Vulnerabilities in unknown
4,197 resultsCVE-2022-0533—Ditty (formerly Ditty News Ticker) < 3.0.15 - Reflected Cross-Site Scripting (XSS)EPSS 1.9%CVE-2025-1232HIGHSite Reviews < 7.2.5 - Unauthenticated Stored XSSEPSS 1.9%CVE-2022-1168—JobSearch < 1.5.1 - Unauthenticated Reflected Cross-Site Scripting (XSS)EPSS 1.8%CVE-2021-24254—College Publisher Import <= 0.1 - Arbitrary File Upload to RCEEPSS 1.8%CVE-2021-24857—ToTop Link <= 1.7.1 - Unauthenticated PHP Object InjectionEPSS 1.8%CVE-2024-4399CRITICALCAS <= 1.0.0 - Unauthenticated SSRFEPSS 1.8%CVE-2022-1170—JobMonster < 4.5.2.9 - Unauthenticated Reflected Cross-Site ScriptingEPSS 1.8%CVE-2024-4180CRITICALThe Events Calendar < 6.4.0.1 - Reflected XSSEPSS 1.8%CVE-2022-4298CRITICALWholesale Market < 2.2.1 - Unauthenticated Arbitrary File DownloadEPSS 1.8%CVE-2022-1916—Active Products Tables for WooCommerce < 1.0.5 - Reflected Cross-Site-ScriptingEPSS 1.8%CVE-2022-0694—Advanced Booking Calendar < 1.7.0 - Unauthenticated SQL InjectionEPSS 1.8%CVE-2021-24948—The Plus Addons for Elementor Pro < 5.0.7 - Sensitive Data DisclosureEPSS 1.8%CVE-2021-24272—Fitness Calculators < 1.9.6 - Cross-Site Request Forgery to Cross-Site Scripting (XSS)EPSS 1.8%CVE-2021-25016—Chaty < 2.8.3 - Reflected Cross-Site ScriptingEPSS 1.8%CVE-2024-6420HIGHHide My WP Ghost < 5.2.02 - Hidden Login Page DisclosureEPSS 1.8%CVE-2022-0234—WOOCS < 1.3.7.5 - Reflected Cross-Site ScriptingEPSS 1.8%CVE-2022-2034—Sensei LMS < 4.5.0 - Unauthenticated Private Messages Disclosure via Rest APIEPSS 1.8%CVE-2022-3360HIGHLearnPress < 4.1.7.2 - Unauthenticated PHP Object Injection via REST APIEPSS 1.8%CVE-2022-3689HIGHHTML Forms < 1.3.25 - Admin+ SQLiEPSS 1.8%CVE-2022-4774CRITICALBit Form < 1.9 - RCE via Unauthenticated Arbitrary File UploadEPSS 1.8%