Exposición de WordPress
Blogs, CMS2045
score de exposición
2.932.393
sitios usan
0
en explotación
174
críticos
CVEs
2380 resultadosCVE-2022-2536MEDIUMTransposh WordPress Translation <= 1.0.9.6 - Authorization BypassEPSS 1.4%CVE-2020-36836HIGHWP Fastest Cache <= 0.9.0.2 - Authenticated (Subscriber+) Arbitrary File DeletionEPSS 1.4%CVE-2022-2376—Directorist < 7.3.1 - Unauthenticated Email Address DisclosureEPSS 1.4%CVE-2017-6102—Persistent XSS in wordpress plugin rockhoist-badges v1.2.2.EPSS 1.4%CVE-2022-34858CRITICALWordPress OAuth 2.0 client for SSO plugin <= 1.11.3 - Authentication Bypass vulnerabilityEPSS 1.3%CVE-2025-7360CRITICALHT Contact Form Widget For Elementor Page Builder & Gutenberg Blocks & Form Builder. <= 2.2.1 - Directory Traversal to Arbitrary File MoveEPSS 1.3%CVE-2021-24957—Advanced Page Visit Counter < 6.1.6 - Subscriber+ Blind SQL injectionEPSS 1.3%CVE-2024-11150CRITICALWordPress User Extra Fields <= 16.6 - Unauthenticated Arbitrary File DeletionEPSS 1.3%CVE-2021-34638MEDIUMWordPress Download Manager <= 3.1.24 Authenticated Directory TraversalEPSS 1.3%CVE-2023-5939—rtMedia for WordPress, BuddyPress and bbPress < 4.6.16 - Admin+ RCEEPSS 1.3%CVE-2022-1037—EXMAGE < 1.0.7 - Admin+ Blind SSRFEPSS 1.3%CVE-2021-33851—A cross-site scripting (XSS) attack can cause arbitrary code (JavaScript) to run in a user's browser and can use an application as the vehicEPSS 1.3%CVE-2021-24858—WP Cookie User Info < 1.0.9 - Admin+ SQL InjectionEPSS 1.3%CVE-2026-6227HIGHBackWPup <= 5.6.6 - Authenticated (Administrator+) Local File Inclusion via 'block_name' ParameterEPSS 1.3%CVE-2021-24669—MAZ Loader < 1.3.3 - Contributor+ SQL InjectionEPSS 1.3%CVE-2021-25037—All In One SEO < 4.1.5.3 - Authenticated SQL InjectionEPSS 1.3%CVE-2022-2557—WordPress Team Members Showcase < 4.1.2 - Subscriber+ Arbitrary File Read and DeletionEPSS 1.3%CVE-2021-24889—Ninja Forms < 3.6.4 - Admin+ SQL InjectionEPSS 1.3%CVE-2023-6826HIGHE2Pdf <= 1.20.25 - Authenticated (Administrator+) Arbitrary File UploadEPSS 1.3%CVE-2021-25067—Landing Page Builder < 1.4.9.6 - Authenticated Reflected Cross-Site Scripting (XSS)EPSS 1.3%
¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →