Vulnerability List

CVE ID	Title	Vendor	Product	Severity	CVSS Score	Published At	AI Analysis
CVE-2022-29424	WordPress Image Hover Effects Ultimate plugin <= 9.7.1 - Authenticated Reflected Cross-Site Scripting (XSS) vulnerability	Biplob Adhikari	Image Hover Effects Ultimate (WordPress plugin)	Medium	4.8	2022-05-20 19:57:07	Deep Dive
CVE-2022-29449	WordPress Opal Hotel Room Booking plugin <= 1.2.7 - Stored Cross-Site Scripting (XSS) vulnerability	wpopal	Opal Hotel Room Booking (WordPress plugin)	Medium	4.1	2022-05-19 15:15:18	Deep Dive
CVE-2022-25617	WordPress Code Snippets plugin <= 2.14.3 - Reflected Cross-Site Scripting (XSS) vulnerability	Code Snippets Pro	Code Snippets (WordPress plugin)	Medium	4.7	2022-05-18 17:21:50	Deep Dive
CVE-2022-29445	WordPress Popup Box plugin <= 2.1.2 - Authenticated Local File Inclusion (LFI) vulnerability	Wow-Company	Popup Box (WordPress plugin)	Medium	6.8	2022-05-18 16:39:54	Deep Dive
CVE-2022-29435	WordPress Code Snippets Extended plugin <= 1.4.7 - Cross-Site Request Forgery (CSRF) vulnerability	Alexander Stokmann	Code Snippets Extended (WordPress plugin)	Medium	5.4	2022-05-17 19:54:24	Deep Dive
CVE-2022-29436	WordPress Code Snippets Extended plugin <= 1.4.7 - Cross-Site Request Forgery (CSRF) vulnerability leading to Persistent Cross-Site Scripting (XSS)	Alexander Stokmann	Code Snippets Extended (WordPress plugin)	Medium	4.7	2022-05-17 19:51:57	Deep Dive
CVE-2022-29429	WordPress Code Snippets Extended plugin <= 1.4.7 - Cross-Site Request Forgery (CSRF) leading to Remote Code Execution (RCE) vulnerability	Alexander Stokmann	Code Snippets Extended (WordPress plugin)	High	8.8	2022-05-17 18:22:16	Deep Dive
CVE-2022-29433	https://patchstack.com/database/vulnerability/nd-donations/wordpress-donations-plugin-1-8-authenticated-stored-cross-site-scripting-xss-vulnerability	Nicdark	Donations (WordPress plugin)	Medium	4.1	2022-05-13 15:52:42	Deep Dive
CVE-2022-29423	WordPress Countdown & Clock plugin <= 2.3.2 - Pro Features Lock Bypass vulnerability	Adam Skaat	Countdown & Clock (WordPress plugin)	Low	3.8	2022-05-06 17:40:42	Deep Dive
CVE-2022-29422	WordPress Countdown & Clock plugin <= 2.3.2 - Multiple Authenticated Persistent Cross-Site Scripting (XSS) vulnerabilities	Adam Skaat	Countdown & Clock (WordPress plugin)	Medium	4.8	2022-05-06 17:37:28	Deep Dive
CVE-2022-29421	WordPress Countdown & Clock plugin <= 2.3.2 - Reflected Cross-Site Scripting (XSS) vulnerability	Adam Skaat	Countdown & Clock (WordPress plugin)	Medium	4.7	2022-05-06 16:58:43	Deep Dive
CVE-2022-29420	WordPress Countdown & Clock plugin <= 2.3.2 - Auth. Stored Cross-Site Scripting (XSS) vulnerability	Adam Skaat	Countdown & Clock (WordPress plugin)	Medium	5.9	2022-05-06 16:53:31	Deep Dive
CVE-2021-36912	Andrea Pernici News Sitemap for Google plugin <= 1.0.16 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability	Andrea Pernici	Andrea Pernici News Sitemap for Google (WordPress plugin)	Medium	5.4	2022-05-06 16:48:38	Deep Dive
CVE-2021-36844	WordPress WP Subscribe plugin <= 1.2.12 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability	MyThemeShop	WP Subscribe (WordPress plugin)	Low	3.4	2022-05-02 19:08:21	Deep Dive
CVE-2022-29444	WordPress Breeze plugin <= 2.0.2 - Plugin Settings Change leading to Cross-Site Scripting (XSS) vulnerability	Cloudways	Breeze (WordPress plugin)	Medium	6.5	2022-05-02 19:03:33	Deep Dive
CVE-2022-29451	WordPress Rara One Click Demo Import plugin <= 1.2.9 - Cross-Site Request Forgery (CSRF) leads to Arbitrary File Upload vulnerability	Raratheme	Rara One Click Demo Import (WordPress plugin)	High	8.8	2022-04-29 16:58:14	Deep Dive
CVE-2022-29414	WordPress Subscribe To Comments Reloaded plugin <= 211130 - Multiple Cross-Site Request Forgery (CSRF) vulnerabilities	WPKube	Subscribe To Comments Reloaded (WordPress plugin)	Medium	5.4	2022-04-29 16:41:12	Deep Dive
CVE-2022-29411	WordPress Hermit 音乐播放器 plugin <= 3.1.6 - Unauthenticated SQL Injection SQLi) vulnerability	Mufeng	Hermit 音乐播放器 (WordPress plugin)	High	8.3	2022-04-28 16:20:29	Deep Dive
CVE-2022-29412	WordPress Hermit 音乐播放器 plugin <= 3.1.6 - Multiple Cross-Site Request Forgery (CSRF) vulnerabilities	Mufeng	Hermit 音乐播放器 (WordPress plugin)	Medium	5.4	2022-04-28 16:18:31	Deep Dive
CVE-2022-29413	WordPress Hermit 音乐播放器 plugin <= 3.1.6 - Cross-Site Request Forgery (CSRF) leading to Stored Cross-Site Scripting (XSS) vulnerability	Mufeng	Hermit 音乐播放器 (WordPress plugin)	Medium	4.7	2022-04-28 16:16:21	Deep Dive

Goal Reached Thanks to every supporter — we hit 100%!

Vulnerability List