Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 587 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2023-23790 WordPress Pods Plugin <= 2.9.10.2 is vulnerable to Cross Site Request Forgery (CSRF) Pods Framework TeamPods – Custom Content Types and Fields High 7.1 2023-05-03 09:58:30 Deep Dive
CVE-2023-25485 WordPress JSON Content Importer Plugin <= 1.3.15 is vulnerable to Cross Site Scripting (XSS) Bernhard KuxJSON Content Importer Medium 5.9 2023-04-25 18:33:48 Deep Dive
CVE-2023-25451 WordPress CPO Content Types Plugin <= 1.1.0 is vulnerable to Cross Site Scripting (XSS) WPChillCPO Content Types Medium 5.9 2023-04-23 10:41:55 Deep Dive
CVE-2022-44632 WordPress Content Repeater – Custom Posts Simplified Plugin <= 1.1.13 is vulnerable to Cross Site Scripting (XSS) Denis BukaContent Repeater – Custom Posts Simplified Medium 4.8 2023-04-18 13:18:50 Deep Dive
CVE-2022-43458 WordPress Advanced Floating Content Plugin <= 1.2.1 is vulnerable to Cross Site Scripting (XSS) Code TidesAdvanced Floating Content Medium 4.1 2023-04-16 08:29:22 Deep Dive
CVE-2015-10101 Google Analytics Top Content Widget Plugin class-tgm-plugin-activation.php cross site scripting -Google Analytics Top Content Widget Plugin Low 3.5 2023-04-15 20:38:47 Deep Dive
CVE-2022-47444 WordPress ProfilePress Plugin <= 4.4.1 is vulnerable to Cross Site Scripting (XSS) ProfilePress Membership TeamPaid Membership Plugin, Ecommerce, Registration Form, Login Form, User Profile & Restrict Content – ProfilePress High 7.1 2023-03-29 12:35:45 Deep Dive
CVE-2023-0340 Custom Content Shortcode <= 4.0.2 - Contributor+ LFI UnknownCustom Content Shortcode 高危 -2023-03-20 15:52:23 Deep Dive
CVE-2023-0273 Custom Content Shortcode <= 4.0.2 - Contributor+ Stored XSS UnknownCustom Content Shortcode 中危 -2023-03-20 15:52:21 Deep Dive
CVE-2022-38971 WordPress BuddyForms Plugin <= 2.7.5 is vulnerable to Cross Site Scripting (XSS) ThemeKraftPost Form – Registration Form – Profile Form for User Profiles and Content Forms for User Submissions Medium 4.7 2023-03-16 08:49:16 Deep Dive
CVE-2022-47163 WordPress WP CSV to Database Plugin <= 2.6 is vulnerable to Cross Site Request Forgery (CSRF) Tips and Tricks HQ, josh401WP CSV to Database – Insert CSV file content into WordPress database Low 3.1 2023-03-14 06:48:02 Deep Dive
CVE-2023-26457 Cross-Site Scripting (XSS) vulnerability in SAP Content Server SAPContent Server Medium 6.1 2023-03-14 04:53:30 Deep Dive
CVE-2023-20857 VMware Workspace ONE Content 访问控制错误漏洞 -VMware Workspace ONE Content 中危 -2023-02-28 00:00:00 Deep Dive
CVE-2023-0067 Timed Content < 2.73 - Contributor+ Stored XSS UnknownTimed Content 中危 -2023-02-21 08:50:41 Deep Dive
CVE-2023-0405 GPT3 AI Content Writer < 1.4.38 - Subscriber+ Arbitrary Post Content Update UnknownGPT AI Power: Content Writer & ChatGPT & Image Generator & WooCommerce Product Writer & AI Training 中危 -2023-02-13 14:32:24 Deep Dive
CVE-2015-10075 Custom-Content-Width custom-content-width.php register_settings cross site scripting -Custom-Content-Width Low 2.6 2023-02-07 11:31:03 Deep Dive
CVE-2022-4715 Structured Content < 1.5.1 - Contributor+ Stored XSS in Shortcode UnknownStructured Content (JSON-LD) #wpsc 中危 -2023-01-23 14:31:56 Deep Dive
CVE-2022-4509 Content Control < 1.1.10 - Contributor+ Stored XSS UnknownContent Control 中危 -2023-01-23 14:31:46 Deep Dive
CVE-2022-4697 ProfilePress <= 4.5.0 - Authenticated (Administrator+) Stored Cross-Site Scripting properfractionPaid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress Medium 5.5 2022-12-23 15:11:46 Deep Dive
CVE-2022-4698 ProfilePress <= 4.5.0 - Authenticated (Administrator+) Stored Cross-Site Scripting via Form Settings properfractionPaid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress Medium 5.5 2022-12-23 15:09:51 Deep Dive