National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Search Results (Refine Search)

Search Parameters:
  • Results Type: Overview
  • Keyword (text search): Wordpress
  • Search Type: Search All
There are 2,225 matching records.
Displaying matches 101 through 120.
Vuln ID Summary CVSS Severity
CVE-2014-10378

The duplicate-post plugin before 2.6 for WordPress has XSS.

Published: August 21, 2019; 03:15:12 PM -04:00
V3: 6.1 MEDIUM
V2: 4.3 MEDIUM
CVE-2014-10377

The cforms2 plugin before 13.2 for WordPress has XSS in lib_ajax.php.

Published: August 21, 2019; 03:15:11 PM -04:00
V3: 6.1 MEDIUM
V2: 4.3 MEDIUM
CVE-2012-6714

The count-per-day plugin before 3.2.3 for WordPress has XSS via search words.

Published: August 21, 2019; 03:15:11 PM -04:00
V3: 6.1 MEDIUM
V2: 4.3 MEDIUM
CVE-2017-18564

The sender plugin before 1.2.1 for WordPress has multiple XSS issues.

Published: August 21, 2019; 02:15:11 PM -04:00
V3: 6.1 MEDIUM
V2: 4.3 MEDIUM
CVE-2017-18563

The rsvp plugin before 2.3.8 for WordPress has persistent XSS via the note field on the attendee-list screen.

Published: August 21, 2019; 02:15:11 PM -04:00
V3: 6.1 MEDIUM
V2: 4.3 MEDIUM
CVE-2016-10912

The universal-analytics plugin before 1.3.1 for WordPress has XSS.

Published: August 21, 2019; 02:15:10 PM -04:00
V3: 6.1 MEDIUM
V2: 4.3 MEDIUM
CVE-2016-10911

The profile-builder plugin before 2.4.2 for WordPress has multiple XSS issues.

Published: August 21, 2019; 02:15:10 PM -04:00
V3: 6.1 MEDIUM
V2: 4.3 MEDIUM
CVE-2016-10910

The formbuilder plugin before 1.06 for WordPress has multiple XSS issues.

Published: August 21, 2019; 02:15:10 PM -04:00
V3: 6.1 MEDIUM
V2: 4.3 MEDIUM
CVE-2015-9328

The profile-builder plugin before 2.2.5 for WordPress has XSS.

Published: August 21, 2019; 02:15:10 PM -04:00
V3: 6.1 MEDIUM
V2: 4.3 MEDIUM
CVE-2015-9327

The flickr-justified-gallery plugin before 3.4.0 for WordPress has XSS.

Published: August 21, 2019; 02:15:10 PM -04:00
V3: 6.1 MEDIUM
V2: 4.3 MEDIUM
CVE-2014-10380

The profile-builder plugin before 1.1.66 for WordPress has multiple XSS issues in forms.

Published: August 21, 2019; 02:15:10 PM -04:00
V3: 6.1 MEDIUM
V2: 4.3 MEDIUM
CVE-2012-6715

The formbuilder plugin before 0.9.1 for WordPress has XSS via a Referer header.

Published: August 21, 2019; 02:15:10 PM -04:00
V3: 6.1 MEDIUM
V2: 4.3 MEDIUM
CVE-2019-15112

The wp-slimstat plugin before 4.8.1 for WordPress has XSS.

Published: August 21, 2019; 09:15:12 AM -04:00
V3: 6.1 MEDIUM
V2: 4.3 MEDIUM
CVE-2019-15111

The wp-front-end-profile plugin before 0.2.2 for WordPress has a privilege escalation issue.

Published: August 21, 2019; 09:15:12 AM -04:00
V3: 9.8 CRITICAL
V2: 7.5 HIGH
CVE-2019-15110

The wp-front-end-profile plugin before 0.2.2 for WordPress has XSS.

Published: August 21, 2019; 09:15:12 AM -04:00
V3: 6.1 MEDIUM
V2: 4.3 MEDIUM
CVE-2017-18565

The updater plugin before 1.35 for WordPress has multiple XSS issues.

Published: August 21, 2019; 09:15:12 AM -04:00
V3: 6.1 MEDIUM
V2: 4.3 MEDIUM
CVE-2017-18560

The content-audit plugin before 1.9.2 for WordPress has XSS.

Published: August 21, 2019; 09:15:12 AM -04:00
V3: 6.1 MEDIUM
V2: 4.3 MEDIUM
CVE-2017-18558

The bws-testimonials plugin before 0.1.9 for WordPress has multiple XSS issues.

Published: August 21, 2019; 09:15:11 AM -04:00
V3: 6.1 MEDIUM
V2: 4.3 MEDIUM
CVE-2017-18557

The bws-google-maps plugin before 1.3.6 for WordPress has multiple XSS issues.

Published: August 21, 2019; 09:15:11 AM -04:00
V3: 6.1 MEDIUM
V2: 4.3 MEDIUM
CVE-2017-18556

The bws-google-analytics plugin before 1.7.1 for WordPress has multiple XSS issues.

Published: August 21, 2019; 09:15:11 AM -04:00
V3: 6.1 MEDIUM
V2: 4.3 MEDIUM