Filter
Software
wordpress
594
wordpress sniplets plugin
3
wordpress wordpress
3
wordpress blix
2
wordpress math comment spam protection plugin
2
wordpress pay-with-tweet
2
wordpress wassup plugin
2
wordpress adserve
1
wordpress alert before you post
1
wordpress blixed
1
wordpress blixkrieg
1
wordpress blogger importer
1
wordpress captcha
1
wordpress cryptographp
1
wordpress dean logan wp-people plugin
1
wordpress debug bar
1
wordpress download monitor plugin
1
wordpress fcchat widget
1
wordpress fgallery plugin
1
wordpress filemanager
1
wordpress health check \& troubleshooting
1
wordpress integrator project wordpress integrator
1
wordpress lanoba social plugin
1
wordpress layerslider
1
wordpress page flip image gallery plugin
1
wordpress performance lab
1
wordpress permalinks migration plugin
1
wordpress peter\'s math anti-spam for wordpress
1
wordpress photo album plugin
1
wordpress pictpress
1
wordpress plugin newsletter plugin
1
wordpress pool
1
wordpress popup builder
1
wordpress requests
1
wordpress search unleashed plugin
1
wordpress sirius
1
wordpress slideshow gallery2
1
wordpress snap creek duplicator plugin
1
wordpress spambam plugin
1
wordpress st newsletter plugin
1
wordpress unamed theme
1
wordpress unamed theme se
1
wordpress wordpress-users
1
wordpress wordpressclassic
1
wordpress wordspew
1
wordpress wp cal plugin
1
wordpress wp download
1
wordpress wp downloads manager
1
wordpress wp forum
1
wordpress wp maintenance mode plugin
1
wordpress wp-contactform
1
wordpress wp-footnotes
1
wordpress wpss
1
WordPressWordPress Core < 6.0.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via use of the_meta(); function
5.4
First published (updated )
BleepingComputerCritical flaw in LayerSlider WordPress plugin impacts 1 million sites
First published (updated )
News
BleepingComputerBleepingComputerEvasive Sign1 malware campaign infects 39,000 WordPress sites
First published (updated )
News
BleepingComputerBleepingComputerHackers exploit WordPress plugin flaw to infect 3,300 sites with malware
First published (updated )
News
BleepingComputerBleepingComputerContent farm impersonates 60+ major news outlets, like BBC, CNN, CNBC
First published (updated )
News
BleepingComputerNever miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
BleepingComputerIvanti warns critical EPM bug lets hackers hijack enrolled devices
First published (updated )
News
BleepingComputerBleepingComputerWordPress fixes POP chain exposing websites to RCE attacks
First published (updated )
News
BleepingComputerWordPressWordPress < 6.3.2 - Unauthenticated Post Author Email Disclosure
5.3
First published (updated )
WordPressWordPress < 6.3.2 is vulnerable to Broken Access Control
4.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
WordPressAuth. Stored Cross-Site Scripting (XSS) vulnerability in WordPress core and Gutenberg plugin via Navigation Links Block
6.5
First published (updated )
Wordpress Performance LabWordPress Performance Lab Plugin <= 2.2.0 is vulnerable to Cross Site Request Forgery (CSRF)
8.8
First published (updated )
Wordpress Health Check \& TroubleshootingWordPress Health Check & Troubleshooting Plugin <= 1.5.1 is vulnerable to Cross Site Request Forgery (CSRF)
8.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
WordPressWordPress through 6.1.1 depends on unpredictable client visits to cause wp-cron.php execution and th…
5.3
First published (updated )
WordPressWP <= 6.1.1 - Unauthenticated Blind SSRF via DNS Rebinding
5.9
First published (updated )
WordPressImproper authentication vulnerability in WordPress versions prior to 6.0.3 allows a remote unauthent…
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
WordPressA flaw exists in Wordpress related to the 'wp-admin/press-this.php 'script improperly checking user …
6.5
First published (updated )
Debian Debian LinuxAuthenticated Object Injection in Multisites in WordPress
7.2
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Debian Debian LinuxWordPress Core WP_Query SQL Injection Information Disclosure Vulnerability
8
First published (updated )
WordPressWordPress before 5.8 lacks support for the Update URI plugin header. This makes it easier for remote…
9.8
First published (updated )
WordPressPrivate data disclosure/privilege escalation through the block editor in Wordpress
6.8
First published (updated )
WordPressWordPress 5.8 beta: Stored Cross-Site Scripting (XSS) vulnerability in widget
7.6
First published (updated )
debian/wordpressAuthenticated cross-site scripting (XSS) in WordPress editor
7.6
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.