Filter
AND
-Infinity
0

Trending

Last week
Last month
Last year

WordPress Image Photo Gallery Final Tiles GridImage Photo Gallery Final Tiles Grid < 3.6.0 - Contributor+ Stored XSS

medium
6.8
First published (updated )
CVE-2024-3710

WPChill Download MonitorWordPress Download Monitor plugin <= 4.4.6 - Authenticated Arbitrary File Download vulnerability

medium
6.8
First published (updated )
CVE-2021-31567

Modula Image GalleryWordPress Modula plugin <= 2.6.9 - Unauth. Plugin Settings Change vulnerability

medium
6.5
First published (updated )
CVE-2022-41135

WPChill Strong TestimonialsXSS

medium
6.5
First published (updated )
CVE-2023-26013

PasssterXSS

medium
6.4
First published (updated )
CVE-2024-2026

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Wpchill CPO ShortcodesXSS

medium
6.4
EPSS
0.14%
First published (updated )
CVE-2023-5704

Wpchill Check & Log EmailCheck & Log Email < 1.0.4 - Reflected Cross-Site Scripting

medium
6.1
First published (updated )
CVE-2021-24908

WPChill Strong TestimonialsXSS

medium
6.1
First published (updated )
CVE-2020-8549

KB SupportWordPress KB Support plugin <= 1.5.5 - Multiple Unauth. Stored Cross-Site Scripting (XSS) vulnerabilities

medium
6.1
First published (updated )
CVE-2022-27852

Wpchill Check & Log EmailCheck & Log email < 1.0.6 - Reflected Cross-Site Scripting

medium
6.1
First published (updated )
CVE-2022-1547

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

WPChill Remove Footer CreditRemove Footer Credit < 1.0.6 - CSRF to Stored Cross-Site Scripting

medium
6
First published (updated )
CVE-2021-24446

WordPress Remove Footer CreditWordPress Remove Footer Credit plugin <= 1.0.13 - Cross Site Scripting (XSS) vulnerability

medium
5.9
EPSS
0.04%
First published (updated )
CVE-2024-32429

Wpchill Cpo Content TypesWordPress CPO Content Types Plugin <= 1.1.0 is vulnerable to Cross Site Scripting (XSS)

medium
5.9
First published (updated )
CVE-2023-25451

WPChill Download MonitorWordPress plugin Download Monitor <= 4.4.6 - Authenticated Reflected Cross-Site Scripting (XSS) vulnerability

medium
5.4
First published (updated )
CVE-2021-36920

Wpchill Gallery PhotoblocksWordPress Gallery PhotoBlocks plugin <= 1.2.6 - Multiple Authenticated Stored Cross-Site Scripting (XSS) vulnerabilities

medium
5.4
First published (updated )
CVE-2022-37407

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

MashShareMashShare < 3.8.7 - Contributor+ Stored XSS

medium
5.4
First published (updated )
CVE-2022-4544

Philips BrillianceWordPress Brilliance Theme <= 1.3.1 is vulnerable to Cross Site Scripting (XSS)

medium
5.4
First published (updated )
CVE-2023-28171

PasssterInfoleak

medium
5.3
First published (updated )
CVE-2024-0616

WordPress Simple RestrictInfoleak

medium
5.3
First published (updated )
CVE-2024-1083

Wpchill Optimize Images Alt Text (alt Tag) & Names For Seo Using AiOptimize Images ALT Text (alt tag) & names for SEO using AI <= 3.1.1 - Unauthenticated Full Path Disclosure

medium
5.3
EPSS
0.07%
First published (updated )
CVE-2024-6571

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

WPChill Htaccess File EditorWordPress Htaccess File Editor <= 1.0.19 - Broken Authentication vulnerability

medium
5.3
EPSS
0.04%
First published (updated )
CVE-2025-22773

WPChill RSVP and Event Management PluginRSVP and Event Management < 2.7.8 - Unauthenticated Entries Export

medium
5.3
First published (updated )
CVE-2022-1054

WPChill Download MonitorDownload Monitor < 4.5.91 - Admin+ Arbitrary File Download

medium
4.9
First published (updated )
CVE-2022-2222

WPChill Download MonitorDownload Monitor < 4.5.98 - Admin+ Arbitrary File Download

medium
4.9
First published (updated )
CVE-2022-2981

WPChill Download MonitorWordPress Download Monitor Plugin <= 4.8.1 is vulnerable to Server Side Request Forgery (SSRF)

medium
4.9
First published (updated )
CVE-2023-31219

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

WPChill Strong TestimonialsStrong Testimonials < 3.1.12 - Contributor+ Stored XSS

medium
4.8
EPSS
0.04%
First published (updated )
CVE-2024-3261

WordPress Remove Footer CreditRemove Footer Credit < 1.0.11 - Admin+ Stored Cross-Site Scripting

medium
4.8
First published (updated )
CVE-2021-25050

WPChill Download MonitorWordPress Download Monitor plugin <= 4.4.6 - Auth. Stored Cross-Site Scripting (XSS) vulnerability

medium
4.8
First published (updated )
CVE-2021-23174

Wpchill CPO ShortcodesWordPress CPO Shortcodes plugin <= 1.5.0 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability

medium
4.8
First published (updated )
CVE-2022-40672

WPChill Strong TestimonialsStrong Testimonials <= 3.1.12 - Authenticated(Contributor+) Improper Authorization to Views Modification

medium
4.3
First published (updated )
CVE-2023-6491

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203