Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Vulnerability List - Page 28

Clear Filters
Found 1147 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2023-45829 WordPress Newsletter & Bulk Email Sender Plugin <= 2.0.1 is vulnerable to Cross Site Scripting (XSS) HappyBoxNewsletter & Bulk Email Sender – Email Newsletter Plugin for WordPress Medium 6.5 2023-10-24 12:24:08 Deep Dive
CVE-2023-4968 WPLegalPages <= 2.9.2 - Authenticated (Author+) Stored Cross-Site Scripting via Shortcode wplegalpagesPrivacy Policy Generator – WPLP Legal Pages Medium 5.5 2023-10-20 06:35:31 Deep Dive
CVE-2023-3279 NextGEN Gallery < 3.39 - Admin+ Local File Inclusion UnknownWordPress Gallery Plugin 中危 -2023-10-16 19:39:18 Deep Dive
CVE-2023-3155 NextGEN Gallery < 3.39 - Admin+ Arbitrary File Read and Delete UnknownWordPress Gallery Plugin 高危 -2023-10-16 19:39:08 Deep Dive
CVE-2023-3154 NextGEN Gallery < 3.39 - Admin+ PHAR Deserialization UnknownWordPress Gallery Plugin 高危 -2023-10-16 19:39:06 Deep Dive
CVE-2023-4691 Bookly < 22.4 - Admin+ SQLi UnknownWordPress Online Booking and Scheduling Plugin 高危 -2023-10-16 19:39:05 Deep Dive
CVE-2023-44233 WordPress FooGallery Plugin <= 2.2.44 is vulnerable to Cross Site Request Forgery (CSRF) FooPluginsBest WordPress Gallery Plugin – FooGallery Medium 5.4 2023-10-06 15:04:47 Deep Dive
CVE-2023-5125 Contact Form by FormGet <= 5.5.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode pankajagarwalContact Form by FormGet – Best Form Builder Plugin for WordPress Medium 6.4 2023-09-23 04:29:41 Deep Dive
CVE-2023-4278 MasterStudy LMS < 3.0.18 - Unauthenticated Instructor Account Creation UnknownMasterStudy LMS WordPress Plugin 高危 -2023-09-11 19:46:09 Deep Dive
CVE-2023-4636 WordPress File Sharing Plugin <= 2.0.3 - Authenticated (Admin+) Stored Cross-Site Scripting deepakkiteFile Sharing & Download Manager – User Private Files Medium 4.4 2023-09-05 02:25:44 Deep Dive
CVE-2023-4471 Order Tracking Pro <= 3.3.6 - Reflected Cross-Site Scripting rustauriusOrder Tracking – WordPress Status Tracking Plugin Medium 6.1 2023-08-31 05:33:15 Deep Dive
CVE-2023-4500 Order Tracking Pro <= 3.3.6 - Authenticated (Administrator+) Stored Cross-Site Scripting rustauriusOrder Tracking – WordPress Status Tracking Plugin Medium 4.7 2023-08-31 05:33:12 Deep Dive
CVE-2023-1982 Front Editor <= 4.0.4 - Admin+ Stored XSS UnknownGuest posting / Frontend Posting wordpress plugin 中危 -2023-08-30 14:22:03 Deep Dive
CVE-2023-4404 Donation Forms by Charitable <= 1.7.0.12 - Unauthenticated Privilege Escalation smubCharitable – Donation Plugin for WordPress – Fundraising with Recurring Donations & More Critical 9.8 2023-08-23 01:58:03 Deep Dive
CVE-2023-30498 WordPress Vimeotheque Plugin <= 2.2.1 is vulnerable to Cross Site Scripting (XSS) CodeFlavorsVimeotheque: Vimeo WordPress Plugin High 7.1 2023-08-15 12:45:55 Deep Dive
CVE-2023-24413 WordPress wordpress vertical image slider plugin Plugin <= 1.2.16 is vulnerable to Cross Site Scripting (XSS) I Thirteen Web SolutionWordPress vertical image slider plugin High 7.1 2023-08-08 11:28:20 Deep Dive
CVE-2023-36503 WordPress MaxButtons Plugin <= 9.5.3 is vulnerable to Cross Site Scripting (XSS) Max FoundryWordPress Button Plugin MaxButtons Medium 6.5 2023-07-25 13:50:08 Deep Dive
CVE-2020-36761 Top 10 <= 2.9.4 - Cross-Site Request Forgery Bypass ajayWebberZone Top 10 — Popular Posts Medium 4.3 2023-07-12 07:21:51 Deep Dive
CVE-2023-37391 WordPress WordPress Mobile Pack Plugin <= 3.4.1 is vulnerable to Cross Site Request Forgery (CSRF) WPMobilePack.comWordPress Mobile Pack – Mobile Plugin for Progressive Web Apps & Hybrid Mobile Apps Medium 5.4 2023-07-11 09:45:07 Deep Dive
CVE-2022-45823 WordPress Video Contest WordPress Plugin Plugin <= 3.2 is vulnerable to Cross Site Request Forgery (CSRF) GalleryPluginsVideo Contest WordPress Plugin Medium 4.3 2023-07-11 07:50:53 Deep Dive