Filter
-Infinity
0
Trending
Versions
2.0
71
2.0.1
65
2.0.2
61
2.0.4
61
1.5
60
2.0.5
60
1.2
59
1.0
58
2.1.1
57
2.2
57
1.5.1
56
2.0.6
56
2.1.2
56
2.2.1
55
1.5.1.2
54
2.0.7
54
2.1
53
1.5.1.3
52
1.2.2
51
2.1.3
51
2.0.11
50
2.2.2
50
2.3
50
1.2.1
49
2.0.10
49
1.0.2
48
1.0.1
47
1.5.2
47
2.0.9
47
2.2.3
47
2.5
46
0.71
45
2.3.1
45
2.3.2
45
2.6
45
2.0.8
43
2.5.1
43
2.6.1
41
2.6.3
41
2.3.3
40
2.6.2
40
2.7
39
2.7.1
39
2.6.5
38
2.8
37
2.8.1
37
2.8.2
37
2.8.5
37
2.9
37
3.1
37
WordPressWordPress WP DPE-GES <= 1.6 - Cross Site Scripting (XSS) Vulnerability
6.5
EPSS
0.03%
First published (updated )
codemstory 워드프레스 결제 심플페이WordPress 워드프레스 결제 심플페이 <= 5.2.11 - Cross Site Request Forgery (CSRF) Vulnerability
5.4
EPSS
0.01%
First published (updated )
WordPressWordPress ProductX – Gutenberg WooCommerce Blocks Plugin <= 3.1.4 is vulnerable to PHP Object Injection
9.8
EPSS
0.04%
First published (updated )
WordPresslasTunes <= 3.6.1 - Settings Update via CSRF
5.4
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Persian FontsPersian Fonts <= 1.6 - Admin+ Stored XSS
6.1
First published (updated )
BleepingComputerWordPress plugin disguised as a security tool injects backdoor
First published (updated )
News
BleepingComputerTrân Minh-Quân WPVNWordPress WPVN <= 0.7.8 - Cross Site Request Forgery (CSRF) Vulnerability
4.3
EPSS
0.02%
First published (updated )
WordPress1 Decembrie 1918 <= 1.dec.2012 - Cross-Site Request Forgery to Stored Cross-Site Scripting
6.1
EPSS
0.03%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
BleepingComputerWooCommerce admins targeted by fake security patches that hijack sites
First published (updated )
News
BleepingComputerPiraeus Bank WooCommerce Payment GatewaySQL Injection
9.8
First published (updated )
WordPressImproper authentication vulnerability in WordPress versions prior to 6.0.3 allows a remote unauthent…
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
WordPressWordPress < 6.3.2 - Unauthenticated Post Author Email Disclosure
5.3
EPSS
66.56%
First published (updated )
Debian LinuxAuthenticated Object Injection in Multisites in WordPress
7.2
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
WP MultiTaskingWP MultiTasking <= 0.1.12 - Header/Footer/Body Script Update via CSRF
4.3
First published (updated )
WP MultiTaskingWP MultiTasking <= 0.1.12 - Permalink Suffix Update via CSRF
4.3
First published (updated )
Wpify Woo Czech WordpressThe WPify Woo Czech plugin for WordPress is vulnerable to unauthorized access of data due to a missi…
5.3
First published (updated )
Aklamator INfeedaklamator-infeed <= 2.0.0 - Admin+ Stored XSS
4.8
First published (updated )
WordPressWP <= 6.1.1 - Unauthenticated Blind SSRF via DNS Rebinding
5.9
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.