Exposição de WordPress
Blogs, CMS2.045
score de exposição
2.932.393
sites usam
0
em exploração
174
críticos
CVEs
2.381 resultadosCVE-2021-25038—Multisite User Sync/Unsync < 2.1.2 - Reflected Cross-Site ScriptingEPSS 0.8%CVE-2021-25039—Multisite Content Copier/Updater < 2.1.0 - Reflected Cross-Site ScriptingEPSS 0.8%CVE-2022-0503—Multisite Content Copier/Updater < 2.1.2 - Reflected Cross-Site ScriptingEPSS 0.8%CVE-2023-3279MEDIUMNextGEN Gallery < 3.39 - Admin+ Local File InclusionEPSS 0.8%CVE-2025-32257MEDIUMWordPress 1 Click WordPress Migration plugin <= 2.5.7 - Sensitive Data Exposure vulnerabilityEPSS 0.8%CVE-2023-6113HIGHWP Staging (Free < 3.1.3, Pro < 5.1.3) - Unauthenticated Backup DownloadEPSS 0.8%CVE-2024-3412CRITICALWP STAGING WordPress Backup Plugin – Migration Backup Restore <= 3.4.3 - Authenticated (Admin+) Arbitrary File UploadEPSS 0.8%CVE-2022-38134MEDIUMWordPress Customer Reviews for WooCommerce plugin <= 5.3.5 - Authenticated Broken Access Control vulnerabilityEPSS 0.8%CVE-2024-0780HIGHEnjoy Social Feed <= 6.2.2 - Subscriber+ Plugin Database ResetEPSS 0.8%CVE-2021-24961—WordPress File Upload < 4.16.3 - Contributor+ Stored Cross-Site Scripting via ShortcodeEPSS 0.8%CVE-2021-24960—WordPress File Upload < 4.16.3 - Contributor+ Stored Cross-Site Scripting via Malicious SVGEPSS 0.8%CVE-2023-4404CRITICALDonation Forms by Charitable <= 1.7.0.12 - Unauthenticated Privilege EscalationEPSS 0.8%CVE-2023-49750CRITICALWordPress Couponis Demo Plugin < 2.2 is vulnerable to SQL InjectionEPSS 0.8%CVE-2022-2046—Directorist - Business Directory Plugin < 7.2.3 - Admin+ Arbitrary File UploadEPSS 0.8%CVE-2021-24504—WP LMS <= 1.1.2 - Stored Cross-Site Scripting (XSS)EPSS 0.8%CVE-2021-36885MEDIUMWordPress Contact Form 7 Database Addon – CFDB7 plugin <= 1.2.6.1 - Unauthenticated Stored Cross-Site Scripting (XSS) vulnerabilityEPSS 0.8%CVE-2022-25617MEDIUMWordPress Code Snippets plugin <= 2.14.3 - Reflected Cross-Site Scripting (XSS) vulnerabilityEPSS 0.8%CVE-2024-1505HIGHAcademy LMS – eLearning and online course solution for WordPress <= 1.9.19 - Authenticated (Subscriber+) Privilege EscalationEPSS 0.8%CVE-2022-38070MEDIUMWordPress Pop-up plugin <= 1.1.5 - Privilege Escalation vulnerabilityEPSS 0.8%CVE-2023-5949—SmartCrawl WordPress SEO checker < 3.8.3 - Unauthenticated Password Protected Post DisclosureEPSS 0.8%
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →