Filter
AND

WordPressImproper authentication vulnerability in WordPress versions prior to 6.0.3 allows a remote unauthent…

medium
5.3
First published (updated )
CVE-2022-43504

WordPressXSS

medium
6.1
First published (updated )
CVE-2022-43500

WordPressXSS

medium
6.1
First published (updated )
CVE-2022-43497

WordPressObject injection via local phar file

critical
9.8
First published (updated )
CVE-2020-36326

WordPressAuthenticated XSS via media attachment page in WordPress

medium
6.8
First published (updated )
CVE-2020-4047

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

WordPressOpen redirect in wp_validate_redirect() in WordPress

medium
5.7
First published (updated )
CVE-2020-4048

WordPressAuthenticated self-XSS via theme uploads in WordPress

low
3.5
First published (updated )
CVE-2020-4049

WordPressset-screen-option filter misuse by plugins leading to privilege escalation in WordPress

medium
6
First published (updated )
CVE-2020-4050

WordPressAuthenticated XSS through embed block in WordPress

medium
5.4
First published (updated )
CVE-2020-4046

WordPressSpecially crafted filenames in WordPress leading to XSS

high
8.7
First published (updated )
CVE-2020-11026

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

WordPressCross-site scripting in stats method (object cache) in WordPress

medium
6.1
First published (updated )
CVE-2020-11029

WordPressPassword reset links invalidation issue in WordPress

high
8.1
First published (updated )
CVE-2020-11027

WordPressPath Traversal

high
7.5
First published (updated )
CVE-2017-14719

WordPressInput Validation, SSRF

medium
6.4
First published (updated )
CVE-2014-9038

WordPressXSS

medium
4.3
First published (updated )
CVE-2014-9036

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

WordPressXSS

medium
4.3
First published (updated )
CVE-2014-9031

WordPresswp-includes/class-phpass.php in WordPress before 3.7.5, 3.8.x before 3.8.5, 3.9.x before 3.9.3, and …

medium
5
First published (updated )
CVE-2014-9034

WordPresswp-login.php in WordPress before 3.7.5, 3.8.x before 3.8.5, 3.9.x before 3.9.3, and 4.x before 4.0.1…

medium
4.3
First published (updated )
CVE-2014-9039

WordPressXSS

medium
4.3
First published (updated )
CVE-2014-9035

WordPressWordPress before 3.7.5, 3.8.x before 3.8.5, 3.9.x before 3.9.3, and 4.x before 4.0.1 might allow rem…

medium
6.8
First published (updated )
CVE-2014-9037

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Drupal DrupalThe Incutio XML-RPC (IXR) Library, as used in WordPress before 3.9.2 and Drupal 6.x before 6.33 and …

medium
5
First published (updated )
CVE-2014-5266

Drupal DrupalThe Incutio XML-RPC (IXR) Library, as used in WordPress before 3.9.2 and Drupal 6.x before 6.33 and …

medium
5
First published (updated )
CVE-2014-5265

WordPressXSS

low
2.1
First published (updated )
CVE-2014-5240

WordPressWordPress before 3.7.2 and 3.8.x before 3.8.2 allows remote authenticated users to publish posts by …

medium
4
First published (updated )
CVE-2014-0165

WordPressThe wp_validate_auth_cookie function in wp-includes/pluggable.php in WordPress before 3.7.2 and 3.8.…

medium
6.4
First published (updated )
CVE-2014-0166

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

WordPress 3.8Reached end of life

First published (updated )
EOL-wordpress-3.8

WordPress 3.8Reached end of life

First published (updated )
latest-version-wordpress-3.8

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203