Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

wordpress wordpress 3.0.4 vulnerabilities and exploits

(subscribe to this query)

4.3
CVSSv2
CVE-2013-4626
Cross-site scripting (XSS) vulnerability in the BackWPup plugin before 3.0.13 for WordPress allows remote attackers to inject arbitrary web script or HTML via the tab parameter to wp-admin/admin.php....
Marketpress Backwpup Plugin 3.0.7Marketpress Backwpup Plugin 3.0.6Marketpress Backwpup Plugin 3.0.5Marketpress Backwpup Plugin 3.0.4Marketpress Backwpup Plugin 3.0Marketpress Backwpup PluginMarketpress Backwpup Plugin 3.0.10Marketpress Backwpup Plugin 3.0.8Marketpress Backwpup Plugin 3.0.3Marketpress Backwpup Plugin 3.0.1Marketpress Backwpup Plugin 3.0.11Marketpress Backwpup Plugin 3.0.9Marketpress Backwpup Plugin 3.0.2
6.8
CVSSv2
CVE-2013-2707
Cross-site request forgery (CSRF) vulnerability in the Login With Ajax plugin before 3.1 for WordPress allows remote attackers to hijack the authentication of arbitrary users for requests that modify this plugin's settings....
Netweblogic Login With Ajax 2.2Netweblogic Login With Ajax 2.1.5Netweblogic Login With Ajax 2.1.4Netweblogic Login With Ajax 2.1.3Netweblogic Login With Ajax 3.0Netweblogic Login With Ajax 3.0.1Netweblogic Login With Ajax 3.0.2Netweblogic Login With Ajax 3.0.3Netweblogic Login With Ajax 3.0.4.1Netweblogic Login With Ajax 2.1.1Netweblogic Login With Ajax 2.1Netweblogic Login With Ajax 3.0b3Netweblogic Login With Ajax 3.0.4Netweblogic Login With Ajax 3.1Netweblogic Login With Ajax 2.21Netweblogic Login With Ajax 2.1.2Netweblogic Login With Ajax 3.0b
4.3
CVSSv2
CVE-2017-12131
The Easy Testimonials plugin 3.0.4 for WordPress has XSS in include/settings/display.options.php, as demonstrated by the Default Testimonials Width, View More Testimonials Link, and Testimonial Excerpt Options screens....
5
CVSSv2
CVE-2011-3818
WordPress 2.9.2 and 3.0.4 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by wp-admin/includes/user.php and certain other files....
6.8
CVSSv2
CVE-2021-24218
The wp_ajax_save_fbe_settings and wp_ajax_delete_fbe_settings AJAX actions of the Facebook for WordPress plugin before 3.0.4 were vulnerable to CSRF due to a lack of nonce protection. The settings in the saveFbeSettings function had no sanitization allowing for script tags to be...
4.3
CVSSv2
CVE-2010-4536
Multiple cross-site scripting (XSS) vulnerabilities in KSES, as used in WordPress before 3.0.4, allow remote attackers to inject arbitrary web script or HTML via vectors related to (1) the & (ampersand) character, (2) the case of an attribute name, (3) a padded entity, and...
4.3
CVSSv2
CVE-2012-4263
Cross-site scripting (XSS) vulnerability in inc/admin/content.php in the Better WP Security (better_wp_security) plugin before 3.2.5 for WordPress allows remote attackers to inject arbitrary web script or HTML via the HTTP_USER_AGENT header....
Bit51 Better-wp-security 3.2.1Bit51 Better-wp-security 3.2Bit51 Better-wp-security 3.0.7Bit51 Better-wp-security 3.0.6Bit51 Better-wp-security 2.18Bit51 Better-wp-security 2.17Bit51 Better-wp-security 2.9Bit51 Better-wp-security 2.8Bit51 Better-wp-security 2.1Bit51 Better-wp-security 2.0Bit51 Better-wp-security 1.4Bit51 Better-wp-security 1.3Bit51 Better-wp-security 0.11Bit51 Better-wp-security 0.10Bit51 Better-wp-security 0.3Bit51 Better-wp-security 0.2Bit51 Better-wp-security -Bit51 Better-wp-securityBit51 Better-wp-security 3.2.3Bit51 Better-wp-security 3.2.2Bit51 Better-wp-security 3.0.9Bit51 Better-wp-security 3.0.8Bit51 Better-wp-security 3.0.1Bit51 Better-wp-security 3.0Bit51 Better-wp-security 2.11Bit51 Better-wp-security 2.10Bit51 Better-wp-security 2.3Bit51 Better-wp-security 2.2Bit51 Better-wp-security 1.6Bit51 Better-wp-security 1.5Bit51 Better-wp-security 0.14Bit51 Better-wp-security 0.13Bit51 Better-wp-security 0.5Bit51 Better-wp-security 0.4Bit51 Better-wp-security 3.1Bit51 Better-wp-security 3.0.12Bit51 Better-wp-security 3.0.5Bit51 Better-wp-security 3.0.4Bit51 Better-wp-security 2.16Bit51 Better-wp-security 2.15Bit51 Better-wp-security 2.7Bit51 Better-wp-security 2.6Bit51 Better-wp-security 1.9Bit51 Better-wp-security 1.8.1Bit51 Better-wp-security 1.2Bit51 Better-wp-security 1.1Bit51 Better-wp-security 1.0Bit51 Better-wp-security 0.9Bit51 Better-wp-security 0.8Bit51 Better-wp-security 0.1Bit51 Better-wp-security 3.2.5Bit51 Better-wp-security 3.0.11Bit51 Better-wp-security 3.0.10Bit51 Better-wp-security 3.0.3Bit51 Better-wp-security 3.0.2Bit51 Better-wp-security 2.14Bit51 Better-wp-security 2.13Bit51 Better-wp-security 2.12Bit51 Better-wp-security 2.5Bit51 Better-wp-security 2.4Bit51 Better-wp-security 1.8Bit51 Better-wp-security 1.7Bit51 Better-wp-security 0.16Bit51 Better-wp-security 0.15Bit51 Better-wp-security 0.7Bit51 Better-wp-security 0.6
4.3
CVSSv2
CVE-2012-4264
Multiple cross-site scripting (XSS) vulnerabilities in the Better WP Security (better_wp_security) plugin before 3.2.5 for WordPress allow remote attackers to inject arbitrary web script or HTML via unspecified vectors related to "server variables," a different...
Bit51 Better-wp-security 3.2.3Bit51 Better-wp-security 3.2.1Bit51 Better-wp-security 3.1Bit51 Better-wp-security 3.0.8Bit51 Better-wp-security 3.0.6Bit51 Better-wp-security 2.18Bit51 Better-wp-security 2.16Bit51 Better-wp-security 2.11Bit51 Better-wp-security 2.9Bit51 Better-wp-security 2.7Bit51 Better-wp-security 2.2Bit51 Better-wp-security 2.0Bit51 Better-wp-security 1.4Bit51 Better-wp-security 1.2Bit51 Better-wp-security 0.14Bit51 Better-wp-security 0.11Bit51 Better-wp-security 0.9Bit51 Better-wp-security 0.4Bit51 Better-wp-security 0.2Bit51 Better-wp-security -Bit51 Better-wp-security 3.0.12Bit51 Better-wp-security 3.0.11Bit51 Better-wp-security 3.0.10Bit51 Better-wp-security 3.0.9Bit51 Better-wp-security 2.15Bit51 Better-wp-security 2.14Bit51 Better-wp-security 2.13Bit51 Better-wp-security 2.12Bit51 Better-wp-security 1.8.1Bit51 Better-wp-security 1.8Bit51 Better-wp-security 1.7Bit51 Better-wp-security 1.6Bit51 Better-wp-security 0.8Bit51 Better-wp-security 0.7Bit51 Better-wp-security 0.6Bit51 Better-wp-security 0.5Bit51 Better-wp-security 0.1Bit51 Better-wp-security 3.2.5Bit51 Better-wp-securityBit51 Better-wp-security 3.0.4Bit51 Better-wp-security 3.0.3Bit51 Better-wp-security 3.0.2Bit51 Better-wp-security 3.0.1Bit51 Better-wp-security 2.6Bit51 Better-wp-security 2.5Bit51 Better-wp-security 2.4Bit51 Better-wp-security 2.3Bit51 Better-wp-security 1.1Bit51 Better-wp-security 1.0Bit51 Better-wp-security 0.16Bit51 Better-wp-security 0.15Bit51 Better-wp-security 3.2.2Bit51 Better-wp-security 3.2Bit51 Better-wp-security 3.0.7Bit51 Better-wp-security 3.0.5Bit51 Better-wp-security 3.0Bit51 Better-wp-security 2.17Bit51 Better-wp-security 2.10Bit51 Better-wp-security 2.8Bit51 Better-wp-security 2.1Bit51 Better-wp-security 1.9Bit51 Better-wp-security 1.5Bit51 Better-wp-security 1.3Bit51 Better-wp-security 0.13Bit51 Better-wp-security 0.10Bit51 Better-wp-security 0.3
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2021-29506CVE-2020-20092encryptionCVE-2021-21551arbitrary unspecifiedCVE-2020-23689CVE-2021-28476CVE-2021-20996
Vulnerability Notification Service
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook