Filter
AND

WordPressThe create_post function in wp-includes/class-wp-atom-server.php in WordPress before 3.4.2 does not …

medium
4
First published (updated )
CVE-2012-4421

WordPressInput Validation

medium
5
First published (updated )
CVE-2011-4957

WordPressCode Injection

high
7.5
First published (updated )
CVE-2005-2612

WordPressXSS

medium
4.3
First published (updated )
CVE-2012-0782

WordPressXSS

medium
4.3
First published (updated )
CVE-2013-0237

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

WordPresswp-admin/plugins.php in WordPress before 3.4.2, when the multisite feature is enabled, does not chec…

low
3.5
First published (updated )
CVE-2012-4422

WordPressXSS, Code Injection

high
7.5
First published (updated )
CVE-2011-4899

WordPresswp-admin/setup-config.php in the installation component in WordPress 3.3.1 and earlier does not limi…

medium
5
First published (updated )
CVE-2012-0937

WordPressXSS

medium
4.3
First published (updated )
CVE-2011-4956

WordPressInfoleak

medium
5
First published (updated )
CVE-2011-4898

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

WordPressWordPress before 1.5.2 allows remote attackers to obtain sensitive information via a direct request …

medium
5
First published (updated )
CVE-2005-4463

WordPressWordPress 1.5.1.2 and earlier allows remote attackers to obtain sensitive information via (1) a dire…

medium
5
First published (updated )
CVE-2005-2110

WordPressSQL Injection

high
7.5
First published (updated )
CVE-2005-2108

WordPressXSS

medium
4.3
First published (updated )
CVE-2005-2107

WordPresswp-login.php in WordPress 1.5.1.2 and earlier allows remote attackers to change the content of the f…

medium
5
First published (updated )
CVE-2005-2109

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

WordPressWordPress 2.0.1 and earlier allows remote attackers to obtain sensitive information via a direct req…

medium
5
First published (updated )
CVE-2006-0986

WordPressXSS

medium
4.3
First published (updated )
CVE-2006-0985

WordpressCSRF, XSS

medium
4.3
First published (updated )
CVE-2007-4544

WordPressXSS

medium
4.3
First published (updated )
CVE-2008-5278

WordPressPath Traversal

critical
9.3
First published (updated )
CVE-2008-4769

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

WordpressXSS

medium
4.3
First published (updated )
CVE-2008-4671

WordPressThe (1) get_edit_post_link and (2) get_edit_comment_link functions in wp-includes/link-template.php …

high
7.5
First published (updated )
CVE-2008-3747

WordPressXSS

medium
4.3
First published (updated )
CVE-2008-3233

WordPresswp-includes/vars.php in Wordpress before 2.2.3 does not properly extract the current path from the P…

high
7.5
First published (updated )
CVE-2008-2146

WordPressWordpress before 2.8.3 allows remote attackers to gain privileges via a direct request to (1) admin-…

critical
10
First published (updated )
CVE-2009-2853

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

WordPressWordPress and WordPress MU before 2.8.1 allow remote attackers to obtain sensitive information via a…

medium
5
First published (updated )
CVE-2009-2432

WordPressXSS

medium
4.9
First published (updated )
CVE-2009-2334

WordpressXSS

medium
4.3
First published (updated )
CVE-2009-1030

WordPressCSRF

medium
6.8
First published (updated )
CVE-2012-1936

WordPressXSS

medium
4.3
First published (updated )
CVE-2012-2403

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203