Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

wordpress wordpress 2.0.2 vulnerabilities and exploits

(subscribe to this query)

4.3
CVSSv2
CVE-2013-7276
Cross-site scripting (XSS) vulnerability in inc/raf_form.php in the Recommend to a friend plugin 2.0.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the current_url parameter....
Recommend To A Friend Project Recommend To A Friend 2.0.2
4.3
CVSSv2
CVE-2012-1068
Cross-site scripting (XSS) vulnerability in the rc_ajax function in core.php in the WP-RecentComments plugin before 2.0.7 for WordPress allows remote attackers to inject arbitrary web script or HTML via the page parameter, related to AJAX paging....
Mg12 Wp-recentcomments 2.0.4Mg12 Wp-recentcomments 2.0.3Mg12 Wp-recentcomments 2.0.6Mg12 Wp-recentcomments 2.0.5Mg12 Wp-recentcomments 1.8.1Mg12 Wp-recentcomments 1.8Mg12 Wp-recentcomments 2.0.2Mg12 Wp-recentcomments 2.0.1Mg12 Wp-recentcommentsMg12 Wp-recentcomments 2.0Mg12 Wp-recentcomments 1.8.2
4.3
CVSSv2
CVE-2011-3864
Cross-site scripting (XSS) vulnerability in the The Erudite theme before 2.7.9 for WordPress allows remote attackers to inject arbitrary web script or HTML via the cpage parameter....
Somadesign The Erudite 1.4Somadesign The Erudite 2.0Somadesign The Erudite 2.7.1Somadesign The Erudite 2.7.4Somadesign The Erudite 1.0Somadesign The Erudite 1.1Somadesign The Erudite 1.2Somadesign The Erudite 2.7.7Somadesign The EruditeSomadesign The Erudite 2.5Somadesign The Erudite 2.6Somadesign The Erudite 2.6.1Somadesign The Erudite 2.6.2Somadesign The Erudite 1.3Somadesign The Erudite 1.4.1Somadesign The Erudite 2.0.2Somadesign The Erudite 2.7Somadesign The Erudite 2.7.2
4.3
CVSSv2
CVE-2016-11013
The wp-listings plugin before 2.0.2 for WordPress has includes/views/single-listing.php XSS....
4.3
CVSSv2
CVE-2014-3841
Cross-site scripting (XSS) vulnerability in the Contact Bank plugin before 2.0.20 for WordPress allows remote attackers to inject arbitrary web script or HTML via the Label field, related to form layout configuration. NOTE: some of these details are obtained from third party...
Tech-banker Contact Bank 2.0.16Tech-banker Contact Bank 2.0.14Tech-banker Contact Bank 2.0.7Tech-banker Contact BankTech-banker Contact Bank 2.0.18Tech-banker Contact Bank 2.0.4Tech-banker Contact Bank 2.0.3Tech-banker Contact Bank 2.0.2Tech-banker Contact Bank 2.0.1Tech-banker Contact Bank 2.0.12Tech-banker Contact Bank 2.0.11Tech-banker Contact Bank 2.0.10Tech-banker Contact Bank 2.0.9Tech-banker Contact Bank 2.0.17Tech-banker Contact Bank 2.0.15Tech-banker Contact Bank 2.0.13Tech-banker Contact Bank 2.0.8Tech-banker Contact Bank 2.0.6Tech-banker Contact Bank 2.0.5Tech-banker Contact Bank 2.0.0
4.3
CVSSv2
CVE-2011-3858
Cross-site scripting (XSS) vulnerability in the Pixiv Custom theme before 2.1.6 for WordPress allows remote attackers to inject arbitrary web script or HTML via the s parameter....
Zespia Pixiv Custom 1.1.9Zespia Pixiv Custom 1.1.12Zespia Pixiv Custom 1.3.0Zespia Pixiv Custom 2.0Zespia Pixiv Custom 2.1.3Zespia Pixiv CustomZespia Pixiv Custom 1.1.2Zespia Pixiv Custom 1.1.13Zespia Pixiv Custom 1.1.14Zespia Pixiv Custom 1.2.0Zespia Pixiv Custom 1.2.1Zespia Pixiv Custom 1.0.1Zespia Pixiv Custom 1.0.2Zespia Pixiv Custom 1.1Zespia Pixiv Custom 1.1.1Zespia Pixiv Custom 2.0.4Zespia Pixiv Custom 2.0.7Zespia Pixiv Custom 2.1.0Zespia Pixiv Custom 2.1.1Zespia Pixiv Custom 2.1.2Zespia Pixiv Custom 1.1.5Zespia Pixiv Custom 1.1.6Zespia Pixiv Custom 1.1.4Zespia Pixiv Custom 1.1.7Zespia Pixiv Custom 1.1.10Zespia Pixiv Custom 1.3.1Zespia Pixiv Custom 2.0.2Zespia Pixiv Custom 2.1.4Zespia Pixiv Custom 1.0Zespia Pixiv Custom 1.1.11Zespia Pixiv Custom 1.1.3
10
CVSSv2
CVE-2007-2714
Unspecified vulnerability in akismet.php in Matt Mullenweg Akismet before 2.0.2, a WordPress plugin, has unknown impact and attack vectors....
5
CVSSv2
CVE-2014-5337
The WordPress Mobile Pack plugin before 2.0.2 for WordPress does not properly restrict access to password protected posts, which allows remote attackers to obtain sensitive information via an exportarticles action to export/content.php....
4.3
CVSSv2
CVE-2006-1263
Multiple "unannounced" cross-site scripting (XSS) vulnerabilities in WordPress before 2.0.2 allow remote attackers to inject arbitrary web script or HTML via unknown attack vectors....
4.3
CVSSv2
CVE-2011-4618
Cross-site scripting (XSS) vulnerability in advancedtext.php in Advanced Text Widget plugin before 2.0.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the page parameter....
Simplerealtytheme Advanced Text Widget Plugin
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2021-32471CVE-2021-31167CVE-2021-22204command injectionCVE-2021-31204cross-site scriptingCVE-2021-31912encryptionCVE-2021-28465
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook