Exposición de WordPress

Blogs, CMS

2045

score de exposición

2.932.393

sitios usan

0

en explotación

174

críticos

CVEs

2381 resultados

CVE-2021-24969—Download Manager < 3.2.22 - Subscriber+ Stored Cross-Site ScriptingEPSS 0.6%CVE-2021-24654—User Registration < 2.0.2 - Low Privilege Stored Cross-Site ScriptingEPSS 0.6%CVE-2024-0907MEDIUMNEX-Forms – Ultimate Form Builder – Contact forms and much more <= 8.5.6 - Missing Authorization via restore_records()EPSS 0.6%CVE-2024-1129MEDIUMNEX-Forms – Ultimate Form Builder – Contact forms and much more <= 8.5.6 - Missing Authorization via set_starred()EPSS 0.6%CVE-2024-1130MEDIUMNEX-Forms – Ultimate Form Builder – Contact forms and much more <= 8.5.6 - Missing Authorization via set_read()EPSS 0.6%CVE-2021-24623—WordPress Advanced Ticket System < 1.0.64 - Authenticated Stored Cross-Site Scripting (XSS)EPSS 0.6%CVE-2021-24381—NinjaForms < 3.5.8.2 - Admin+ Stored Cross-Site ScriptingEPSS 0.6%CVE-2021-24230—Patreon WordPress < 1.7.0 - CSRF to Overwrite/Create User MetaEPSS 0.6%CVE-2021-24787—Client Invoicing by Sprout Invoices < 19.9.7 - Admin+ Stored Cross-Site ScriptingEPSS 0.6%CVE-2021-24744—WordPress Contact Forms by Cimatti < 1.4.12 - Admin+ Stored Cross-Site ScriptingEPSS 0.6%CVE-2021-24708—WP All Export < 1.3.1 - Admin+ Stored Cross-Site ScriptingEPSS 0.6%CVE-2021-24718—ARForms Form Builder < 1.5 - Admin+ Stored Cross Site ScriptingEPSS 0.6%CVE-2021-24714—WP All Import < 3.6.3 - Admin+ Stored Cross-Site ScriptingEPSS 0.6%CVE-2021-24673—Appointment Hour Booking < 1.3.16 - Authenticated Stored Cross-Site ScriptingEPSS 0.6%CVE-2022-29417MEDIUMWordPress ShortPixel Adaptive Images plugin <= 3.3.1 - Subscriber+ Plugin Settings Update vulnerabilityEPSS 0.6%CVE-2024-37259HIGHWordPress WP Extended plugin <= 2.4.7 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.6%CVE-2026-7459HIGHSimple History – Track, Log, and Audit WordPress Changes <= 5.26.0 - Authenticated (Subscriber+) Account Takeover via Missing Authorization on Event Reaction EndpointEPSS 0.6%CVE-2022-2190MEDIUMEnvira Gallery Lite < 1.8.4.7 - Reflected Cross-Site ScriptingEPSS 0.6%CVE-2022-43492MEDIUMWordPress Comments – wpDiscuz plugin 7.4.2 - Auth. Insecure Direct Object References (IDOR) vulnerabilityEPSS 0.6%CVE-2024-13643HIGHZox News <= 3.17.0 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Options ModificationEPSS 0.6%

← anteriorpágina 33 / 120siguiente →

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →