Exposición de WordPress

Blogs, CMS

2045

score de exposición

2.932.393

sitios usan

0

en explotación

174

críticos

CVEs

2380 resultados

CVE-2021-4449CRITICALZoomSounds <= 5.96 - Unauthenticated Arbitrary File UploadEPSS 5.3%CVE-2022-41840HIGHWordPress Welcart eCommerce plugin <= 2.7.7 - Unauth. Directory Traversal vulnerabilityEPSS 5.1%CVE-2022-3254CRITICALAWP Classifieds Plugin < 4.3 - Unauthenticated SQLiEPSS 5.1%CVE-2022-47615CRITICALWordPress LearnPress Plugin <= 4.1.7.3.2 is vulnerable to Local File InclusionEPSS 5.1%CVE-2024-3136CRITICALMasterStudy LMS <= 3.3.3 - Unauthenticated Local File Inclusion via templateEPSS 5.0%CVE-2024-10571CRITICALChartify – WordPress Chart Plugin <= 2.9.5 - Unauthenticated Local File Inclusion via sourceEPSS 4.8%CVE-2021-24402—WP iCommerce <= 1.1.1 - Authenticated (contributor+) SQL InjectionEPSS 4.6%CVE-2019-25141CRITICALEasy WP SMTP <= 1.3.9 - Missing Authorization to Arbitrary Options UpdateEPSS 4.5%CVE-2022-27849MEDIUMWordPress Simple Ajax Chat plugin <= 20220115 - Sensitive Information Disclosure vulnerabilityEPSS 4.4%CVE-2019-1010257—An Information Disclosure / Data Modification issue exists in article2pdf_getfile.php in the article2pdf Wordpress plugin 0.24, 0.25, 0.26, EPSS 4.4%CVE-2020-36719CRITICALListingPro - WordPress Directory & Listing Theme < 2.6.1 - Arbitrary Plugin Installation, Activation and DeactivationEPSS 4.3%CVE-2022-45808CRITICALWordPress LearnPress Plugin <= 4.1.7.3.2 is vulnerable to SQL InjectionEPSS 4.3%CVE-2021-24684—PDF Light Viewer < 1.4.12 - Authenticated Command InjectionEPSS 4.3%CVE-2025-4601HIGHRH - Real Estate WordPress Theme <= 4.4.0 - Authenticated (Subscriber+) Privilege EscalationEPSS 4.2%CVE-2022-1950—Youzify < 1.2.0 - Unauthenticated SQLiEPSS 4.1%CVE-2022-21664HIGHSQL injection in WordPressEPSS 4.0%CVE-2023-5561MEDIUMWordPress < 6.3.2 - Unauthenticated Post Author Email DisclosureEPSS 3.9%CVE-2023-26326—The BuddyForms WordPress plugin, in versions prior to 2.7.8, was affected by an unauthenticated insecure deserialization issue. An unauthentEPSS 3.8%CVE-2020-6008—LifterLMS Wordpress plugin version below 3.37.15 is vulnerable to arbitrary file write leading to remote code executionEPSS 3.8%CVE-2019-1000031—A disk space or quota exhaustion issue exists in article2pdf_getfile.php in the article2pdf Wordpress plugin 0.24, 0.25, 0.26, 0.27. VisitinEPSS 3.7%

← anteriorpágina 4 / 119siguiente →

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →