National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

Search Results (Refine Search)

Search Parameters:
  • Results Type: Overview
  • Keyword (text search): Wordpress
  • Search Type: Search All
There are 2,137 matching records.
Displaying matches 41 through 60.
Vuln ID Summary CVSS Severity
CVE-2016-10900

The uji-countdown plugin before 2.0.7 for WordPress has XSS.

Published: August 21, 2019; 09:15:11 AM -04:00
V3: 6.1 MEDIUM
V2: 4.3 MEDIUM
CVE-2019-15109

The the-events-calendar plugin before 4.8.2 for WordPress has XSS via the tribe_paged URL parameter.

Published: August 21, 2019; 08:15:11 AM -04:00
(not available)
CVE-2017-18540

The weblibrarian plugin before 3.4.8.7 for WordPress has XSS via front-end short codes.

Published: August 21, 2019; 08:15:11 AM -04:00
V3: 6.1 MEDIUM
V2: 4.3 MEDIUM
CVE-2017-18539

The weblibrarian plugin before 3.4.8.6 for WordPress has XSS via front-end short codes.

Published: August 21, 2019; 08:15:11 AM -04:00
V3: 6.1 MEDIUM
V2: 4.3 MEDIUM
CVE-2017-18538

The weblibrarian plugin before 3.4.8.5 for WordPress has XSS via front-end short codes.

Published: August 21, 2019; 08:15:11 AM -04:00
V3: 6.1 MEDIUM
V2: 4.3 MEDIUM
CVE-2017-18537

The visitors-online plugin before 1.0.0 for WordPress has multiple XSS issues.

Published: August 21, 2019; 08:15:10 AM -04:00
V3: 6.1 MEDIUM
V2: 4.3 MEDIUM
CVE-2017-18536

The stop-user-enumeration plugin before 1.3.8 for WordPress has XSS.

Published: August 21, 2019; 08:15:10 AM -04:00
V3: 6.1 MEDIUM
V2: 4.3 MEDIUM
CVE-2017-18534

The share-on-diaspora plugin before 0.7.2 for WordPress has reflected XSS in share URL parameters.

Published: August 21, 2019; 08:15:10 AM -04:00
(not available)
CVE-2016-10899

The total-security plugin before 3.4.1 for WordPress has a settings-change vulnerability.

Published: August 21, 2019; 08:15:10 AM -04:00
(not available)
CVE-2016-10898

The total-security plugin before 3.4.1 for WordPress has XSS.

Published: August 21, 2019; 08:15:10 AM -04:00
(not available)
CVE-2016-10897

The sermon-browser plugin before 0.45.16 for WordPress has multiple XSS issues.

Published: August 21, 2019; 08:15:10 AM -04:00
(not available)
CVE-2016-10896

The seo-redirection plugin before 4.3 for WordPress has stored XSS.

Published: August 21, 2019; 08:15:10 AM -04:00
(not available)
CVE-2015-9321

The shortcode-factory plugin before 1.1.1 for WordPress has XSS via add_query_arg.

Published: August 21, 2019; 08:15:10 AM -04:00
V3: 6.1 MEDIUM
V2: 4.3 MEDIUM
CVE-2018-20978

The wp-all-import plugin before 3.4.7 for WordPress has XSS.

Published: August 20, 2019; 12:15:13 PM -04:00
V3: 6.1 MEDIUM
V2: 4.3 MEDIUM
CVE-2017-18566

The user-role plugin before 1.5.6 for WordPress has multiple XSS issues.

Published: August 20, 2019; 12:15:13 PM -04:00
V3: 6.1 MEDIUM
V2: 4.3 MEDIUM
CVE-2017-18533

The rimons-twitter-widget plugin before 1.3 for WordPress has XSS.

Published: August 20, 2019; 12:15:12 PM -04:00
V3: 6.1 MEDIUM
V2: 4.3 MEDIUM
CVE-2017-18532

The realty plugin before 1.1.0 for WordPress has multiple XSS issues.

Published: August 20, 2019; 12:15:12 PM -04:00
V3: 6.1 MEDIUM
V2: 4.3 MEDIUM
CVE-2017-18531

The raygun4wp plugin before 1.8.3 for WordPress has XSS in the settings, a different issue than CVE-2017-9288.

Published: August 20, 2019; 12:15:12 PM -04:00
(not available)
CVE-2017-18530

The rating-bws plugin before 0.2 for WordPress has multiple XSS issues.

Published: August 20, 2019; 12:15:12 PM -04:00
(not available)
CVE-2017-18529

The promobar plugin before 1.1.1 for WordPress has multiple XSS issues.

Published: August 20, 2019; 12:15:12 PM -04:00
(not available)