) CWE-79  High
WordPress Plugin MW Font Changer Cross-Site Scripting (4.2.5) CVE-2016-1000142  CWE-79  High
WordPress Plugin MW WP Form Cross-Site Scripting (1.7.1) CWE-79  High
WordPress Plugin MW WP Form Cross-Site Scripting (2.10.0) CWE-79  High
WordPress Plugin MyBlogU Cross-Site Scripting (0.0.7) CWE-79  High
WordPress Plugin My Calendar Cross-Site Scripting (2.3.28) CWE-79  High
WordPress Plugin My Calendar Cross-Site Scripting (2.4.18) CWE-79  High
WordPress Plugin My Calendar Cross-Site Scripting (2.5.16) CWE-79  High
WordPress Plugin My Calendar Multiple Cross-Site Scripting Vulnerabilities (1.10.1) CVE-2012-6527  CWE-79  High
WordPress Plugin My Calendar Multiple Cross-Site Scripting Vulnerabilities (2.3.9) CWE-79  High
WordPress Plugin My Category Order Cross-Site Scripting (4.3) CWE-79  High
WordPress Plugin My Link Order Cross-Site Scripting (4.3) CWE-79  High
WordPress Plugin MyLiveChat-Free Live Chat Plugin for WordPress Cross-Site Scripting (2.0.1) CWE-79  High
WordPress Plugin My Page Order Cross-Site Scripting (4.3) CWE-79  High
WordPress Plugin MyThemeShop Theme/Plugin Updater Cross-Site Scripting (1.2.3) CWE-79  High
WordPress Plugin My Tickets Cross-Site Scripting (1.5.0) CWE-79  High
WordPress Plugin myTreasures Cross-Site Scripting (2.4.10) CWE-79  High
WordPress Plugin mywebcounter Cross-Site Scripting (1.1) CWE-79  High
WordPress Plugin My Wish List Cross-Site Scripting (1.4.1) CWE-79  High
WordPress Plugin Name Directory Cross-Site Scripting (1.7.6) CWE-79  High
WordPress Plugin Navis DocumentCloud Cross-Site Scripting (0.1) CVE-2015-2807   CWE-79  High
WordPress Plugin Nested Pages Cross-Site Scripting (1.6.5.2) CWE-79  High
WordPress Plugin Network Publisher 'networkpub_key' Parameter Cross-Site Scripting (5.0.1) CWE-79  High
WordPress Plugin Neuvoo Jobs Cross-Site Scripting (2.0) CWE-79  High
WordPress Plugin Newsletter by Supsystic Cross-Site Scripting (1.1.7) CWE-79  High
WordPress Plugin Newsletter Cross-Site Scripting (3.2.6) CWE-79  High
WordPress Plugin Newsletter Cross-Site Scripting (4.6.0) CWE-79  High
WordPress Plugin Newsletter Manager Multiple Cross-Site Scripting Vulnerabilities (1.0.1) CVE-2012-6627  CVE-2012-6628  CWE-79  High
WordPress Plugin Newsletter Meenews 'idnews' Parameter Cross-Site Scripting (5.1.0) CWE-79  High
WordPress Plugin NewStatPress Cross-Site Scripting (1.0.3) CWE-79  High
WordPress Plugin NewStatPress Cross-Site Scripting (1.0.5) CWE-79  High
WordPress Plugin NewStatPress Cross-Site Scripting (1.2.4) CWE-79  High
WordPress Plugin New Year Firework Cross-Site Scripting (1.1.9) CVE-2016-1000140  CWE-79  High
WordPress Plugin NEX-Forms Lite-WordPress Contact Form builder Cross-Site Scripting (2.1.0) CVE-2014-7151  CWE-79  High
WordPress Plugin NextCellent Gallery-NextGEN Legacy Cross-Site Scripting (1.9.17) CVE-2014-3123  CWE-79  High
WordPress Plugin NextCellent Gallery-NextGEN Legacy Cross-Site Scripting (1.9.27) CWE-79  High
WordPress Plugin Nextend Facebook Connect Cross-Site Scripting (1.5.0) CVE-2014-8800  CWE-79  High
WordPress Plugin Nextend Facebook Connect Cross-Site Scripting (1.5.5) CVE-2015-4413  CWE-79  High
WordPress Plugin Nextend Google Connect Cross-Site Scripting (1.5.0) CWE-79  High
WordPress Plugin Nextend Google Connect Cross-Site Scripting (1.5.2) CVE-2015-4557   CWE-79  High
WordPress Plugin Nextend Twitter Connect Cross-Site Scripting (1.5.0) CWE-79  High
WordPress Plugin Nextend Twitter Connect Cross-Site Scripting (1.5.1) CVE-2015-4557   CWE-79  High
WordPress Plugin NextGEN Gallery-WordPress Gallery 'Gallery Path' Field Cross-Site Scripting (1.9.5) CWE-79  High
WordPress Plugin NextGEN Gallery-WordPress Gallery 'nggallery-manage-gallery' HTML Injection (0.96) CVE-2008-7175  CWE-79  High
WordPress Plugin NextGEN Gallery-WordPress Gallery 'swfupload.swf' Cross-Site Scripting (1.9.7) CVE-2012-3414  CWE-79  High
WordPress Plugin NextGEN Gallery-WordPress Gallery 'xml/media-rss.php' Cross-Site Scripting (1.5.1) CVE-2010-1186  CWE-79  High
WordPress Plugin NextGEN Gallery-WordPress Gallery Cross-Site Scripting (2.2.10) CWE-79  High
WordPress Plugin NextGEN Gallery-WordPress Gallery Cross-Site Scripting and Cross-Site Request Forgery Vulnerabilities (1.8.3) CWE-79  High
WordPress Plugin NextGEN Gallery-WordPress Gallery Multiple Cross-Site Scripting Vulnerabilities (2.0.66.16) CWE-79  High
WordPress Plugin NextGEN Gallery-WordPress Gallery Multiple Cross-Site Scripting Vulnerabilities (2.1.9) CWE-79  High
WordPress Plugin NextGEN Gallery-WordPress Gallery Multiple Cross-Site Scripting Vulnerabilities (2.1.20) CWE-79  High
WordPress Plugin NextGEN Gallery-WordPress Gallery Multiple HTML Injection Vulnerabilities (1.9.0) CWE-79  High
WordPress Plugin NextScripts:Social Networks Auto-Poster Cross-Site Scripting (3.4.17) CWE-79  High
WordPress Plugin Nginx Helper Cross-Site Scripting (1.8.9) CWE-79  High
WordPress Plugin Ninja Forms-The Easy and Powerful Forms Builder Cross-Site Scripting (2.8.6) CVE-2014-8815  CWE-79  High
WordPress Plugin Ninja Forms-The Easy and Powerful Forms Builder Cross-Site Scripting (2.9.10) CWE-79  High
WordPress Plugin Ninja Forms-The Easy and Powerful Forms Builder Cross-Site Scripting (2.9.18) CWE-79  High
WordPress Plugin Ninja Forms-The Easy and Powerful Forms Builder Cross-Site Scripting (2.9.28) CWE-79  High
WordPress Plugin Ninja Forms-The Easy and Powerful Forms Builder Cross-Site Scripting (2.9.31) CWE-79  High
WordPress Plugin Ninja Forms-The Easy and Powerful Forms Builder Cross-Site Scripting (3.2.13) CVE-2018-7280  CWE-79  High
WordPress Plugin Ninja Forms-The Easy and Powerful Forms Builder Multiple Cross-Site Scripting Vulnerabilities (2.8.8) CVE-2015-2220  CWE-79  High
WordPress Plugin Ninja Forms-The Easy and Powerful Forms Builder Multiple Cross-Site Scripting Vulnerabilities (2.9.21) CWE-79  High
WordPress Plugin Ninja Forms-The Easy and Powerful Forms Builder Multiple Cross-Site Scripting Vulnerabilities (2.9.51) CWE-79  High
WordPress Plugin Nofollow Links Cross-Site Scripting (1.0.10) CVE-2016-4833  CWE-79  High
WordPress Plugin Nokia Maps & Places Cross-Site Scripting (1.6.6) CVE-2014-1750  CWE-79  High
WordPress Plugin Oleggo LiveStream Cross-Site Scripting (0.2.6) CVE-2014-4540  CWE-79  High
WordPress Plugin Olevmedia Shortcodes Cross-Site Scripting (1.1.8) CWE-79  High
WordPress Plugin OMFG Mobile Pro Cross-Site Scripting (1.1.26) CVE-2014-4541  CWE-79  High
WordPress Plugin Onclick show popup Cross-Site Scripting (6.5) CWE-79  High
WordPress Plugin OnePress Social Locker Multiple Cross-Site Scripting Vulnerabilities (4.2.0) CWE-79  High
WordPress Plugin Ooorl Cross-Site Scripting (1.0.0) CVE-2014-4542  CWE-79  High
WordPress Plugin Open Graph for Facebook, Google+ and Twitter Card Tags Cross-Site Scripting (2.2.4) CVE-2018-0579  CWE-79  High
WordPress Plugin OptionTree Cross-Site Scripting (2.5.3) CWE-79  High
WordPress Plugin OptionTree Cross-Site Scripting (2.5.5) CWE-79  High
WordPress Plugin oQey Gallery 'tbpv_domain' Parameter Cross-Site Scripting (0.2) CWE-79  High
WordPress Plugin Organizer Multiple Cross-Site Scripting and Information Disclosure Vulnerabilities (1.2.1) CVE-2012-6511  CVE-2012-6512  CWE-79  CWE-200  High
WordPress Plugin P3 (Plugin Performance Profiler) Cross-Site Scripting (1.5.3.8) CWE-79  High
WordPress Plugin Page Builder, Website Builder:Simply Symphony! & Flux Live!-Full Drag And Drop Front End Vi Cross-Site Scripting (0.2.7.9) CWE-79  High
WordPress Plugin Page Builder by SiteOrigin Cross-Site Scripting (2.0.4) CWE-79  High
WordPress Plugin Page Restrict Cross-Site Scripting (2.2.1) CWE-79  High
WordPress Plugin Page Showcaser Boxes Cross-Site Scripting (1.1) CWE-79  High
WordPress Plugin Pagination by BestWebSoft Cross-Site Scripting (1.0.6) CVE-2017-2171  CWE-79  High
WordPress Plugin Paid Memberships Pro Cross-Site Scripting (1.8.9.3) CWE-79  High
WordPress Plugin Paid Memberships Pro Multiple Cross-Site Scripting Vulnerabilities (1.8.4.2) CVE-2015-5532   CWE-79  High
WordPress Plugin Participants Database Cross-Site Scripting (1.7.5.9) CVE-2017-14126  CWE-79  High
WordPress Plugin Password Vault Cross-Site Scripting (1.8.2) CWE-79  High
WordPress Plugin Payment Form for PayPal Pro Multiple Cross-Site Scripting Vulnerabilities (1.0.1) CVE-2015-7666  CWE-79  High
WordPress Plugin PayPal Digital Goods powered by Cleeng Cross-Site Scripting (2.2.13) CVE-2013-1808  CWE-79  High
WordPress Plugin Pay Per Media Player Multiple Cross-Site Scripting Vulnerabilities (1.24) CVE-2014-4543  CWE-79  High
WordPress Plugin Pay With Tweet SQL Injection and Cross-Site Scripting Vulnerabilities (1.1) CVE-2012-5349  CVE-2012-5350  CWE-89  High
WordPress Plugin PDF & Print Button Joliprint Multiple Cross-Site Scripting Vulnerabilities (1.3.0) CWE-79  High
WordPress Plugin PDF & Print by BestWebSoft Cross-Site Scripting (1.7.4) CWE-79  High
WordPress Plugin PDF & Print by BestWebSoft Cross-Site Scripting (1.9.3) CVE-2017-2171  CWE-79  High
WordPress Plugin Persian Woocommerce SMS Cross-Site Scripting (3.3.2) CWE-79  High
WordPress Plugin PG Flash Gallery Cross-Site Scripting (4.1.1) CWE-79  High
WordPress Plugin Photo Gallery by WD-Responsive Photo Gallery for WordPress Cross-Site Scripting (1.2.12) CVE-2015-2324   CWE-79  High
WordPress Plugin Photo Gallery by WD-Responsive Photo Gallery for WordPress Multiple Cross-Site Scripting Vulnerabilities (1.1.30) CVE-2014-6315  CWE-79  High
WordPress Plugin Photoracer Multiple Cross-Site Scripting and SQL Injection Vulnerabilities (1.0) CWE-79  CWE-89  High
WordPress Plugin PhotoSmash Galleries 'action' Parameter Cross-Site Scripting (1.0.2) CVE-2011-5307  CWE-79  High
WordPress Plugin PhotoXhibit Multiple Cross-Site Scripting Vulnerabilities (2.1.8) CVE-2016-1000143  CVE-2016-1000144  CWE-79  High
WordPress Plugin PHPFreeChat 'url' Parameter Cross-Site Scripting (0.2.8) CWE-79  High
WordPress Plugin Pie Register Cross-Site Scripting (2.0.14) CWE-79  High
WordPress Plugin Pie Register Multiple Cross-Site Scripting Vulnerabilities (1.30) CVE-2013-4954  CWE-79  High
WordPress Plugin PIKLIST-Rapid development framework Cross-Site Scripting (0.9.4.25) CWE-79  High
WordPress Plugin Pinterest 'Pin It' Button Cross-Site Scripting (2.0.8) CWE-79  High
WordPress Plugin Pinterest Badge Cross-Site Scripting (1.9.0) CWE-79  High
WordPress Plugin Pinterest by BestWebSoft Cross-Site Scripting (1.0.4) CVE-2017-2171  CWE-79  High
WordPress Plugin PixelYourSite-Facebook Pixel (Events, WooCommerce & Easy Digital Downloads) Cross-Site Scripting (5.2.1) CVE-2018-0578  CWE-79  High
WordPress Plugin Placemarks Cross-Site Scripting (2.0.0) CWE-79  High
WordPress Plugin Platinum SEO Pack Cross-Site Scripting (1.3.7) CVE-2013-5918  CWE-79  High
WordPress Plugin Playbuzz Cross-Site Scripting (0.8.1) CWE-79  High
WordPress Plugin Plotly Cross-Site Scripting (1.0.2) CVE-2015-5484   CWE-79  High
WordPress Plugin Plug-N-Edit Full Drag & Drop HTML Visual Editor with Web Page Builder WYSIWYG Cross-Site Scripting (5.2.0) CWE-79  High
WordPress Plugin Plugin Central Multiple Cross-Site Scripting Vulnerabilities (2.5) CWE-79  High
WordPress Plugin Podcast Channels Cross-Site Scripting (0.20) CVE-2014-4544   CWE-79  High
WordPress Plugin Podlove Podcast Publisher Multiple Cross-Site Scripting Vulnerabilities (2.1.0) CWE-79  High
WordPress Plugin podPress Cross-Site Scripting (8.8.10.13) CVE-2013-2714   CWE-79  High
WordPress Plugin Polldaddy Polls & Ratings Cross-Site Scripting (2.0.24) CVE-2014-4856  CWE-79  High
WordPress Plugin Polldaddy Polls & Ratings Cross-Site Scripting (2.0.31) CWE-79  High
WordPress Plugin Polylang Cross-Site Scripting (1.5.1) CVE-2014-4855  CWE-79  High
WordPress Plugin Pondol Carousel Cross-Site Scripting (1.0) CVE-2016-1000145  CWE-79  High
WordPress Plugin Pondol Form to Mail Cross-Site Scripting (1.1) CVE-2016-1000146  CWE-79  High
WordPress Plugin pootle button Cross-Site Scripting (1.1.1) CVE-2017-15811  CWE-79  High
WordPress Plugin PopCash.Net Code Integration Tool Cross-Site Scripting (1.0) CVE-2017-15810  CWE-79  High
WordPress Plugin Popular Posts by BestWebSoft Cross-Site Scripting (1.0.4) CVE-2017-2171  CWE-79  High
WordPress Plugin Popup Maker-Best Rated Cross-Site Scripting (1.6.4) CVE-2017-2284  CWE-79  High
WordPress Plugin Portfolio by BestWebSoft Cross-Site Scripting (2.39) CVE-2017-2171  CWE-79  High
WordPress Plugin Portfolio by BestWebSoft Multiple Cross-Site Scripting Vulnerabilities (2.27) CWE-79  High
WordPress Plugin Portfolio Gallery-Photo Gallery Cross-Site Scripting (1.5.7) CWE-79  High
WordPress Plugin Portfolio Gallery-Photo Gallery Cross-Site Scripting (2.1.10) CWE-79  High
WordPress Plugin Portfolio Gallery-Photo Gallery Cross-Site Scripting (2.2.2) CWE-79  High
WordPress Plugin post-views Cross-Site Scripting (2.6.1.1) CWE-79  High
WordPress Plugin Post Connector Cross-Site Scripting (1.0.3) CWE-79  High
WordPress Plugin Post Custom Templates Lite Cross-Site Scripting (1.6) CWE-79  High
WordPress Plugin Post Duplicator Cross-Site Scripting (2.16) CWE-79  High
WordPress Plugin Post Grid, List for WordPress-Content Views Cross-Site Scripting (1.6.1) CWE-79  High
WordPress Plugin Post Grid, List for WordPress-Content Views Cross-Site Scripting (1.9.0) CWE-79  High
WordPress Plugin post highlights Cross-Site Scripting (2.6) CVE-2014-8087  CWE-79  High
WordPress Plugin Postie 'From' Field Cross-Site Scripting (1.4.3) CVE-2012-2580  CWE-79  High
WordPress Plugin Post Lists View Custom Cross-Site Scripting (1.7.1) CWE-79  High
WordPress Plugin Post Logo Cross-Site Scripting (1.1b) CWE-79  High
WordPress Plugin Postman SMTP Mailer/Email Log Cross-Site Scripting (2.0.0) CWE-79  High
WordPress Plugin Postmatic-Post and comment subscriptions that invite you to hit reply Cross-Site Scripting (1.4.5) CWE-79  High
WordPress Plugin Post SMTP Mailer/Email Log Cross-Site Scripting (1.7.2) CWE-79  High
WordPress Plugin Post to CSV by BestWebSoft Cross-Site Scripting (1.3.0) CVE-2017-2171  CWE-79  High
WordPress Plugin Post video players, slideshow albums, photo galleries and music/podcast playlist Cross-Site Scripting (1.136) CWE-79  High
WordPress Plugin Power Charts-Responsive Beautiful Charts & Graphs Cross-Site Scripting (0.1.0) CWE-79  High
WordPress Plugin Powerhouse Museum Collection Image Grid 'tbpv_username' Parameter Cross-Site Scripting (0.9.1.1) CWE-79  High
WordPress Plugin Pressbooks Cross-Site Scripting (2.4.2) CWE-79  High
WordPress Plugin Pressbooks Textbook Cross-Site Scripting (1.2.5) CWE-79  High
WordPress Plugin PressForward Cross-Site Scripting (4.3.0) CVE-2017-12948  CWE-79  High
WordPress Plugin Pretty Link Lite 'pretty-bar.php' Cross-Site Scripting (1.5.2) CWE-79  High
WordPress Plugin Pretty Link Lite 'slug' Parameter Cross-Site Scripting (1.5.5) CVE-2011-5192  CWE-79  High
WordPress Plugin Pretty Link Lite Cross-Site Scripting (1.6.0) CWE-79  High
WordPress Plugin Pretty Link Lite Cross-Site Scripting (1.6.2) CVE-2013-1636  CWE-79  High
WordPress Plugin Pretty Link Lite Cross-Site Scripting (1.6.8) CWE-79  High
WordPress Plugin Pretty Link Lite Multiple Cross-Site Scripting and SQL Injection Vulnerabilities (1.5.2) CWE-79  CWE-89  High
WordPress Plugin Pretty Link Lite Multiple Cross-Site Scripting Vulnerabilities (1.4.56) CWE-79  High
WordPress Plugin Print, PDF, Email by PrintFriendly Multiple Cross-Site Scripting Vulnerabilities (3.3.7) CWE-79  High
WordPress Plugin Processing Embed 'pluginurl' Parameter Cross-Site Scripting (0.5) CVE-2010-4747  CWE-79  High
WordPress Plugin Product Catalog Cross-Site Scripting (4.2.8) CWE-79  High
WordPress Plugin Profile Extra Fields by BestWebSoft Cross-Site Scripting (1.0.7) CVE-2017-2171  CWE-79  High
WordPress Plugin ProfileGrid-User Profiles, Groups and Communities Cross-Site Scripting (2.6.6) CWE-79  High
WordPress Plugin PromoBar by BestWebSoft Cross-Site Scripting (1.1.0) CVE-2017-2171  CWE-79  High
WordPress Plugin PropertyHive Cross-Site Scripting (1.4.14) CVE-2018-6465  CWE-79  High
WordPress Plugin Pro Quoter Multiple Cross-Site Scripting Vulnerabilities (1.0) CVE-2014-4545  CWE-79  High
WordPress Plugin Qards Cross-Site Scripting (1.4.3) CWE-79  High
WordPress Plugin Qiniu Cloudtuchuang Cross-Site Scripting (1.8) CWE-79  High
WordPress Plugin Qiniu Uploader Cross-Site Scripting (0.1) CWE-79  High
WordPress Plugin qTranslate Cross-Site Scripting (2.5.39) CVE-2015-5535   CWE-79  High
WordPress Plugin qTranslate X Cross-Site Scripting (3.4.3) CWE-79  High
WordPress Plugin Question and Answer Forum 'title' Variable Cross-Site Scripting (1.2.4) CWE-79  High
WordPress Plugin Quick Contact Form Cross-Site Scripting (6.0) CWE-79  High
WordPress Plugin Quick Featured Images Cross-Site Scripting (12.3.5) CWE-79  High
WordPress Plugin Quick Paypal Payments Cross-Site Scripting (3.0) CWE-79  High
WordPress Plugin Quick Post Widget Multiple Cross-Site Scripting and Cross-Site Request Forgery Vulnerabilities (1.9.1) CVE-2012-4226  CWE-79  CWE-352  High
WordPress Plugin Quotes and Tips by BestWebSoft Cross-Site Scripting (1.19) CWE-79  High
WordPress Plugin Quotes and Tips by BestWebSoft Cross-Site Scripting (1.32) CVE-2017-2171  CWE-79  High
WordPress Plugin Quotes Collection Cross-Site Scripting (2.0.5) CWE-79  High
WordPress Plugin Random Banner Cross-Site Scripting (1.1.2.1) CVE-2014-4847  CWE-79  High
WordPress Plugin Random image gallery with pretty photo zoom Cross-Site Scripting (7.4) CWE-79  High
WordPress Plugin Rating-Widget:Star Review System Cross-Site Scripting (2.8.8) CWE-79  High
WordPress Plugin Rating-Widget:Star Review System Multiple Cross-Site Scripting Vulnerabilities (1.3.1) CWE-79  High
WordPress Plugin Rating by BestWebSoft Cross-Site Scripting (0.1) CVE-2017-2171  CWE-79  High
WordPress Plugin Raygun4WP Cross-Site Scripting (1.8.0) CVE-2017-9288  CWE-79  High
WordPress Plugin Raygun4WP Cross-Site Scripting (1.8.2) CWE-79  High
WordPress Plugin Re-attacher by BestWebSoft Cross-Site Scripting (1.0.8) CVE-2017-2171  CWE-79  High
WordPress Plugin Real Estate Website Builder 'ajax_action' Parameter Cross-Site Scripting (0.1.0) CWE-79  High
WordPress Plugin Realia Cross-Site Scripting (0.9.1) CWE-79  High
WordPress Plugin Really Simple Gallery Cross-Site Scripting (1.4) CWE-79  High
WordPress Plugin Realty by BestWebSoft Cross-Site Scripting (1.0.9) CVE-2017-2171  CWE-79  High
WordPress Plugin Recipes Writer Cross-Site Scripting (1.0.4) CVE-2016-1000147  CWE-79  High
WordPress Plugin Recommend to a friend Cross-Site Scripting (2.0.2) CVE-2013-7276  CWE-79  High
WordPress Plugin Redirection 'id' Parameter Cross-Site Scripting (2.2.8) CWE-79  High
WordPress Plugin Redirection HTTP Referrer Header HTML Injection (2.2.9) CVE-2011-4562  CWE-79  High
WordPress Plugin Redirection Multiple Cross-Site Scripting Vulnerabilities (2.2.11) CWE-79  High
WordPress Plugin Redux Framework Multiple Cross-Site Scripting Vulnerabilities (3.6.0.2) CWE-79  High
WordPress Plugin ReFlex Gallery Cross-Site Scripting (3.1.4) CWE-79  High
WordPress Plugin Register Plus 'wp-login.php' Multiple Cross-Site Scripting Vulnerabilities (3.5.1) CVE-2010-4402  CWE-79  High
WordPress Plugin Register Plus Redux 'wp-login.php' Multiple Cross-Site Scripting Vulnerabilities (3.6.1) CWE-79  High
WordPress Plugin Related Posts for WordPress Cross-Site Scripting (1.8.1) CWE-79  High
WordPress Plugin Relevanssi-A Better Search 'Seach Query' Field HTML Injection (2.7.2) CWE-79  High
WordPress Plugin Relevanssi-A Better Search Cross-Site Scripting (3.3.7.1) CVE-2014-9443  CWE-79  High
WordPress Plugin Relevanssi-A Better Search Cross-Site Scripting (3.5.7.1) CWE-79  High
WordPress Plugin Relevanssi-A Better Search Cross-Site Scripting (4.0.4) CVE-2018-9034  CWE-79  High
WordPress Plugin Relevanssi Premium-A Better Search Cross-Site Scripting (1.14.8) CWE-79  High
WordPress Plugin Relevant-Related Posts by BestWebSoft Cross-Site Scripting (1.0.7) CWE-79  High
WordPress Plugin Relevant-Related Posts by BestWebSoft Cross-Site Scripting (1.1.9) CVE-2017-2171  CWE-79  High
WordPress Plugin ResAds Multiple Cross-Site Scripting Vulnerabilities (1.0.1) CVE-2015-7667  CWE-79  High
WordPress Plugin Responsive Category Slider Cross-Site Scripting (1.0) CWE-79  High
WordPress Plugin Responsive Cookie Consent Cross-Site Scripting (1.7) CVE-2018-10309  CWE-79  High
WordPress Plugin Responsive Lightbox by dFactory Cross-Site Scripting (1.4.11) CWE-79  High
WordPress Plugin Responsive Lightbox by dFactory Cross-Site Scripting (1.7.1) CVE-2017-2243  CWE-79  High
WordPress Plugin Responsive Logo Slideshow Cross-Site Scripting (1.0) CVE-2013-1759  CWE-79  High
WordPress Plugin Resume Submissions & Job Postings Cross-Site Scripting (2.5.3) CWE-79  High
WordPress Plugin Rezgo Cross-Site Scripting (1.4.2) CVE-2014-4546  CWE-79  High
WordPress Plugin Rezgo Online Booking Cross-Site Scripting (1.8.6) CWE-79  High
WordPress Plugin Rezgo Online Booking Multiple Cross-Site Scripting Vulnerabilities (1.8) CVE-2014-4547  CWE-79  High
WordPress Plugin Rich Counter Cross-Site Scripting (1.1.5) CWE-79  High
WordPress Plugin Rimons Twitter Widget Cross-Site Scripting (1.2.4) CWE-79  High
WordPress Plugin RocketTheme RokBox 'jwplayer.swf' Cross-Site Scripting (2.11) CWE-79  High
WordPress Plugin Rockhoist Badges Cross-Site Scripting (1.2.2) CVE-2017-6102  CWE-79  High
WordPress Plugin Role Scoper Cross-Site Scripting (1.3.64) CWE-79  High
WordPress Plugin Role Scoper Cross-Site Scripting (1.3.66) CVE-2015-8353  CWE-79  High
WordPress Plugin Roomcloud Multiple Cross-Site Scripting Vulnerabilities (1.1) CVE-2015-3904   CWE-79  High
WordPress Plugin Rotating Testimonial Cross-Site Scripting (1.1) CWE-79  High
WordPress Plugin Royal Gallery Cross-Site Scripting (2.0) CWE-79  High
WordPress Plugin Royal Gallery Cross-Site Scripting (2.3) CWE-79  High
WordPress Plugin Royal PrettyPhoto Cross-Site Scripting (1.2) CWE-79  High
WordPress Plugin RoyalSlider Cross-Site Scripting (3.2.4) CWE-79  High
WordPress Plugin RoyalSlider Cross-Site Scripting (3.2.6) CWE-79  High
WordPress Plugin RSS Feed Reader 'rss_url' Parameter Cross-Site Scripting (0.1) CVE-2011-0740  CWE-79  High
WordPress Plugin RSS Includes Pages Cross-Site Scripting (3.6) CWE-79  High
WordPress Plugin RSS Post Importer Cross-Site Scripting (2.2.1) CWE-79  High
WordPress Plugin RSVP and Event Management Cross-Site Scripting (2.3.7) CWE-79  High
WordPress Plugin RSVPmaker Cross-Site Scripting (2.5.4) CWE-79  High
WordPress Plugin rtMedia for WordPress, BuddyPress and bbPress Cross-Site Scripting (3.7.38) CWE-79  High
WordPress Plugin rtMedia for WordPress, BuddyPress and bbPress Cross-Site Scripting (3.10.1) CWE-79  High
WordPress Plugin Ruven Toolkit Cross-Site Scripting (1.1) CVE-2014-4548  CWE-79  High
WordPress Plugin s2Member Pro 'Coupon Code' Field HTML Injection (111216) CVE-2011-5082  CWE-79  High
WordPress Plugin s2member Secure File Browser Cross-Site Scripting (0.4.16) CWE-79  High
WordPress Plugin S3 Video Cross-Site Scripting (0.97) CWE-79  High
WordPress Plugin S3 Video Cross-Site Scripting (0.982) CVE-2013-7279  CWE-79  High
WordPress Plugin S3 Video Cross-Site Scripting (0.983) CVE-2016-1000148  CWE-79  High
WordPress Plugin Sabre 'tools.php' Cross-Site Scripting (1.2.0) CVE-2012-2916  CWE-79  High
WordPress Plugin SagePay Server Gateway for WooCommerce Cross-Site Scripting (1.0.8) CVE-2018-5316  CWE-79  High
WordPress Plugin Schreikasten 'name' or 'contact' Field Cross-Site Scripting (0.14.13) CWE-79  High
WordPress Plugin Search 10 times faster with Elasticsearch or Apache Solr with lots of data-WPSOLR Cross-Site Scripting (8.6) CVE-2016-1000155  CWE-79  High
WordPress Plugin Search and Share Cross-Site Scripting (0.9.3) CWE-79  High
WordPress Plugin Search Unleashed 'Log' Function HTML Injection (0.2.10) CWE-79  High
WordPress Plugin Secure HTML5 Video Player Cross-Site Scripting (3.3) CWE-79  High
WordPress Plugin Secure HTML5 Video Player Cross-Site Scripting (3.14) CWE-79  High
WordPress Plugin Securimage-WP Cross-Site Scripting (3.2.4) CWE-79  High
WordPress Plugin Sender by BestWebSoft Cross-Site Scripting (1.2.0) CVE-2017-2171  CWE-79  High
WordPress Plugin SendGrid Cross-Site Scripting (1.10.7) CWE-79  High
WordPress Plugin SEO Friendly Images Cross-Site Scripting (3.0.4) CWE-79  High
WordPress Plugin SEO Rank Reporter Cross-Site Scripting (2.2.2) CWE-79  High
WordPress Plugin SEO Redirection Cross-Site Scripting (4.2) CWE-79  High
WordPress Plugin SEO Redirection Multiple Cross-Site Scripting Vulnerabilities (2.8) CWE-79  High
WordPress Plugin SEO Ultimate 'wp-admin/post.php' Cross-Site Scripting (6.9.1) CWE-79  High
WordPress Plugin SEO Ultimate Cross-Site Scripting (7.6.5.2) CWE-79  High
WordPress Plugin Seriously Simple Podcasting Cross-Site Scripting (1.9.4) CWE-79  High
WordPress Plugin Sermon Browser Cross-Site Scripting and SQL Injection Vulnerabilities (0.43) CWE-79  CWE-89  High
WordPress Plugin Sermon Browser Multiple Cross-Site Scripting Vulnerabilities (0.45.15) CWE-79  High
WordPress Plugin Shareaholic-share buttons, related posts, social analytics & more Cross-Site Scripting (7.6.0.9) CVE-2014-9311  CWE-79  High
WordPress Plugin Share and Follow 'admin.php' Cross-Site Scripting (1.80.3) CVE-2012-2917  CWE-79  High
WordPress Plugin Sharebar Cross-Site Scripting and SQL Injection Vulnerabilities (1.2.1) CWE-79  CWE-89  High
WordPress Plugin Share Buttons by AddThis Cross-Site Scripting (4.0.7) CWE-79  High
WordPress Plugin Share Buttons by AddThis Cross-Site Scripting (5.0.12) CWE-79  High
WordPress Plugin Share Buttons by AddThis Cross-Site Scripting (5.0.12) CWE-79  High
WordPress Plugin Share Buttons Cross-Site Scripting (1.3.1) CWE-79  High
WordPress Plugin Share on Diaspora Cross-Site Scripting (0.7.1) CWE-79  High
WordPress Plugin Share This Image Cross-Site Scripting (1.03) CVE-2017-18015  CWE-79  High
WordPress Plugin Shariff for WordPress Cross-Site Scripting (1.0.7) CWE-79  High
WordPress Plugin Shibboleth Cross-Site Scripting (1.7) CVE-2017-14313  CWE-79  High
WordPress Plugin ShiftNav-Responsive Mobile Menu Cross-Site Scripting (1.5.2) CWE-79  High
WordPress Plugin Shortcode Ninja Cross-Site Scripting (1.4) CVE-2014-4550   CWE-79  High
WordPress Plugin Shortcode Redirect 'domain' Parameter Cross-Site Scripting (1.0.01) CVE-2012-5325  CWE-79  High
WordPress Plugin Shortlinks by Pretty Links Multiple Cross-Site Scripting Vulnerabilities (2.1.2) CWE-79  High
WordPress Plugin SI CAPTCHA Anti-Spam Cross-Site Scripting (2.7.5) CVE-2014-5190  CWE-79  High
WordPress Plugin Sidebar Login Cross-Site Scripting (2.3.6) CWE-79  High
WordPress Plugin Simpel Reserveren 3 Cross-Site Scripting (3.5.2) CVE-2016-1000149  CWE-79  High
WordPress Plugin Simple Custom CSS and JS Cross-Site Scripting (3.3) CVE-2017-2285  CWE-79  High
WordPress Plugin Simple Download Monitor Cross-Site Scripting (3.5.3) CVE-2018-5212  CVE-2018-5213  CWE-79  High
WordPress Plugin Simple Fields Cross-Site Scripting (1.4.10) CWE-79  High
WordPress Plugin Simple Flash Video Cross-Site Scripting (1.7) CWE-79  High
WordPress Plugin Simple Instagram Feed Cross-Site Scripting (1.3) CWE-79  High
WordPress Plugin Simple Job Board Cross-Site Scripting (2.4.3) CWE-79  High
WordPress Plugin Simple Membership Cross-Site Scripting (3.2.8) CWE-79  High
WordPress Plugin Simple Membership Cross-Site Scripting (3.5.6) CWE-79  High
WordPress Plugin Simple Page Ordering Cross-Site Scripting (2.2.1) CWE-79  High
WordPress Plugin Simple Photo Gallery Cross-Site Scripting (1.8.0) CWE-79  High
WordPress Plugin Simple Security Multiple Cross-Site Scripting Vulnerabilities (1.1.5) CVE-2014-9570   CWE-79  High
WordPress Plugin Simple Share Buttons Adder Cross-Site Scripting (5.6) CWE-79  High
WordPress Plugin Simple Slider 'New Image' Field Cross-Site Scripting (1.0) CWE-79  High
WordPress Plugin Simple Slideshow Manager Multiple Cross-Site Scripting Vulnerabilities (2.3) CWE-79  High
WordPress Plugin Simple visitor stat Cross-Site Scripting (1.0) CVE-2014-9453  CWE-79  High
WordPress Plugin Simplified Content Cross-Site Scripting (1.0.0) CVE-2016-100015