Exposição de WordPress
Blogs, CMS2.045
score de exposição
2.932.393
sites usam
0
em exploração
174
críticos
CVEs
2.380 resultadosCVE-2012-10027CRITICALWordPress Plugin WP-Property <= 1.35.0 PHP File UploadEPSS 1.6%CVE-2024-9659CRITICALSchool Management <= 91.5.0 - Unauthenticated Arbitrary File UploadEPSS 1.6%CVE-2025-7340CRITICALHT Contact Form Widget For Elementor Page Builder & Gutenberg Blocks & Form Builder. <= 2.2.1 - Unauthenticated Arbitrary File UploadEPSS 1.6%CVE-2020-36723MEDIUMListingPro - WordPress Directory & Listing Theme < 2.6.1 - Sensitive Information DisclosureEPSS 1.6%CVE-2022-3805HIGHJeg Elementor Kit <= 2.5.6 - Unauthenticated Authorization BypassEPSS 1.6%CVE-2021-24248—Business Directory Plugin < 5.11.1 - Authenticated PHP4 Upload to RCEEPSS 1.6%CVE-2024-13322HIGHAds Pro Plugin - Multi-Purpose WordPress Advertising Manager <= 4.88 - Unauthenticated SQL InjectionEPSS 1.6%CVE-2024-13609MEDIUM1 Click WordPress Migration Plugin – 100% FREE for a limited time <= 2.2 - Unauthenticated Sensitive Information Exposure via Database Backup in class-ocm-backup.phpEPSS 1.6%CVE-2021-24951—LearnPress < 4.1.4 - Admin+ SQL InjectionEPSS 1.6%CVE-2021-24875—eCommerce Product Catalog for WordPress < 3.0.39 - Reflected Cross-Site ScriptingEPSS 1.6%CVE-2020-36724CRITICALWordable <= 3.1.1 - Authentication BypassEPSS 1.5%CVE-2024-2411CRITICALMasterStudy LMS <= 3.3.0 - Unauthenticated Local File Inclusion via modalEPSS 1.5%CVE-2020-11025MEDIUMAuthenticated cross-site scripting (XSS) in WordPress CustomizerEPSS 1.5%CVE-2021-24537—Similar Posts <= 3.1.5 - Admin+ Arbitrary PHP Code ExecutionEPSS 1.5%CVE-2021-39201HIGHAuthenticated cross-site scripting (XSS) in WordPress editorEPSS 1.5%CVE-2021-24392—WordPress Membership SwiftCloud.io <= 1.0 - Authenticated SQL InjectionEPSS 1.5%CVE-2021-24390—Alipay <= 3.7.2 - Authenticated SQL InjectionEPSS 1.5%CVE-2022-0230—Better WordPress Google XML Sitemaps <= 1.4.1 - Unauthenticated Stored Cross-Site ScriptingEPSS 1.5%CVE-2022-0537—MapPress Maps for WordPress < 2.73.13 - Admin+ File Upload to Remote Code ExecutionEPSS 1.5%CVE-2017-2217—Open redirect vulnerability in WordPress Download Manager prior to version 2.9.51 allows remote attackers to redirect users to arbitrary webEPSS 1.5%
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →