Exposición de WordPress

Blogs, CMS

2045

score de exposición

2.932.393

sitios usan

0

en explotación

174

críticos

CVEs

2381 resultados

CVE-2022-41791MEDIUMWordPress ProfileGrid plugin <= 5.1.6 - Auth. CSV Injection vulnerabilityEPSS 0.6%CVE-2025-26885HIGHWordPress Assistant Plugin <= 1.5.1 - PHP Object Injection vulnerabilityEPSS 0.6%CVE-2023-4151MEDIUMStore Locator WordPress < 1.4.13 - Reflected XSSEPSS 0.6%CVE-2023-2299MEDIUMOnline Booking & Scheduling Calendar for WordPress by vcita <= 4.4.2 - Missing Authorization on REST-APIEPSS 0.6%CVE-2021-24250—Business Directory Plugin < 5.11.2 - Authenticated Stored Cross-Site ScriptingEPSS 0.6%CVE-2025-6991HIGHKallyas <= 4.21.0 - Authenticated (Contributor+) Local File InclusionEPSS 0.6%CVE-2023-7204HIGHWP STAGING WordPress Backup Plugin < 3.2.0 - Unauthorized Sensitive Data ExposureEPSS 0.6%CVE-2022-3794MEDIUMJeg Elementor Kit <= 2.5.6 - Authorization BypassEPSS 0.6%CVE-2025-11456CRITICALELEX WordPress HelpDesk & Customer Ticketing System <= 3.3.1 - Unauthenticated Arbitrary File UploadEPSS 0.6%CVE-2025-0429HIGHAI Power: Complete AI Pack <= 1.8.96 - Authenticated (Admin+) PHP Object Injection via wpaicg_export_ai_formsEPSS 0.6%CVE-2025-0428HIGHAI Power: Complete AI Pack <= 1.8.96 - Authenticated (Admin+) PHP Object Injection via wpaicg_export_promptsEPSS 0.6%CVE-2021-4455CRITICALWordpress Plugin Smart Product Review <= 1.0.4 - Unauthenticated Arbitrary File UploadEPSS 0.6%CVE-2023-35909MEDIUMWordPress Ninja Forms Plugin <= 3.6.25 is vulnerable to Denial of Service AttackEPSS 0.6%CVE-2022-36340MEDIUMWordPress MailOptin plugin <= 1.2.49.0 - Unauthenticated Optin Campaign Cache Deletion vulnerabilityEPSS 0.6%CVE-2021-24180—Related Posts for WordPress < 2.0.4 - Authenticated Reflected Cross-Site Scripting (XSS)EPSS 0.6%CVE-2024-31115CRITICALWordPress Chauffeur Taxi Booking System for WordPress plugin <= 7.2 - Arbitrary File Upload vulnerabilityEPSS 0.6%CVE-2026-1992HIGHExactMetrics 8.6.0 - 9.0.2 - Authenticated (Custom) Insecure Direct Object Reference to Arbitrary Plugin InstallationEPSS 0.6%CVE-2025-4187MEDIUMUserPro - Community and User Profile WordPress Plugin <= 5.1.10 - Unauthenticated Arbitrary File ReadEPSS 0.6%CVE-2022-42461MEDIUMWordPress miniOrange's Google Authenticator plugin <= 5.6.1 - Broken Access Control vulnerabilityEPSS 0.6%CVE-2022-45066MEDIUMWordPress WooSwipe WooCommerce Gallery plugin <= 2.0.1 - Auth. Broken Access Control vulnerabilityEPSS 0.6%

← anteriorpágina 29 / 120siguiente →

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →