Exposição de WordPress

Blogs, CMS

2.045

score de exposição

2.932.393

sites usam

0

em exploração

174

críticos

CVEs

2.380 resultados

CVE-2024-43965HIGHWordPress SendGrid for WordPress plugin <= 1.4 - SQL Injection vulnerabilityEPSS 1.9%CVE-2021-24228—Patreon WordPress < 1.7.2 - Reflected XSS on Login FormEPSS 1.9%CVE-2021-25111—English WordPress Admin < 1.5.2 - Unauthenticated Open RedirectEPSS 1.9%CVE-2020-6009—LearnDash Wordpress plugin version below 3.1.6 is vulnerable to Unauthenticated SQL Injection.EPSS 1.8%CVE-2019-1010104—TechyTalk Quick Chat WordPress Plugin All up to the latest is affected by: SQL Injection. The impact is: Access to the database. The componeEPSS 1.8%CVE-2021-36916HIGHWordPress Hide My WP premium plugin <= 6.2.3 - Unauthenticated SQL injection (SQLi) vulnerabilityEPSS 1.8%CVE-2022-3360HIGHLearnPress < 4.1.7.2 - Unauthenticated PHP Object Injection via REST APIEPSS 1.8%CVE-2022-1756—Newsletter < 7.4.5 - Reflected Cross-Site ScriptingEPSS 1.8%CVE-2022-2444HIGHVisualizer: Tables and Charts Manager for WordPress <= 3.7.9 - Authenticated (Contributor+) PHAR DeserializationEPSS 1.8%CVE-2021-24229—Patreon WordPress < 1.7.2 - Reflected XSS on patreon_save_attachment_patreon_level AJAX actionEPSS 1.8%CVE-2022-0657—5 Stars Rating Funnel < 1.2.53 - Unauthenticated SQLiEPSS 1.7%CVE-2023-2688MEDIUMWordPress File Upload / WordPress File Upload Pro <= 4.19.1 - Authenticated (Administrator+) Path TraversalEPSS 1.7%CVE-2020-4050LOWset-screen-option filter misuse by plugins leading to privilege escalation in WordPressEPSS 1.7%CVE-2019-16780MEDIUMStored cross-site scripting (XSS) in WordPress block editorEPSS 1.7%CVE-2021-26609HIGHWordPress Mangboard SQL-Injection vulnerabilityEPSS 1.7%CVE-2023-0169MEDIUMZoho Forms < 3.0.1 - Contributor+ Stored XSSEPSS 1.6%CVE-2021-24165—Ninja Forms < 3.4.34 - Administrator Open RedirectEPSS 1.6%CVE-2022-27862CRITICALWordPress VikBooking Hotel Booking Engine & PMS plugin <= 1.5.3 - Arbitrary File Upload leading to RCEEPSS 1.6%CVE-2020-5780—Missing Authentication for Critical Function in Icegram Email Subscribers & Newsletters Plugin for WordPress prior to version 4.5.6 allows aEPSS 1.6%CVE-2021-24562—LifterLMS < 4.21.2 - Access Other Student Grades/Answers via IDOREPSS 1.6%

← anteriorpágina 8 / 119próxima →

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →