Exposição de WordPress
Blogs, CMS2.045
score de exposição
2.932.393
sites usam
0
em exploração
174
críticos
CVEs
2.381 resultadosCVE-2023-26015HIGHWordPress MapPress Maps for WordPress Plugin <= 2.85.4 is vulnerable to SQL InjectionEPSS 0.7%CVE-2021-24152—Popup Builder < 3.74 - Authenticated Reflected Cross-Site Scripting (XSS)EPSS 0.7%CVE-2021-36869MEDIUMWordPress Ivory Search plugin <= 4.6.6 - Reflected Cross-Site Scripting (XSS) vulnerabilityEPSS 0.7%CVE-2023-32121HIGHWordPress Zero Spam Plugin <= 5.4.4 is vulnerable to SQL InjectionEPSS 0.7%CVE-2021-4345MEDIUMuListing <= 1.6.6 - Unauthenticated Arbitrary Roles and Capabilities Creation/DeletionEPSS 0.7%CVE-2023-25455MEDIUMWordPress WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) plugin <= 7.6.0 - Arbitrary Content Deletion vulnerabilityEPSS 0.7%CVE-2022-43500MEDIUMCross-site scripting vulnerability in WordPress versions prior to 6.0.3 allows a remote unauthenticated attacker to inject an arbitrary scriEPSS 0.7%CVE-2023-28788HIGHWordPress Advanced Page Visit Counter Plugin <= 6.4.2 is vulnerable to SQL InjectionEPSS 0.7%CVE-2024-22027MEDIUMImproper input validation vulnerability in WordPress Quiz Maker Plugin prior to 6.5.0.6 allows a remote authenticated attacker to perform a EPSS 0.7%CVE-2024-11205HIGHWPForms 1.8.4 - 1.9.2.1 - Missing Authorization to Authenticated (Subscriber+) Payment Refund and Subscription CancellationEPSS 0.7%CVE-2025-31015HIGHWordPress SMTP Service, Email Delivery Solved! — MailHawk plugin <= 1.3.1 - Local File Inclusion VulnerabilityEPSS 0.7%CVE-2022-36793MEDIUMWordPress WP Shop plugin <= 3.9.6 - Unauthenticated Plugin Settings Change & Data Deletion vulnerabilitiesEPSS 0.7%CVE-2022-38140HIGHWordPress SEO Plugin by Squirrly SEO Plugin <= 12.1.10 is vulnerable to Arbitrary File UploadEPSS 0.7%CVE-2023-4691HIGHBookly < 22.4 - Admin+ SQLiEPSS 0.7%CVE-2021-36823MEDIUMWordPress Absolutely Glamorous Custom Admin plugin <= 6.8 - Auth. Stored Cross-Site Scripting (XSS) vulnerabilityEPSS 0.7%CVE-2024-13421CRITICALReal Estate 7 WordPress <= 3.5.1 - Unauthenticated Privilege Escalation to AdministratorEPSS 0.7%CVE-2024-10799MEDIUMEventer <= 3.9.7 - Authenticated (Subscriber+) Arbitrary File ReadEPSS 0.7%CVE-2022-29415MEDIUMWordPress Ravpage plugin <= 2.16 - Unauthenticated Reflected Cross-Site Scripting (XSS) vulnerabilityEPSS 0.7%CVE-2021-36895MEDIUMWordPress Tripetto plugin <= 5.1.4 - Unauthenticated Cross-Site Scripting (XSS) vulnerability via SVG image uploadEPSS 0.7%CVE-2024-8791CRITICALDonation Forms by Charitable – Donations Plugin & Fundraising Platform for WordPress <= 1.8.1.14 - Insecure Direct Object Reference to Account Takeover and Privilege EscalationEPSS 0.7%
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →