| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-47506 | WordPress Master Slider Pro Plugin <= 3.6.5 is vulnerable to SQL Injection | Master slider | Master Slider Pro | High | 7.6 | 2023-12-18 23:00:46 | Deep Dive |
| CVE-2023-5882 | WP All Export (Free < 1.4.1, Pro < 1.8.6) - Remote Code Execution via CSRF | Unknown | Export any WordPress data to XML/CSV | - | - | 2023-12-18 20:08:05 | Deep Dive |
| CVE-2023-4724 | WP All Export (Free < 1.4.0, Pro < 1.8.6) - Admin+ RCE | Unknown | Export any WordPress data to XML/CSV | - | - | 2023-12-18 20:08:04 | Deep Dive |
| CVE-2023-5886 | WP All Export (Free < 1.4.1, Pro < 1.8.6) - Author+ PHAR Deserialization via CSRF | Unknown | Export any WordPress data to XML/CSV | - | - | 2023-12-18 20:07:58 | Deep Dive |
| CVE-2023-5005 | Autocomplete Location field Contact Form 7 < 3.0 - Admin+ Store Cross-Site Scripting | Unknown | Autocomplete Location field Contact Form 7 | - | - | 2023-12-18 20:07:55 | Deep Dive |
| CVE-2023-49175 | WordPress KP Fastest Tawk.to Chat Plugin <= 1.1.1 is vulnerable to Cross Site Scripting (XSS) | Kreativo Pro | KP Fastest Tawk.to Chat | Medium | 5.9 | 2023-12-15 14:17:52 | Deep Dive |
| CVE-2023-4694 | HP OfficeJet Pro 安全漏洞 | HP Inc. | HP OfficeJet Pro Printers | - | - | 2023-12-14 18:10:15 | Deep Dive |
| CVE-2023-49739 | WordPress PowerPack Pro for Elementor plugin <= 2.9.23 - Reflected Cross Site Scripting (XSS) vulnerability | IdeaBox Creations | PowerPack Pro for Elementor | High | 7.1 | 2023-12-14 14:43:10 | Deep Dive |
| CVE-2023-5761 | WordPress Plugin Burst Statistics 安全漏洞 | rogierlankhorst | Burst Statistics – Privacy-Friendly Analytics for WordPress | Critical | 9.8 | 2023-12-07 02:00:05 | Deep Dive |
| CVE-2023-37868 | WordPress Premium Addons PRO Plugin <= 2.9.0 is vulnerable to Sensitive Data Exposure | Leap13 | Premium Addons PRO | Medium | 6.5 | 2023-11-30 15:17:50 | Deep Dive |
| CVE-2023-36682 | WordPress Schema Pro Plugin <= 2.7.7 is vulnerable to Cross Site Request Forgery (CSRF) | Brainstorm Force US LLC | Schema Pro | High | 7.1 | 2023-11-30 13:47:23 | Deep Dive |
| CVE-2023-36685 | WordPress CartFlows Pro Plugin <= 1.11.12 is vulnerable to Cross Site Request Forgery (CSRF) | Brainstorm Force US LLC | CartFlows Pro | Medium | 4.3 | 2023-11-30 13:41:05 | Deep Dive |
| CVE-2023-32291 | WordPress MonsterInsights Pro Plugin <= 8.14.1 is vulnerable to Cross Site Scripting (XSS) | MonsterInsights | MonsterInsights Pro | Medium | 6.5 | 2023-11-30 12:29:50 | Deep Dive |
| CVE-2023-32245 | WordPress Essential Addons for Elementor Pro Plugin <= 5.4.8 is vulnerable to Server Side Request Forgery (SSRF) | WPDeveloper | Essential Addons for Elementor Pro | Medium | 5.4 | 2023-11-18 22:32:56 | Deep Dive |
| CVE-2023-47666 | WordPress Code Snippets Plugin <= 3.5.0 is vulnerable to Cross Site Request Forgery (CSRF) | Code Snippets Pro | Code Snippets | Medium | 4.3 | 2023-11-18 21:01:19 | Deep Dive |
| CVE-2023-6187 | Paid Memberships Pro <= 2.12.3 - Authenticated (Subscriber+) Arbitrary File Upload | strangerstudios | Paid Memberships Pro – Content Restriction, User Registration, & Paid Subscriptions | High | 7.5 | 2023-11-18 01:54:35 | Deep Dive |
| CVE-2023-47508 | WordPress Master Slider Pro Plugin <= 3.6.5 is vulnerable to Cross Site Scripting (XSS) | Averta | Master Slider Pro | High | 7.1 | 2023-11-16 18:26:56 | Deep Dive |
| CVE-2023-47056 | ZDI-CAN-21763: Adobe Premiere Pro MP4 File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability | Adobe | Premiere Pro | High | 7.8 | 2023-11-16 16:16:30 | Deep Dive |
| CVE-2023-47060 | ZDI-CAN-21792: Adobe Premiere Pro MP4 File Uninitialized Variable Information Disclosure Vulnerability | Adobe | Premiere Pro | Low | 3.3 | 2023-11-16 16:16:30 | Deep Dive |
| CVE-2023-47058 | ZDI-CAN-21766: Adobe Premiere Pro MP4 File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability | Adobe | Premiere Pro | High | 7.8 | 2023-11-16 16:16:29 | Deep Dive |