Filter
Software
Wpwax Post Grid\, Slider \& Carousel UltimatePost Grid, Slider & Carousel Ultimate – with Shortcode, Gutenberg Block & Elementor Widget <= 1.6.10 - Authenticated (Contributor+) Local File Inclusion via post_type_ajax_handler()
8.8
First published (updated )
wpWax DirectoristWordPress Directorist Plugin <= 7.7.1 is vulnerable to CSV Injection
8.8
First published (updated )
wpWax Legal PagesWordPress Legal Pages Plugin <= 1.3.8 is vulnerable to Cross Site Request Forgery (CSRF)
8.8
First published (updated )
wpWax Legal PagesWordPress Legal Pages plugin <= 1.3.7 - CSRF + Broken Access Control vulnerability
8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
wpWax DirectoristDirectorist – Business Directory Plugin < 7.0.6.2 - CSRF to Remote File Upload
7.5
First published (updated )
Post Grid Slider & Carousel UltimateWordPress Post Grid, Slider & Carousel Ultimate plugin <= 1.6.6 - Cross Site Scripting (XSS) vulnerability
6.5
EPSS
0.04%
First published (updated )
Post Grid Slider & Carousel UltimateWordPress Post Grid, Slider & Carousel Ultimate – with Shortcode, Gutenberg Block & Elementor Widget plugin <= 1.6.10 - Local File Inclusion vulnerability
6.5
EPSS
0.04%
First published (updated )
wpWax DirectoristDirectorist < 7.4.2.2 - Subscriber+ Arbitrary User Password Update via IDOR
6.5
First published (updated )
wpWax DirectoristDirectorist < 7.4.4 - Subscriber+ Sensitive Information Disclosure
6.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
wpWax DirectoristThe Directorist plugin for WordPress is vulnerable to an Insecure Direct Object Reference in version…
6.5
First published (updated )
wpWax Product Carousel Slider & Grid Ultimate for WooCommerceWordPress Product Carousel Slider & Grid Ultimate for WooCommerce Plugin <= 1.10.0 - Cross Site Scripting (XSS) vulnerability
5.9
EPSS
0.04%
First published (updated )
Wpwax TeamWordPress Team plugin <= 1.2.6 - Multiple Authenticated Persistent Cross-Site Scripting (XSS) vulnerabilities
5.4
First published (updated )
Wpwax TeamWordPress Team plugin <= 1.2.6 - Multiple Authenticated Stored Cross-Site Scripting (XSS) vulnerabilities
5.4
First published (updated )
wpWax DirectoristDirectorist < 7.3.1 - Unauthenticated Email Address Disclosure
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
wpWax DirectoristDirectorist - Business Directory Plugin < 7.2.3 - Admin+ Arbitrary File Upload
4.9
First published (updated )
Wpwax Post Grid\, Slider \& Carousel UltimatePost Grid, Slider & Carousel Ultimate < 1.5.0 - Admin+ Stored XSS
4.8
First published (updated )
wpWax DirectoristDirectorist < 7.3.0 - Subscriber+ Arbitrary E-mail Sending
4.3
First published (updated )