Filter
-Infinity
0
Trending
WP All ExportWP All Export Pro <= 1.9.1 - Authenticated (ShopManager+) Arbtirary Options Update
7.2
First published (updated )
WP All ExportWP All Export Pro <= 1.9.1 - Unauthenticated Remote Code Execution via Custom Export Fields
8.8
First published (updated )
WP All ImportWP All Import Pro <= 4.9.7 - Authenticated (Administrator+) PHP Object Injection via Import File
7.2
First published (updated )
Soflyy BreakdanceBreakdance <= 1.7.2 - Missing Authorization
4.3
First published (updated )
Soflyy BreakdanceBreakdance <= 1.7.2 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Oxygen BuilderWordPress Oxygen plugin <= 4.9 - Authenticated Remote Code Execution (RCE) vulnerability
9.9
EPSS
0.04%
First published (updated )
BreakdanceWordPress Breakdance plugin <= 1.7.2 - Authenticated Remote Code Execution (RCE) vulnerability
9.9
EPSS
0.04%
First published (updated )
Soflyy Export Any WordPress Data To XML/CSVWP All Import < 3.7.3 - Admin+ Arbitrary File Upload to RCE
7.2
EPSS
0.11%
First published (updated )
Soflyy Export Any WordPress Data To XML/CSVWP All Export (Free < 1.4.1, Pro < 1.8.6) - Remote Code Execution via CSRF
8.8
EPSS
0.14%
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Soflyy Export Any WordPress Data To XML/CSVWP All Export (Free < 1.4.0, Pro < 1.8.6) - Admin+ RCE
7.2
First published (updated )
Soflyy Export Any WordPress Data To XML/CSVWP All Export (Free < 1.4.1, Pro < 1.8.6) - Author+ PHAR Deserialization via CSRF
8.8
EPSS
0.10%
First published (updated )
Soflyy Oxygen pluginWordPress Oxygen Builder Plugin < 4.4 is vulnerable to Cross Site Request Forgery (CSRF)
8.8
First published (updated )
Soflyy WP All ImportWP All Import < 3.6.9 - Admin+ Directory traversal via file upload
7.2
First published (updated )
Soflyy WP All ImportWP All Import < 3.6.9 - Admin+ Arbitrary File Upload to RCE
7.2
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
WP All ExportWP All Export Pro < 1.7.9 - Authenticated Code Injection
7.2
First published (updated )
WP All ExportWP All Export Pro < 1.7.9 - Authenticated SQLi
8.8
First published (updated )
Soflyy WP All ImportWordPress Import any XML or CSV File to WordPress plugin <= 3.6.7 - Authenticated Arbitrary Code Execution vulnerability
9.1
First published (updated )
Soflyy WP All ImportWP All Import < 3.6.8 - Admin+ Arbitrary File Upload
7.2
First published (updated )
Soflyy Export Any WordPress Data To XML/CSVExport any WordPress data to XML/CSV < 1.3.5 - Admin+ SQL Injection
7.2
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Soflyy WP All ImportWP All Import < 3.6.3 - Admin+ Stored Cross-Site Scripting
4.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Soflyy WP All ImportThe wp-all-import plugin before 3.2.4 for WordPress has no prevention of unauthenticated requests to…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.