Exposición de WordPress

Blogs, CMS

2045

score de exposición

2.932.393

sitios usan

0

en explotación

174

críticos

CVEs

2380 resultados

CVE-2022-21663MEDIUMAuthenticated Object Injection in Multisites in WordPressEPSS 3.7%CVE-2020-4047MEDIUMAuthenticated XSS via media attachment page in WordPressEPSS 3.6%CVE-2024-9290CRITICALSuper Backup & Clone - Migrate for WordPress <= 2.3.3 - Unauthenticated Arbitrary File UploadEPSS 3.5%CVE-2021-24217—Facebook for WordPress < 3.0.0 - PHP Object Injection with POP ChainEPSS 3.5%CVE-2022-2461MEDIUMTransposh WordPress Translation <= 1.0.9.6 - Unauthorized Settings ChangeEPSS 3.5%CVE-2023-4278HIGHMasterStudy LMS < 3.0.18 - Unauthenticated Instructor Account CreationEPSS 3.5%CVE-2022-33965CRITICALWordPress WP Visitor Statistics plugin <= 5.7 - Multiple Unauthenticated SQL Injection (SQLi) vulnerabilitiesEPSS 3.3%CVE-2024-4620CRITICALArForms < 6.6 - Unauthenticated RCEEPSS 3.3%CVE-2021-24308—LifterLMS < 4.21.1 - Authenticated Stored XSS in Edit ProfileEPSS 3.2%CVE-2022-2711HIGHWP All Import < 3.6.9 - Admin+ Directory traversal via file uploadEPSS 3.2%CVE-2022-2544—Ninja Job Board < 1.3.3 - Resume Disclosure via Directory ListingEPSS 3.2%CVE-2022-3590MEDIUMWP <= 6.1.1 - Unauthenticated Blind SSRF via DNS RebindingEPSS 3.1%CVE-2024-9193CRITICALWHMpress <= 6.3-revision-0 - Unauthenticated Local File Inclusion to Arbitrary Options UpdateEPSS 3.1%CVE-2021-24884—Formidable Form Builder < 4.09.05 - Unauthenticated Stored Cross-Site ScriptingEPSS 3.1%CVE-2021-25036—All In One SEO < 4.1.5.3 - Authenticated Privilege EscalationEPSS 3.0%CVE-2022-41978HIGHWordPress Zoho CRM Lead Magnet plugin <= 1.7.5.8 - Auth. Arbitrary Options Update vulnerabilityEPSS 3.0%CVE-2022-2462MEDIUMTransposh WordPress Translation <= 1.0.9.6 - Sensitive Information DisclosureEPSS 2.9%CVE-2025-1562CRITICALRecover WooCommerce Cart Abandonment, Newsletter, Email Marketing, Marketing Automation By FunnelKit <= 3.5.3 - Missing Authorization to Unauthenticated Arbitrary Plugin InstallationEPSS 2.9%CVE-2021-24962—WordPress File Upload < 4.16.3 - Contributor+ Path Traversal to RCEEPSS 2.8%CVE-2020-4049LOWAuthenticated self-XSS via theme uploads in WordPressEPSS 2.8%

← anteriorpágina 5 / 119siguiente →

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →