| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-6225 | WP Shortcodes Plugin — Shortcodes Ultimate <= 5.13.3 - Authenticated (Contributor+) Stored Cross-Site Scripting | gn_themes | WP Shortcodes Plugin — Shortcodes Ultimate | Medium | 6.4 | 2023-11-28 04:31:52 | Deep Dive |
| CVE-2023-6226 | WP Shortcodes Plugin — Shortcodes Ultimate <= 5.13.3 - Insecure Direct Object Reference to Information Disclosure | gn_themes | WP Shortcodes Plugin — Shortcodes Ultimate | Medium | 4.3 | 2023-11-28 04:31:51 | Deep Dive |
| CVE-2023-47815 | WordPress BP Profile Shortcodes Extra Plugin <= 2.5.2 is vulnerable to Cross Site Scripting (XSS) | Venutius | BP Profile Shortcodes Extra | Medium | 6.5 | 2023-11-22 22:48:10 | Deep Dive |
| CVE-2023-5704 | CPO Shortcodes <= 1.5.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode | wpchill | CPO Shortcodes | Medium | 6.4 | 2023-11-22 15:33:39 | Deep Dive |
| CVE-2023-5338 | Theme Blvd Shortcodes <= 1.6.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode | themeblvd | Theme Blvd Shortcodes | Medium | 6.4 | 2023-11-22 15:33:31 | Deep Dive |
| CVE-2023-47695 | WordPress Shortcodes Finder Plugin <= 1.5.3 is vulnerable to Cross Site Scripting (XSS) | Scribit | Shortcodes Finder | High | 7.1 | 2023-11-13 22:59:51 | Deep Dive |
| CVE-2023-23800 | WordPress Shortcodes Ultimate Plugin <= 5.12.6 is vulnerable to Server Side Request Forgery (SSRF) | Vova Anokhin | WP Shortcodes Plugin — Shortcodes Ultimate | High | 7.1 | 2023-11-13 02:58:00 | Deep Dive |
| CVE-2023-47231 | WordPress ShortCodes UI Plugin <= 1.9.8 is vulnerable to Cross Site Scripting (XSS) | Bainternet | ShortCodes UI | 中危 | - | 2023-11-08 18:54:39 | Deep Dive |
| CVE-2023-5237 | Memberlite Shortcodes < 1.3.9 - Contributor+ Stored XSS via Shortcode | Unknown | Memberlite Shortcodes | 中危 | - | 2023-10-31 13:54:45 | Deep Dive |
| CVE-2023-5566 | Simple Shortcodes <= 1.0.20 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode | simplethemes | Simple Shortcodes | Medium | 6.4 | 2023-10-30 13:48:59 | Deep Dive |
| CVE-2023-46072 | WordPress Add Shortcodes Actions And Filters Plugin <= 2.0.9 is vulnerable to Cross Site Scripting (XSS) | Michael Simpson | Add Shortcodes Actions And Filters | High | 7.1 | 2023-10-26 11:39:32 | Deep Dive |
| CVE-2023-4783 | Magee Shortcodes <= 2.1.1 - Contributor+ Stored XSS via shortcode | Unknown | Magee Shortcodes | 中危 | - | 2023-10-16 19:39:04 | Deep Dive |
| CVE-2023-44994 | WordPress ShortCodes UI Plugin <= 1.9.8 is vulnerable to Cross Site Request Forgery (CSRF) | Bainternet | ShortCodes UI | Medium | 4.3 | 2023-10-10 14:31:07 | Deep Dive |
| CVE-2023-44475 | WordPress Add Shortcodes Actions And Filters Plugin <= 2.0.9 is vulnerable to Cross Site Request Forgery (CSRF) | Michael Simpson | Add Shortcodes Actions And Filters | Medium | 5.4 | 2023-10-10 14:25:20 | Deep Dive |
| CVE-2023-41728 | WordPress Rescue Shortcodes Plugin <= 2.5 is vulnerable to Cross Site Scripting (XSS) | Rescue Themes | Rescue Shortcodes | Medium | 6.5 | 2023-10-02 07:35:24 | Deep Dive |
| CVE-2023-1273 | ND Shortcodes < 7.0 - Subscriber+ LFI | Unknown | ND Shortcodes | 高危 | - | 2023-07-04 07:23:31 | Deep Dive |
| CVE-2022-4623 | ND Shortcodes < 7.0 - Contributor+ Stored XSS via Shortcodes | Unknown | ND Shortcodes | 中危 | - | 2023-07-04 07:23:28 | Deep Dive |
| CVE-2022-4950 | Cool Plugins (Various Versions) - Arbitrary Plugin Installation and Activation | narinder-singh | The Events Calendar Events Notification Bar Addon | High | 8.8 | 2023-06-07 01:51:53 | Deep Dive |
| CVE-2023-23703 | WordPress Arconix Shortcodes Plugin <= 2.1.7 is vulnerable to Cross Site Scripting (XSS) | Tyche Softwares | Arconix Shortcodes | Medium | 6.5 | 2023-05-16 09:50:45 | Deep Dive |
| CVE-2023-25798 | WordPress Olevmedia Shortcodes Plugin <= 1.1.9 is vulnerable to Cross Site Scripting (XSS) | Olevmedia | Olevmedia Shortcodes | Medium | 6.5 | 2023-05-03 11:04:18 | Deep Dive |