| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-31211 | Remote Code Execution in `WP_HTML_Token` | WordPress | wordpress-develop | Medium | 5.5 | 2024-04-04 23:00:18 | Deep Dive |
| CVE-2024-31210 | PHP file upload bypass via Plugin installer | WordPress | wordpress-develop | High | 7.6 | 2024-04-04 22:59:29 | Deep Dive |
| CVE-2022-21662 | Stored XSS in WordPress | WordPress | wordpress-develop | High | 8.0 | 2022-01-06 23:05:10 | Deep Dive |
| CVE-2022-21663 | Authenticated Object Injection in Multisites in WordPress | WordPress | wordpress-develop | Medium | 6.6 | 2022-01-06 23:00:11 | Deep Dive |
| CVE-2022-21664 | SQL injection in WordPress | WordPress | wordpress-develop | High | 7.4 | 2022-01-06 22:55:09 | Deep Dive |
| CVE-2022-21661 | SQL injection in WordPress | WordPress | wordpress-develop | High | 8.0 | 2022-01-06 22:50:11 | Deep Dive |
| CVE-2021-39203 | Private data disclosure/privilege escalation through the block editor in Wordpress | WordPress | wordpress-develop | Medium | 6.8 | 2021-09-09 22:00:11 | Deep Dive |
| CVE-2021-39202 | WordPress 5.8 beta: Stored Cross-Site Scripting (XSS) vulnerability in widget | WordPress | wordpress-develop | High | 7.6 | 2021-09-09 21:55:11 | Deep Dive |
| CVE-2021-39201 | Authenticated cross-site scripting (XSS) in WordPress editor | WordPress | wordpress-develop | High | 7.6 | 2021-09-09 21:35:08 | Deep Dive |
| CVE-2021-39200 | Information Disclosure in wp_die() via JSONP in wordpress | WordPress | wordpress-develop | Medium | 5.3 | 2021-09-09 21:25:09 | Deep Dive |
| CVE-2021-29450 | WordPress Authenticated disclosure of password-protected posts and pages | WordPress | wordpress-develop | Medium | 6.5 | 2021-04-15 21:20:10 | Deep Dive |
| CVE-2021-29447 | WordPress Authenticated XXE attack when installation is running PHP 8 | WordPress | wordpress-develop | High | 7.1 | 2021-04-15 21:10:12 | Deep Dive |
| CVE-2020-4047 | Authenticated XSS via media attachment page in WordPress | WordPress | wordpress-develop | Medium | 6.8 | 2020-06-12 16:00:36 | Deep Dive |
| CVE-2020-4048 | Open redirect in wp_validate_redirect() in WordPress | WordPress | wordpress-develop | Medium | 5.7 | 2020-06-12 16:00:30 | Deep Dive |
| CVE-2020-4049 | Authenticated self-XSS via theme uploads in WordPress | WordPress | wordpress-develop | Low | 2.4 | 2020-06-12 16:00:23 | Deep Dive |
| CVE-2020-4050 | set-screen-option filter misuse by plugins leading to privilege escalation in WordPress | WordPress | wordpress-develop | Low | 3.5 | 2020-06-12 16:00:17 | Deep Dive |
| CVE-2020-4046 | Authenticated XSS through embed block in WordPress | WordPress | wordpress-develop | Medium | 5.4 | 2020-06-12 15:55:12 | Deep Dive |