Exposición de WordPress

Blogs, CMS

2045

score de exposición

2.932.393

sitios usan

0

en explotación

174

críticos

CVEs

2380 resultados

CVE-2024-0699MEDIUMAI Engine <= 2.1.4 - Authenticated(Editor+) Arbitrary File Upload via add_image_from_urlEPSS 1.2%CVE-2022-25811—Transposh WordPress Translation <= 1.0.8 - Admin+ SQL InjectionEPSS 1.2%CVE-2019-25150HIGHEmail Templates <= 1.3 - HTML InjectionEPSS 1.2%CVE-2022-4321MEDIUMPDF Generator for WordPress < 1.1.2 - Reflected XSSEPSS 1.2%CVE-2022-23982MEDIUMWordPress Perfect Brands for WooCommerce plugin <= 2.0.4 - Server Information Exposure vulnerabilityEPSS 1.2%CVE-2021-4340CRITICALuListing <= 1.6.6 - Unauthenticated SQL InjectionEPSS 1.2%CVE-2022-28666MEDIUMWordPress Custom Product Tabs for WooCommerce plugin <= 1.7.7 - Broken Access Control vulnerabilityEPSS 1.2%CVE-2023-23491MEDIUMThe Quick Event Manager WordPress Plugin, version < 9.7.5, is affected by a reflected cross-site scripting vulnerability in the 'category' pEPSS 1.2%CVE-2021-24234—Ivory Search < 4.6.1 - Reflected Cross Site Scripting (XSS)EPSS 1.2%CVE-2021-24797—Tickera < 3.4.8.3 - Unauthenticated Stored Cross-Site ScriptingEPSS 1.2%CVE-2021-24792—Shiny Buttons <= 1.1.0 - Unauthenticated Stored Cross-Site ScriptingEPSS 1.2%CVE-2024-1468HIGHAvada | Website Builder For WordPress & WooCommerce <= 7.11.4 - Authenticated (Contributor+) Arbitrary File UploadEPSS 1.2%CVE-2023-4724HIGHWP All Export (Free < 1.4.0, Pro < 1.8.6) - Admin+ RCEEPSS 1.2%CVE-2021-24289—Store Locator Plus <= 5.5.14 - Authenticated Privilege EscalationEPSS 1.1%CVE-2022-2268—WP All Import < 3.6.8 - Admin+ Arbitrary File UploadEPSS 1.1%CVE-2024-9942CRITICALWPGYM <= 67.1.0 - Unauthenticated Arbitrary File UploadEPSS 1.1%CVE-2024-6172CRITICALEmail Subscribers by Icegram Express – Email Marketing, Newsletters, Automation for WordPress & WooCommerce <= 5.7.25 - Unauthenticated SQL Injection via unsubscribeEPSS 1.1%CVE-2021-4341CRITICALuListing <= 1.6.6 - Unauthenticated Wordpress Options Changes via AJAXEPSS 1.1%CVE-2012-10018HIGHMapplic Lite and Mapplic <= (Various Versions) - Server Side Request Forgery to Cross-Site ScirptingEPSS 1.1%CVE-2021-25022MEDIUMUpdraftPlus < 1.16.66 - Reflected Cross-Site ScriptingEPSS 1.1%

← anteriorpágina 13 / 119siguiente →

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →