| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-4823 | WP Meta and Date Remover < 2.2.0 - Subscriber+ Stored XSS | Unknown | WP Meta and Date Remover | 中危 | - | 2023-10-31 13:54:43 | Deep Dive |
| CVE-2023-5307 | Photos and Files Contest Gallery – Contact Form < 21.2.8.1 - Unauthenticated Stored XSS via HTTP Headers | Unknown | Photos and Files Contest Gallery | 高危 | - | 2023-10-31 13:54:43 | Deep Dive |
| CVE-2023-5243 | Login screen manager <= 3.5.2 - Admin+ Stored XSS | Unknown | Login Screen Manager | 中危 | - | 2023-10-31 13:54:43 | Deep Dive |
| CVE-2023-5229 | E2Pdf < 1.20.20 - Admin+ Stored Cross-Site Scriping | Unknown | E2Pdf | 中危 | - | 2023-10-31 13:54:42 | Deep Dive |
| CVE-2023-5458 | CITS Support svg, webp Media and TTF,OTF File Upload < 3.0 - Author+ Stored XSS via SVG | Unknown | CITS Support svg, webp Media and TTF,OTF File Upload | 中危 | - | 2023-10-31 13:54:42 | Deep Dive |
| CVE-2023-5360 | Royal Elementor Addons and Templates < 1.3.79 - Unauthenticated Arbitrary File Upload | Unknown | Royal Elementor Addons and Templates | 超危 | - | 2023-10-31 13:54:42 | Deep Dive |
| CVE-2023-5798 | Assistant < 1.4.4 - Editor+ SSRF | Unknown | Assistant | 高危 | - | 2023-10-26 09:08:54 | Deep Dive |
| CVE-2021-4334 | Fancy Product Designer <= 4.6.9 - Insufficient Authorization to Arbitrary Options Update via fpd_update_options | radykal | Fancy Product Designer | High | 8.8 | 2023-10-20 07:29:39 | Deep Dive |
| CVE-2021-4335 | Fancy Product Designer <= 4.6.9 - Insufficient Authorization on Mulitple AJAX Actions | radykal | Fancy Product Designer | Medium | 6.3 | 2023-10-20 06:35:29 | Deep Dive |
| CVE-2023-5089 | Defender Security < 4.1.0 - Protection Bypass (Hidden Login Page) | Unknown | Defender Security | 中危 | - | 2023-10-16 19:39:25 | Deep Dive |
| CVE-2023-4289 | WP Matterport Shortcode < 2.1.8 - Contributor+ Stored XSS via shortcode | Unknown | WP Matterport Shortcode | 中危 | - | 2023-10-16 19:39:25 | Deep Dive |
| CVE-2023-4821 | Drag and Drop Multiple File Upload < 1.1.1 - Unauthenticated Stored Cross-Site Scripting | Unknown | Drag and Drop Multiple File Upload for WooCommerce | 中危 | - | 2023-10-16 19:39:24 | Deep Dive |
| CVE-2023-4933 | WP Job Openings < 3.4.3 - Sensitive Data Exposure via Directory Listing | Unknown | WP Job Openings | 中危 | - | 2023-10-16 19:39:23 | Deep Dive |
| CVE-2023-4820 | PowerPress Podcasting < 11.0.12 - Contributor+ Stored XSS | Unknown | PowerPress Podcasting plugin by Blubrry | 中危 | - | 2023-10-16 19:39:22 | Deep Dive |
| CVE-2023-4861 | File Manager Pro < 1.8.1 - Admin+ Remote Code Execution | Unknown | File Manager Pro | 高危 | - | 2023-10-16 19:39:21 | Deep Dive |
| CVE-2023-4725 | Simple Posts Ticker < 1.1.6 - Admin+ Stored XSS | Unknown | Simple Posts Ticker | 中危 | - | 2023-10-16 19:39:20 | Deep Dive |
| CVE-2023-4800 | DoLogin Security < 3.7.1 - Subscriber+ IP Address leak | Unknown | DoLogin Security | 中危 | - | 2023-10-16 19:39:19 | Deep Dive |
| CVE-2023-5133 | User Activity Log Pro < 2.3.4 - IP Spoofing | Unknown | user-activity-log-pro | 高危 | - | 2023-10-16 19:39:18 | Deep Dive |
| CVE-2023-3279 | NextGEN Gallery < 3.39 - Admin+ Local File Inclusion | Unknown | WordPress Gallery Plugin | 中危 | - | 2023-10-16 19:39:18 | Deep Dive |
| CVE-2023-4811 | WordPress File Upload < 4.23.3 - Author+ Stored Cross-Site Scripting | Unknown | WordPress File Upload | 中危 | - | 2023-10-16 19:39:17 | Deep Dive |