Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
By Recent Activity
wordpress wordpress 3.3.2 vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2016-10914
The add-from-server plugin before 3.3.2 for WordPress has CSRF for importing a large file....
4.3
CVSSv2
CVE-2013-3526
Cross-site scripting (XSS) vulnerability in js/ta_loaded.js.php in the Traffic Analyzer plugin, possibly 3.3.2 and earlier, for WordPress allows remote attackers to inject arbitrary web script or HTML via the aoid parameter....
Wptrafficanalyzer Trafficanalyzer 3.3.2
Wptrafficanalyzer Trafficanalyzer 3.0.1
Wptrafficanalyzer Trafficanalyzer 3.0.0
Wptrafficanalyzer Trafficanalyzer 2.7.0
Wptrafficanalyzer Trafficanalyzer 2.6.0
Wptrafficanalyzer Trafficanalyzer 2.2.1
Wptrafficanalyzer Trafficanalyzer 2.2.0
Wptrafficanalyzer Trafficanalyzer 1.5.0
Wptrafficanalyzer Trafficanalyzer 1.4.0
Wptrafficanalyzer Trafficanalyzer 1.0.0
Wptrafficanalyzer Trafficanalyzer 3.2.1
Wptrafficanalyzer Trafficanalyzer 3.2.0
Wptrafficanalyzer Trafficanalyzer 3.1.0
Wptrafficanalyzer Trafficanalyzer 2.8.2
Wptrafficanalyzer Trafficanalyzer 2.8.1
Wptrafficanalyzer Trafficanalyzer 2.5.0
Wptrafficanalyzer Trafficanalyzer 2.4.1
Wptrafficanalyzer Trafficanalyzer 1.8.0
Wptrafficanalyzer Trafficanalyzer 1.7.0
Wptrafficanalyzer Trafficanalyzer 1.1.3
Wptrafficanalyzer Trafficanalyzer 1.1.2
Wptrafficanalyzer Trafficanalyzer 3.0.3
Wptrafficanalyzer Trafficanalyzer 3.0.2
Wptrafficanalyzer Trafficanalyzer 2.8.0
Wptrafficanalyzer Trafficanalyzer 2.7.1
Wptrafficanalyzer Trafficanalyzer 2.4.0
Wptrafficanalyzer Trafficanalyzer 2.3.0
Wptrafficanalyzer Trafficanalyzer 1.6.1
Wptrafficanalyzer Trafficanalyzer 1.6.0
Wptrafficanalyzer Trafficanalyzer 1.1.1
Wptrafficanalyzer Trafficanalyzer 1.1.0
Wptrafficanalyzer Trafficanalyzer 3.3.1
Wptrafficanalyzer Trafficanalyzer 3.3.0
Wptrafficanalyzer Trafficanalyzer 2.9.1
Wptrafficanalyzer Trafficanalyzer 2.9.0
Wptrafficanalyzer Trafficanalyzer 2.5.2
Wptrafficanalyzer Trafficanalyzer 2.5.1
Wptrafficanalyzer Trafficanalyzer 2.1.0
Wptrafficanalyzer Trafficanalyzer 2.0.0
Wptrafficanalyzer Trafficanalyzer 1.9.0
Wptrafficanalyzer Trafficanalyzer 1.3.0
Wptrafficanalyzer Trafficanalyzer 1.2.0
1 EDB exploit available
10
CVSSv2
CVE-2012-2400
Unspecified vulnerability in wp-includes/js/swfobject.js in WordPress before 3.3.2 has unknown impact and attack vectors....
5.5
CVSSv2
CVE-2012-2402
wp-admin/plugins.php in WordPress before 3.3.2 allows remote authenticated site administrators to bypass intended access restrictions and deactivate network-wide plugins via unspecified vectors....
4.3
CVSSv2
CVE-2012-2404
wp-comments-post.php in WordPress before 3.3.2 supports offsite redirects, which makes it easier for remote attackers to conduct cross-site scripting (XSS) attacks via unspecified vectors....
4.3
CVSSv2
CVE-2012-2403
wp-includes/formatting.php in WordPress before 3.3.2 attempts to enable clickable links inside attributes, which makes it easier for remote attackers to conduct cross-site scripting (XSS) attacks via unspecified vectors....
5
CVSSv2
CVE-2012-2401
Plupload before 1.5.4, as used in wp-includes/js/plupload/ in WordPress before 3.3.2 and other products, enables scripting regardless of the domain from which the SWF content was loaded, which allows remote attackers to bypass the Same Origin Policy via crafted content....
4.3
CVSSv2
CVE-2012-3414
Cross-site scripting (XSS) vulnerability in swfupload.swf in SWFUpload 2.2.0.1 and earlier, as used in WordPress before 3.3.2, TinyMCE Image Manager 1.1, and other products, allows remote attackers to inject arbitrary web script or HTML via the movieName parameter, related to...
1 EDB exploit available
1 Github repository available
3 Articles available
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-27833
firewall
malicious code
CVE-2021-28482
file upload
CVE-2021-1079
CVE-2021-29606
CVE-2021-29596
CVE-2021-32054
Get Started
Vulmon
