Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 697 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2023-0420 Custom Post Type and Taxonomy GUI Manager <= 1.1 - Stored XSS via CSRF UnknownCustom Post Type and Taxonomy GUI Manager 中危 -2023-04-24 18:30:49 Deep Dive
CVE-2023-1371 W4 Post List < 2.4.6 - Subscriber+ Password Protected Post Content Disclosure UnknownW4 Post List 中危 -2023-04-17 12:17:48 Deep Dive
CVE-2023-1373 W4 Post List < 2.4.6 - Reflected XSS UnknownW4 Post List 中危 -2023-04-17 12:17:44 Deep Dive
CVE-2023-0374 W4 Post List < 2.4.6 - Contributor+ Stored XSS UnknownW4 Post List 中危 -2023-04-17 12:17:38 Deep Dive
CVE-2023-29171 WordPress Magic Post Thumbnail Plugin <= 4.1.10 is vulnerable to Cross Site Scripting (XSS) Magic Post ThumbnailMagic Post Thumbnail High 7.1 2023-04-07 14:21:24 Deep Dive
CVE-2022-38971 WordPress BuddyForms Plugin <= 2.7.5 is vulnerable to Cross Site Scripting (XSS) ThemeKraftPost Form – Registration Form – Profile Form for User Profiles and Content Forms for User Submissions Medium 4.7 2023-03-16 08:49:16 Deep Dive
CVE-2023-0477 Auto Featured Image < 3.9.16 - Author+ Arbitrary File Upload UnknownAuto Featured Image (Auto Post Thumbnail) 高危 -2023-03-13 16:03:28 Deep Dive
CVE-2021-4332 The Plus Addons for Elementor PRO <= 4.1.9 & The Plus Addons for Elementor <= 2.0.6 - Authenticated (Contributor+) Arbitrary File Read posimyththemesThe Plus Addons for Elementor – Addons for Elementor, Page Templates, Widgets, Mega Menu, WooCommerce Medium 6.5 2023-03-07 14:16:47 Deep Dive
CVE-2021-4331 The Plus Addons for Elementor PRO <= 4.1.9 & The Plus Addons for Elementor <= 2.0.6 - Authenticated (Contributor+) Privilege Escalation posimyththemesThe Plus Addons for Elementor – Addons for Elementor, Page Templates, Widgets, Mega Menu, WooCommerce High 8.8 2023-03-07 14:07:35 Deep Dive
CVE-2022-4386 Intuitive Custom Post Order < 3.1.4 - Arbitrary Menu Order Update via CSRF UnknownIntuitive Custom Post Order 中危 -2023-02-21 08:51:03 Deep Dive
CVE-2022-4761 Post Views Count <= 3.0.2 - Contributor+ Stored XSS in Shortcode UnknownPost Views Count (Support caching plugins!) 中危 -2023-02-21 08:50:45 Deep Dive
CVE-2022-4385 Intuitive Custom Post Order < 3.1.4 - Subscriber+ Arbitrary Menu Order Update UnknownIntuitive Custom Post Order 中危 -2023-02-21 08:50:41 Deep Dive
CVE-2016-15027 meta4creations Post Duplicator Plugin notices.php mtphr_post_duplicator_notice cross site scripting meta4creationsPost Duplicator Plugin Low 3.5 2023-02-20 17:00:05 Deep Dive
CVE-2023-0362 Themify Portfolio Post < 1.2.2 - Contributor+ Stored XSS UnknownThemify Portfolio Post 中危 -2023-02-13 14:32:02 Deep Dive
CVE-2022-4747 Post Category Image With Grid and Slider < 1.4.8 - Contributor+ Stored XSS via Shortcode UnknownPost Category Image With Grid and Slider 中危 -2023-02-06 19:59:31 Deep Dive
CVE-2022-4765 Portfolio for Elementor, Image Gallery & Post Grid | PowerFolio < 2.3.1 - Contributor+ Stored XSS via Shortcode UnknownPortfolio for Elementor, Image Gallery & Post Grid | PowerFolio 中危 -2023-01-30 20:31:51 Deep Dive
CVE-2023-0097 Post Grid, Post Carousel, & List Category Posts < 2.4.19 - Contributor+ Stored XSS UnknownPost Grid, Post Carousel, & List Category Posts 中危 -2023-01-30 20:31:48 Deep Dive
CVE-2022-4673 Rate my Post – WP Rating System < 3.3.9 - Contributor+ Stored XSS via Shortcode UnknownRate my Post 中危 -2023-01-23 14:31:31 Deep Dive
CVE-2022-4060 User Post Gallery <= 2.19 - Unauthenticated RCE UnknownUser Post Gallery 超危 -2023-01-16 15:38:05 Deep Dive
CVE-2022-4477 Smash Balloon Social Post Feed < 4.1.6 - Contributor+ Stored XSS UnknownSmash Balloon Social Post Feed 中危 -2023-01-16 15:38:01 Deep Dive