| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-0038 | Survey Maker – Best WordPress Survey Plugin <= 3.1.3 - Unauthenticated Stored Cross-Site Scripting | ays-pro | Survey Maker | High | 7.2 | 2023-01-03 13:58:25 | Deep Dive |
| CVE-2022-4142 | WordPress Filter Gallery Plugin < 0.1.6 - Admin+ Stored XSS | Unknown | WordPress Filter Gallery Plugin | 中危 | - | 2023-01-02 21:49:18 | Deep Dive |
| CVE-2022-2536 | Transposh WordPress Translation <= 1.0.9.6 - Authorization Bypass | oferwald | Transposh WordPress Translation | Medium | 5.3 | 2022-12-15 04:01:46 | Deep Dive |
| CVE-2022-3590 | WP <= 6.1.1 - Unauthenticated Blind SSRF via DNS Rebinding | WordPress | WordPress | 中危 | - | 2022-12-14 08:33:40 | Deep Dive |
| CVE-2022-3879 | Car Dealer < 3.05 - Subscriber+ Arbitrary Plugin Installation | Unknown | Car Dealer (Dealership) and Vehicle sales WordPress Plugin | 中危 | - | 2022-12-12 17:54:53 | Deep Dive |
| CVE-2022-43468 | WordPress plugin Popular Posts 安全漏洞 | Hector Cabrera | WordPress Popular Posts | 高危 | - | 2022-12-07 00:00:00 | Deep Dive |
| CVE-2022-3677 | Advanced Import < 1.3.8 - Arbitrary Plugin Installation & Activation via CSRF | Unknown | Advanced Import : One Click Import for WordPress or Theme Demo Data | 中危 | - | 2022-12-05 16:50:31 | Deep Dive |
| CVE-2022-43497 | WordPress 跨站脚本漏洞 | WordPress.org | WordPress | 中危 | - | 2022-12-05 00:00:00 | Deep Dive |
| CVE-2022-43500 | WordPress 跨站脚本漏洞 | WordPress.org | WordPress | 中危 | - | 2022-12-05 00:00:00 | Deep Dive |
| CVE-2022-43504 | WordPress 授权问题漏洞 | WordPress.org | WordPress | 中危 | - | 2022-12-05 00:00:00 | Deep Dive |
| CVE-2022-45842 | WordPress WP ULike Plugin <= 4.6.4 is vulnerable to Race Condition vulnerability | TechnoWich | WP ULike (WordPress plugin) | Medium | 5.3 | 2022-11-30 12:40:05 | Deep Dive |
| CVE-2022-26366 | WordPress AdRotate Banner Manager Plugin <= 5.9 is vulnerable to Cross Site Request Forgery (CSRF) | Arnan de Gans | AdRotate Banner Manager (WordPress plugin) | Medium | 5.4 | 2022-11-30 12:30:08 | Deep Dive |
| CVE-2022-4036 | Appointment Hour Booking <= 1.3.72 - CAPTCHA Bypass | codepeople | Appointment Hour Booking – Booking Calendar | Medium | 5.3 | 2022-11-29 20:35:00 | Deep Dive |
| CVE-2022-4035 | Appointment Hour Booking <= 1.3.72 - Unauthenticated iFrame Injection via Appointment Form | codepeople | Appointment Hour Booking – Booking Calendar | High | 7.2 | 2022-11-29 20:32:29 | Deep Dive |
| CVE-2022-4034 | Appointment Hour Booking <= 1.3.72 - CSV Injection | codepeople | Appointment Hour Booking – Booking Calendar | Medium | 5.8 | 2022-11-29 20:30:16 | Deep Dive |
| CVE-2022-4033 | Quiz and Survey Master <= 8.0.4 - Improper Input Validation | expresstech | Quiz and Survey Master (QSM) – Easy Quiz and Survey Maker | Medium | 5.3 | 2022-11-29 20:25:27 | Deep Dive |
| CVE-2022-4032 | Quiz and Survey Master <= 8.0.4 - Unauthenticated iFrame Injection via Paragraph and Short Answer | expresstech | Quiz and Survey Master (QSM) – Easy Quiz and Survey Maker | High | 7.2 | 2022-11-29 20:23:15 | Deep Dive |
| CVE-2022-4031 | Simple:Press <= 6.8 - Authenticated (Admin+) Path Traversal to Arbitrary File Modification | simplepress | Simple:Press Forum | Low | 3.8 | 2022-11-29 20:16:00 | Deep Dive |
| CVE-2022-4030 | Simple:Press <= 6.8 - Authenticated (Subscriber+) Path Traversal to Arbitrary File Deletion | simplepress | Simple:Press Forum | High | 8.1 | 2022-11-29 20:13:25 | Deep Dive |
| CVE-2022-4029 | Simple:Press <= 6.8 - Reflected Cross-Site Scripting via Cookie Value | simplepress | Simple:Press Forum | Medium | 4.7 | 2022-11-29 20:10:25 | Deep Dive |