Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 697 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2023-39923 WordPress The Post Grid Plugin <= 7.2.7 is vulnerable to Cross Site Request Forgery (CSRF) RadiusThemeThe Post Grid Medium 5.4 2023-10-03 11:05:28 Deep Dive
CVE-2023-41731 WordPress wordpress publish post email notification Plugin <= 1.0.2.2 is vulnerable to Cross Site Scripting (XSS) I Thirteen Web SolutionWordPress publish post email notification Medium 5.9 2023-10-02 07:43:42 Deep Dive
CVE-2023-4792 Duplicate Post Page Menu & Custom Post Type <= 2.3.1 - Missing Authorization to Post Duplication inqsysDuplicate Post Page Menu & Custom Post Type Medium 4.3 2023-09-07 01:52:17 Deep Dive
CVE-2023-40554 WordPress Blog2Social Plugin <= 7.2.0 is vulnerable to Cross Site Scripting (XSS) Blog2Social, AdenionBlog2Social: Social Media Auto Post & Scheduler High 7.1 2023-09-06 08:14:40 Deep Dive
CVE-2023-4284 Post Timeline < 2.2.6 - Reflected XSS UnknownPost Timeline 中危 -2023-09-04 11:26:59 Deep Dive
CVE-2023-40206 WordPress WP 404 Auto Redirect to Similar Post Plugin <= 1.0.3 is vulnerable to Cross Site Scripting (XSS) hwk-frWP 404 Auto Redirect to Similar Post Medium 5.9 2023-09-04 10:43:05 Deep Dive
CVE-2023-38482 WordPress Post Affiliate Pro Plugin <= 1.25.0 is vulnerable to Cross Site Scripting (XSS) QualityUnitPost Affiliate Pro Medium 5.9 2023-09-03 11:38:12 Deep Dive
CVE-2023-37997 WordPress Post List With Featured Image Plugin <= 1.2 is vulnerable to Cross Site Scripting (XSS) Dharmesh PatelPost List With Featured Image High 7.1 2023-09-01 11:47:09 Deep Dive
CVE-2023-2229 Quick Post Duplicator <= 2.0 - Authenticated (Contributor+) SQL Injection via post_id rahulsingh74388Quick Post Duplicator High 8.8 2023-08-31 05:33:05 Deep Dive
CVE-2023-32598 WordPress Featured Image Pro Post Grid Plugin <= 5.14 is vulnerable to Cross Site Scripting (XSS) A. R. JonesFeatured Image Pro Post Grid High 7.1 2023-08-25 11:14:42 Deep Dive
CVE-2023-25981 WordPress BuddyForms Plugin <= 2.8.1 is vulnerable to Cross Site Scripting (XSS) ThemeKraftPost Form Medium 6.5 2023-08-25 09:54:39 Deep Dive
CVE-2023-3936 Blog2Social < 7.2.1 - Reflected XSS UnknownBlog2Social: Social Media Auto Post & Scheduler 中危 -2023-08-21 12:29:50 Deep Dive
CVE-2023-23828 WordPress WP Category Post List Widget Plugin <= 2.0.3 is vulnerable to Cross Site Scripting (XSS) SwashataWP Category Post List Widget Medium 6.5 2023-08-10 12:22:16 Deep Dive
CVE-2023-28931 WordPress Post Connector Plugin <= 1.0.9 is vulnerable to Cross Site Scripting (XSS) Never5Post Connector Medium 5.9 2023-08-08 12:35:44 Deep Dive
CVE-2023-25063 WordPress Quick Page/Post Redirect Plugin <= 5.2.3 is vulnerable to Cross Site Scripting (XSS) AnadnetQuick Page/Post Redirect Plugin Medium 5.9 2023-08-08 11:38:43 Deep Dive
CVE-2023-25459 WordPress Post Snippets Plugin <= 4.0.2 is vulnerable to Cross Site Scripting (XSS) PostsnippetsPost Snippets Medium 5.9 2023-08-08 11:03:15 Deep Dive
CVE-2023-4142 WP Ultimate CSV Importer <= 7.9.8 - Authenticated (Author+) Remote Code Execution smackcodersWP Ultimate CSV Importer – Import CSV, XML & Excel into WordPress High 8.0 2023-08-04 02:04:31 Deep Dive
CVE-2023-4141 WP Ultimate CSV Importer <= 7.9.8 - Authenticated (Author+) PHP File Creation to Remote Code Execution smackcodersWP Ultimate CSV Importer – Import CSV, XML & Excel into WordPress High 8.0 2023-08-04 02:04:29 Deep Dive
CVE-2023-4139 WP Ultimate CSV Importer <= 7.9.8 - Sensitive Information Exposure via Directory Listing smackcodersWP Ultimate CSV Importer – Import CSV, XML & Excel into WordPress High 7.5 2023-08-04 02:04:27 Deep Dive
CVE-2023-4140 WP Ultimate CSV Importer <= 7.9.8 - Arbitrary Usermeta Update to Authenticated (Author+) Privilege Escalation smackcodersWP Ultimate CSV Importer – Import CSV, XML & Excel into WordPress Medium 6.6 2023-08-04 02:04:25 Deep Dive