Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 1149 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2022-25612 WordPress Simple Event Planner plugin <= 1.5.4 - Multiple Authenticated Persistent Cross-Site Scripting (XSS) vulnerabilities PressTigersSimple Event Planner (WordPress plugin) Medium 4.1 2022-03-25 18:02:36 Deep Dive
CVE-2022-25611 WordPress Simple Event Planner plugin <= 1.5.4 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability PressTigersSimple Event Planner (WordPress plugin) Medium 4.1 2022-03-25 18:02:35 Deep Dive
CVE-2022-25610 WordPress Simple Ajax Chat plugin <= 20220115 - Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability Jeff StarrSimple Ajax Chat (WordPress plugin) Low 3.4 2022-03-25 18:02:34 Deep Dive
CVE-2022-25609 WordPress Yoo Slider plugin <= 2.0.0 - Stored Cross-Site Scripting (XSS) vulnerability YoosliderYoo Slider – Image Slider & Video Slider (WordPress plugin) Medium 5.4 2022-03-23 19:46:23 Deep Dive
CVE-2022-25608 WordPress Yoo Slider – Image Slider & Video Slider plugin <= 2.0.0 - Cross-Site Request Forgery (CSRF) vulnerability leading to slider Duplicate/Delete YoosliderYoo Slider – Image Slider & Video Slider (WordPress plugin) Medium 5.4 2022-03-23 19:46:22 Deep Dive
CVE-2022-0628 AP Mega Menu < 3.0.8 - Reflected Cross-Site Scripting UnknownMega Menu Plugin for WordPress – AP Mega Menu 中危 -2022-03-21 18:55:52 Deep Dive
CVE-2022-25607 WordPress FV Flowplayer Video Player plugin <= 7.5.15.727 - SQL Injection (SQLi) vulnerability FolioVisionFV Flowplayer Video Player (WordPress plugin) Medium 6.6 2022-03-18 18:00:28 Deep Dive
CVE-2022-25602 WordPress Responsive Menu plugin <= 4.1.7 - Nonce token leak leading to arbitrary file upload, theme deletion, plugin settings change vulnerability ExpressTechResponsive Menu (WordPress plugin) High 8.3 2022-03-18 18:00:27 Deep Dive
CVE-2022-25604 WordPress Price Table plugin <= 0.2.2 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability Greg PridayPrice Table (WordPress plugin) Medium 4.1 2022-03-18 18:00:26 Deep Dive
CVE-2021-23209 WordPress AMP for WP – Accelerated Mobile Pages plugin <= 1.0.77.32 - Multiple Auth. Stored Cross-Site Scripting (XSS) vulnerabilities Ahmed Kaludi, Mohammed KaludiAMP for WP – Accelerated Mobile Pages (WordPress plugin) Medium 4.8 2022-03-18 18:00:25 Deep Dive
CVE-2021-23150 WordPress AMP for WP – Accelerated Mobile Pages plugin <= 1.0.77.31 - Auth. Stored Cross-Site Scripting (XSS) vulnerability Ahmed Kaludi, Mohammed KaludiAMP for WP – Accelerated Mobile Pages (WordPress plugin) Medium 4.8 2022-03-18 18:00:24 Deep Dive
CVE-2021-44760 WordPress WP-DownloadManager plugin <= 1.68.6 - Auth. Reflected Cross-Site Scripting (XSS) vulnerability Lester 'GaMerZ' ChanWP-DownloadManager (WordPress plugin) Medium 4.8 2022-03-18 18:00:24 Deep Dive
CVE-2022-25603 WordPress MaxGalleria plugin <= 6.2.5 - Stored Cross-Site Scripting (XSS) vulnerability Max FoundryMaxGalleria (WordPress plugin) Medium 4.8 2022-03-18 18:00:23 Deep Dive
CVE-2022-25600 WordPress WP Google Map plugin <= 4.2.3 - Cross-Site Request Forgery (CSRF) vulnerability FlippercodeWP Google Map Plugin (WordPress plugin) Medium 5.4 2022-03-11 17:54:09 Deep Dive
CVE-2022-25601 WordPress Contact Form X plugin <= 2.4 - Reflected Cross-Site Scripting (XSS) vulnerability Jeff StarrContact Form X (WordPress plugin) Medium 4.7 2022-03-11 17:54:08 Deep Dive
CVE-2021-33852 WordPress Plugin Post-Duplicator Plugin 跨站脚本漏洞 -WordPress Post Duplicator Plugin 中危 -2022-03-09 16:54:43 Deep Dive
CVE-2021-33851 WordPress Plugin 跨站脚本漏洞 -WordPress Customize Login Image Plugin 中危 -2022-03-09 16:54:38 Deep Dive
CVE-2022-0441 MasterStudy LMS < 2.7.6 - Unauthenticated Admin Account Creation UnknownMasterStudy LMS – WordPress LMS Plugin 超危 -2022-03-07 08:16:43 Deep Dive
CVE-2021-25098 Easy Pricing Tables < 3.1.3 - Arbitrary Post Removal via CSRF UnknownPricing Tables WordPress Plugin – Easy Pricing Tables 中危 -2022-03-07 08:16:20 Deep Dive
CVE-2022-23912 AP Custom Testimonial < 1.4.8 - Reflected Cross-Site Scripting UnknownTestimonial WordPress Plugin – AP Custom Testimonial 中危 -2022-02-28 09:06:59 Deep Dive