Vulnerabilities in UNKNOWN

4,197 results

CVE-2022-4447CRITICALFontsy <= 1.8.6 - Multiple Unauthenticated SQLiEPSS 4.8%CVE-2021-24170—User Profile Picture < 2.5.0 - Sensitive Information DisclosureEPSS 4.8%CVE-2022-4049CRITICALWP User <= 7.0 - Unauthenticated SQLiEPSS 4.8%CVE-2022-4050CRITICALJoomSport < 5.2.8 - Unauthenticated SQLiEPSS 4.8%CVE-2022-4059CRITICALCryptocurrency Widgets Pack < 2.0 - Unauthenticated SQLiEPSS 4.8%CVE-2021-24404—WP-Board <= 1.1 (beta) - Unauthenticated SQL InjectionEPSS 4.7%CVE-2021-24401—WP Domain Redirect <= 1.0 - Authenticated SQL InjectionEPSS 4.6%CVE-2021-24402—WP iCommerce <= 1.1.1 - Authenticated (contributor+) SQL InjectionEPSS 4.6%CVE-2018-17914—InduSoft Web Studio versions prior to 8.1 SP2, and InTouch Edge HMI (formerly InTouch Machine Edition) versions prior to 2017 SP2. This vulnEPSS 4.6%CVE-2022-3982CRITICALBooking Calendar < 3.2.2 - Unauthenticated Arbitrary File UploadEPSS 4.5%CVE-2022-4328CRITICALWooCommerce Checkout Field Manager < 18.0 - Unauthenticated Arbitrary File UploadEPSS 4.4%CVE-2021-24150—Like Button Rating < 2.6.32 - Unauthenticated Full-Read SSRFEPSS 4.4%CVE-2023-0261HIGHWP TripAdvisor Review Slider < 10.8 - Subscriber+ SQLiEPSS 4.4%CVE-2022-0165—Page Builder KingComposer <= 2.9.6 - Open RedirectEPSS 4.3%CVE-2021-24684—PDF Light Viewer < 1.4.12 - Authenticated Command InjectionEPSS 4.3%CVE-2023-0600CRITICALWP Visitor Statistics (Real Time Traffic) < 6.9 - Unauthenticated SQLiEPSS 4.2%CVE-2022-1001—WP Downgrade < 1.2.3 - Admin+ Stored Cross-Site ScriptingEPSS 4.2%CVE-2022-0439—Email Subscribers & Newsletters < 5.3.2 - Subscriber+ Blind SQL injectionEPSS 4.2%CVE-2024-6205HIGHPayPlus Payment Gateway < 6.6.9 - Unauthenticated SQLiEPSS 4.2%CVE-2022-1950—Youzify < 1.2.0 - Unauthenticated SQLiEPSS 4.1%

← previouspage 11 / 210next →