| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-40675 | WordPress Landing Page Builder Plugin <= 1.5.1.2 is vulnerable to Cross Site Scripting (XSS) | PluginOps | Landing Page Builder | Medium | 5.9 | 2023-09-27 07:22:01 | Deep Dive |
| CVE-2023-4792 | Duplicate Post Page Menu & Custom Post Type <= 2.3.1 - Missing Authorization to Post Duplication | inqsys | Duplicate Post Page Menu & Custom Post Type | Medium | 4.3 | 2023-09-07 01:52:17 | Deep Dive |
| CVE-2023-40329 | WordPress Custom Admin Login Page | WPZest Plugin <= 1.2.0 is vulnerable to Cross Site Scripting (XSS) | WPZest | Custom Admin Login Page | WPZest | Medium | 5.9 | 2023-09-06 08:24:14 | Deep Dive |
| CVE-2023-2188 | Colibri Page Builder <= 1.0.227 - Authenticated (Administrator+) SQL Injection via post_id | extendthemes | Colibri Page Builder | High | 7.2 | 2023-08-31 05:33:13 | Deep Dive |
| CVE-2023-25466 | WordPress Who Hit The Page – Hit Counter Plugin <= 1.4.14.3 is vulnerable to Cross Site Scripting (XSS) | Mahlamusa | Who Hit The Page – Hit Counter | High | 7.1 | 2023-08-30 15:23:16 | Deep Dive |
| CVE-2023-32575 | WordPress Product page shipping calculator for WooCommerce Plugin <= 1.3.25 is vulnerable to Cross Site Scripting (XSS) | PI Websolution | Product page shipping calculator for WooCommerce | Medium | 5.9 | 2023-08-25 10:28:39 | Deep Dive |
| CVE-2023-25063 | WordPress Quick Page/Post Redirect Plugin <= 5.2.3 is vulnerable to Cross Site Scripting (XSS) | Anadnet | Quick Page/Post Redirect Plugin | Medium | 5.9 | 2023-08-08 11:38:43 | Deep Dive |
| CVE-2023-3743 | SQL injection vulnerability in LeoTheme's Ap Page Builder | LeoTheme | Ap Page Builder | High | 7.5 | 2023-07-18 11:56:06 | Deep Dive |
| CVE-2020-36752 | Coming Soon & Maintenance Mode Page <= 1.57 - Cross-Site Request Forgery Bypass | hookandhook | Coming Soon & Maintenance Mode Page & Under Construction | Medium | 4.3 | 2023-07-12 04:38:50 | Deep Dive |
| CVE-2023-22694 | WordPress BigContact Plugin <= 1.5.8 is vulnerable to Cross Site Request Forgery (CSRF) | Arian Khosravi, Norik Davtian | BigContact Contact Page | Medium | 4.3 | 2023-07-10 12:34:43 | Deep Dive |
| CVE-2023-24395 | WordPress Contact Form 7 Redirect & Thank You Page Plugin <= 1.0.3 is vulnerable to Cross Site Request Forgery (CSRF) | Scott Paterson | Contact Form 7 Redirect & Thank You Page | Medium | 5.4 | 2023-07-10 10:40:44 | Deep Dive |
| CVE-2015-10119 | View All Posts Page Plugin view-all-posts-pages.php action_admin_notices_activation cross site scripting | - | View All Posts Page Plugin | Low | 3.5 | 2023-07-10 09:31:03 | Deep Dive |
| CVE-2020-36739 | Feed Them Social – Page, Post, Video, and Photo Galleries <= 2.8.6 - Cross-Site Request Forgery Bypass | slickremix | Feed Them Social – Social Media Feeds, Video, and Photo Galleries | Medium | 4.3 | 2023-07-01 03:30:13 | Deep Dive |
| CVE-2023-31213 | WordPress WPBakery Page Builder Plugin < 6.13.0 is vulnerable to Cross Site Scripting (XSS) | WPBakery | WPBakery Page Builder | Medium | 6.5 | 2023-06-22 10:05:59 | Deep Dive |
| CVE-2023-0368 | Responsive Tabs For WPBakery Page Builder <= 1.1 - Contributor+ Stored XSS | Unknown | Responsive Tabs For WPBakery Page Builder (formerly Visual Composer) | 中危 | - | 2023-06-19 10:52:48 | Deep Dive |
| CVE-2023-2897 | Brizy Page Builder <= 2.4.18 - IP Address Spoofing to Protection Mechanism Bypass | themefusecom | Brizy – Page Builder | Low | 3.7 | 2023-06-09 06:48:49 | Deep Dive |
| CVE-2023-2083 | Essential Blocks <= 4.0.6 - Missing Authorization via save | wpdevteam | Gutenberg Essential Blocks – Page Builder for Gutenberg Blocks & Patterns | Medium | 4.3 | 2023-06-09 05:33:39 | Deep Dive |
| CVE-2023-2087 | Essential Blocks <= 4.0.6 - Cross-Site Request Forgery via save | wpdevteam | Gutenberg Essential Blocks – Page Builder for Gutenberg Blocks & Patterns | Medium | 4.3 | 2023-06-09 05:33:35 | Deep Dive |
| CVE-2023-2085 | Essential Blocks <= 4.0.6 - Missing Authorization via templates | wpdevteam | Gutenberg Essential Blocks – Page Builder for Gutenberg Blocks & Patterns | Medium | 4.3 | 2023-06-09 05:33:27 | Deep Dive |
| CVE-2023-2086 | Essential Blocks <= 4.0.6 - Missing Authorization via template_count | wpdevteam | Gutenberg Essential Blocks – Page Builder for Gutenberg Blocks & Patterns | Medium | 4.3 | 2023-06-09 05:33:25 | Deep Dive |