) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
- Results Type: Overview
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2016-10867 |
The all-in-one-wp-security-and-firewall plugin before 4.0.6 for WordPress has XSS in settings pages. Published: August 13, 2019; 2:15:11 PM -0400 |
V4.0:(not available) V3.1: 6.1 MEDIUM V2.0: 4.3 MEDIUM |
| CVE-2016-10866 |
The all-in-one-wp-security-and-firewall plugin before 4.2.0 for WordPress has multiple XSS issues. Published: August 13, 2019; 2:15:11 PM -0400 |
V4.0:(not available) V3.0: 6.1 MEDIUM V2.0: 4.3 MEDIUM |
| CVE-2018-20964 |
The contact-form-to-email plugin before 1.2.66 for WordPress has CSRF. Published: August 13, 2019; 1:15:13 PM -0400 |
V4.0:(not available) V3.0: 8.8 HIGH V2.0: 6.8 MEDIUM |
| CVE-2018-20963 |
The contact-form-to-email plugin before 1.2.66 for WordPress has XSS. Published: August 13, 2019; 1:15:13 PM -0400 |
V4.0:(not available) V3.0: 6.1 MEDIUM V2.0: 4.3 MEDIUM |
| CVE-2017-18507 |
The wp-live-chat-support plugin before 7.1.05 for WordPress has XSS. Published: August 13, 2019; 1:15:13 PM -0400 |
V4.0:(not available) V3.0: 6.1 MEDIUM V2.0: 4.3 MEDIUM |
| CVE-2017-18498 |
The simple-job-board plugin before 2.4.4 for WordPress has reflected XSS via keyword search. Published: August 13, 2019; 1:15:13 PM -0400 |
V4.0:(not available) V3.0: 6.1 MEDIUM V2.0: 4.3 MEDIUM |
| CVE-2017-18497 |
The liveforms plugin before 3.4.0 for WordPress has XSS. Published: August 13, 2019; 1:15:13 PM -0400 |
V4.0:(not available) V3.0: 6.1 MEDIUM V2.0: 4.3 MEDIUM |
| CVE-2017-18496 |
The htaccess plugin before 1.7.6 for WordPress has multiple XSS issues. Published: August 13, 2019; 1:15:13 PM -0400 |
V4.0:(not available) V3.0: 6.1 MEDIUM V2.0: 4.3 MEDIUM |
| CVE-2017-18495 |
The gravity-forms-sms-notifications plugin before 2.4.0 for WordPress has XSS. Published: August 13, 2019; 1:15:13 PM -0400 |
V4.0:(not available) V3.0: 6.1 MEDIUM V2.0: 4.3 MEDIUM |
| CVE-2017-18494 |
The custom-search-plugin plugin before 1.36 for WordPress has multiple XSS issues. Published: August 13, 2019; 1:15:13 PM -0400 |
V4.0:(not available) V3.0: 6.1 MEDIUM V2.0: 4.3 MEDIUM |
| CVE-2017-18493 |
The custom-admin-page plugin before 0.1.2 for WordPress has multiple XSS issues. Published: August 13, 2019; 1:15:13 PM -0400 |
V4.0:(not available) V3.0: 6.1 MEDIUM V2.0: 4.3 MEDIUM |
| CVE-2017-18492 |
The contact-form-to-db plugin before 1.5.7 for WordPress has multiple XSS issues. Published: August 13, 2019; 1:15:13 PM -0400 |
V4.0:(not available) V3.0: 6.1 MEDIUM V2.0: 4.3 MEDIUM |
| CVE-2017-18491 |
The contact-form-plugin plugin before 4.0.6 for WordPress has multiple XSS issues. Published: August 13, 2019; 1:15:13 PM -0400 |
V4.0:(not available) V3.0: 6.1 MEDIUM V2.0: 4.3 MEDIUM |
| CVE-2017-18490 |
The contact-form-multi plugin before 1.2.1 for WordPress has multiple XSS issues. Published: August 13, 2019; 1:15:13 PM -0400 |
V4.0:(not available) V3.0: 6.1 MEDIUM V2.0: 4.3 MEDIUM |
| CVE-2017-18489 |
The contact-form-7-sms-addon plugin before 2.4.0 for WordPress has XSS. Published: August 13, 2019; 1:15:13 PM -0400 |
V4.0:(not available) V3.0: 6.1 MEDIUM V2.0: 4.3 MEDIUM |
| CVE-2016-10871 |
The mailchimp-for-wp plugin before 4.0.11 for WordPress has XSS on the integration settings page. Published: August 13, 2019; 1:15:12 PM -0400 |
V4.0:(not available) V3.0: 6.1 MEDIUM V2.0: 4.3 MEDIUM |
| CVE-2016-10870 |
The google-language-translator plugin before 5.0.06 for WordPress has XSS. Published: August 13, 2019; 1:15:12 PM -0400 |
V4.0:(not available) V3.0: 6.1 MEDIUM V2.0: 4.3 MEDIUM |
| CVE-2016-10869 |
The contact-form-plugin plugin before 4.0.2 for WordPress has XSS. Published: August 13, 2019; 1:15:12 PM -0400 |
V4.0:(not available) V3.0: 6.1 MEDIUM V2.0: 4.3 MEDIUM |
| CVE-2016-10868 |
The all-in-one-wp-security-and-firewall plugin before 4.0.5 for WordPress has XSS in the blacklist, file system, and file change detection settings pages. Published: August 13, 2019; 1:15:12 PM -0400 |
V4.0:(not available) V3.0: 6.1 MEDIUM V2.0: 4.3 MEDIUM |
| CVE-2015-9302 |
The simple-fields plugin before 1.4.11 for WordPress has XSS. Published: August 13, 2019; 1:15:12 PM -0400 |
V4.0:(not available) V3.1: 6.1 MEDIUM V2.0: 4.3 MEDIUM |