Filter
-Infinity
0

Trending

Last week
Last month
Last year

Wpdevart Widget CountdownWordPress Widget Countdown plugin <= 2.7.1 - Cross Site Scripting (XSS) vulnerability

medium
6.5
EPSS
0.04%
First published (updated )
CVE-2025-24719

Wpdevart Gallery - Image And Video Gallery With ThumbnailsWordPress Gallery – Image and Video Gallery with Thumbnails plugin <= 2.0.3 - Broken Access Control vulnerability

medium
5.4
First published (updated )
CVE-2023-45631

Booking CalendarBooking Calendar WpDevArt <= 3.2.19 - Authenticated (Contributor+) SQL Injection

medium
6.5
First published (updated )
CVE-2024-10856

WpDevArt Booking CalendarWordPress Booking calendar, Appointment Booking System plugin <= 3.2.3 - Broken Access Control vulnerability

high
8.8
First published (updated )
CVE-2023-24407

WordPress Organization ChartOrganization chart <= 1.5.0 - Authenticated (Subscriber+) Stored Cross-Site Scripting via title_input and node_description Parameters

medium
5.4
EPSS
0.07%
First published (updated )
CVE-2024-7355

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Wpdevart Gallery - Image And Video Gallery With ThumbnailsWordPress Gallery – Image and Video Gallery with Thumbnails plugin <= 2.0.3 - Broken Access Control vulnerability

medium
6.3
First published (updated )
CVE-2024-37542

Wpdevart Gallery - Image And Video Gallery With ThumbnailsWordPress Gallery – Image and Video Gallery with Thumbnails plugin <= 2.0.3 - SQL Injection vulnerability

high
8.8
First published (updated )
CVE-2024-35750

WpDevArt Booking CalendarWordPress Booking calendar, Appointment Booking System plugin <= 3.2.3 - Bypass vulnerability

critical
9.8
First published (updated )
CVE-2023-24373

Wpdevart Responsive Image GalleryWordPress Gallery – Image and Video Gallery with Thumbnails plugin <= 2.0.3 - Reflected Cross Site Scripting (XSS) vulnerability

high
7.1
EPSS
0.04%
First published (updated )
CVE-2024-30550

Wpdevart Responsive Image GalleryWordPress Gallery – Image and Video Gallery with Thumbnails plugin <= 2.0.3 - Cross Site Scripting (XSS) vulnerability

medium
6.5
EPSS
0.04%
First published (updated )
CVE-2024-31120

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Wpdevart Countdown And Countup, Woocommerce Sales TimerWordPress Countdown and CountUp, WooCommerce Sales Timer Plugin <= 1.8.2 is vulnerable to Cross Site Scripting (XSS)

medium
5.9
First published (updated )
CVE-2023-47533

Booking CalendarWordPress Booking calendar, Appointment Booking System Plugin <= 3.2.7 is vulnerable to SQL Injection

critical
9.8
First published (updated )
CVE-2022-47428

Contact Form BuilderWordPress Contact Form Builder, Contact Widget Plugin <= 2.1.6 is vulnerable to Cross Site Scripting (XSS)

high
7.1
First published (updated )
CVE-2023-46075

Wpdevart Gallery - Image And Video Gallery With ThumbnailsWordPress Responsive Image Gallery, Gallery Album Plugin <= 2.0.3 is vulnerable to Cross Site Scripting (XSS)

high
7.1
First published (updated )
CVE-2023-45630

Total-Soft Portfolio Gallery – Responsive Image GalleryCSRF

high
8.8
First published (updated )
CVE-2023-45629

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Wpdevart Pricing Table BuilderAP Pricing Tables Lite <= 1.1.6 - Admin+ SQLi

high
7.2
First published (updated )
CVE-2023-0900

WordPress Organization ChartWordPress Organization chart Plugin <= 1.4.4 is vulnerable to Cross Site Scripting (XSS)

medium
5.9
First published (updated )
CVE-2023-24387

Wpdevart Youtube Embed, Playlist And PopupWordPress YouTube Embed, Playlist and Popup by WpDevArt Plugin <= 2.6.3 is vulnerable to Cross Site Scripting (XSS)

medium
5.9
First published (updated )
CVE-2023-24002

Wpdevart Download Image And Video LightboxWordPress Image and Video Lightbox, Image PopUp Plugin <= 2.1.5 is vulnerable to Cross Site Scripting (XSS)

medium
5.9
First published (updated )
CVE-2023-24004

Weblizar Social Likebox & FeedWordPress Social Like Box and Page by WpDevArt Plugin <= 0.8.39 is vulnerable to Cross Site Scripting (XSS)

medium
5.9
First published (updated )
CVE-2023-23972

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Wpdevart Responsive Vertical Icon MenuWordPress Responsive Vertical Icon Menu Plugin <= 1.5.8 is vulnerable to Cross Site Scripting (XSS)

medium
5.9
First published (updated )
CVE-2023-23870

Wpdevart GalleryWordPress Responsive Image Gallery, Gallery Album Plugin <= 2.0.1 is vulnerable to Cross Site Scripting (XSS)

high
7.1
First published (updated )
CVE-2022-47603

Booking CalendarWordPress Booking calendar, Appointment Booking System Plugin <= 3.2.3 is vulnerable to Cross Site Scripting (XSS)

medium
5.9
First published (updated )
CVE-2022-47438

Wpdevart Responsive Vertical Icon MenuWordPress Responsive Vertical Icon Menu Plugin <= 1.5.8 is vulnerable to Cross Site Request Forgery (CSRF)

medium
5.4
First published (updated )
CVE-2023-23983

WordPress Organization ChartWordPress Organization chart Plugin <= 1.4.4 is vulnerable to Cross Site Request Forgery (CSRF)

high
8.8
First published (updated )
CVE-2023-24384

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Booking CalendarWordPress Booking calendar, Appointment Booking System Plugin <= 3.2.3 is vulnerable to Cross Site Request Forgery (CSRF)

medium
5.4
First published (updated )
CVE-2023-24388

Weblizar Social Likebox & FeedSocial Like Box and Page by WpDevArt < 0.8.41 - Contributor+ Stored XSS

medium
5.4
First published (updated )
CVE-2023-0177

Booking CalendarBooking Calendar < 3.2.2 - Unauthenticated Arbitrary File Upload

critical
9.8
First published (updated )
CVE-2022-3982

Wpdevart Poll, Survey, Questionnaire And Voting SystemWordPress Poll, Survey, Questionnaire and Voting system plugin <= 1.7.4 - Authenticated Cross-Site Scripting (XSS) vulnerability

medium
4.8
First published (updated )
CVE-2022-34656

Wpdevart Gallery - Image And Video Gallery With ThumbnailsGallery < 2.0.0 - Reflected Cross-Site Scripting

medium
6.1
First published (updated )
CVE-2022-1946

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203