Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

wordpress wordpress 3.7.4 vulnerabilities and exploits

(subscribe to this query)

6.8
CVSSv2
CVE-2014-9033
Cross-site request forgery (CSRF) vulnerability in wp-login.php in WordPress 3.7.4, 3.8.4, 3.9.2, and 4.0 allows remote attackers to hijack the authentication of arbitrary users for requests that reset passwords....
Wordpress Wordpress 3.7.4Wordpress Wordpress 3.8.4Wordpress Wordpress 3.9.2Wordpress Wordpress 4.0
5
CVSSv2
CVE-2017-14719
Before version 4.8.2, WordPress was vulnerable to a directory traversal attack during unzip operations in the ZipArchive and PclZip components....
Wordpress Wordpress 3.0Wordpress Wordpress 3.0.1Wordpress Wordpress 3.0.2Wordpress Wordpress 3.0.3Wordpress Wordpress 3.0.4Wordpress Wordpress 3.0.5Wordpress Wordpress 3.0.6Wordpress Wordpress 3.1Wordpress Wordpress 3.1.1Wordpress Wordpress 3.1.2Wordpress Wordpress 3.1.3Wordpress Wordpress 3.1.4Wordpress Wordpress 3.2Wordpress Wordpress 3.2.1Wordpress Wordpress 3.3Wordpress Wordpress 3.3.1Wordpress Wordpress 3.3.2Wordpress Wordpress 3.3.3Wordpress Wordpress 3.4Wordpress Wordpress 3.4.1Wordpress Wordpress 3.4.2Wordpress Wordpress 3.5Wordpress Wordpress 3.5.1Wordpress Wordpress 3.5.2Wordpress Wordpress 3.6Wordpress Wordpress 3.6.1Wordpress Wordpress 3.7Wordpress Wordpress 3.7.1Wordpress Wordpress 3.7.2Wordpress Wordpress 3.7.3Wordpress Wordpress 3.7.4Wordpress Wordpress 3.7.5Wordpress Wordpress 3.7.6Wordpress Wordpress 3.7.7Wordpress Wordpress 3.7.8Wordpress Wordpress 3.7.9Wordpress Wordpress 3.7.10Wordpress Wordpress 3.7.11Wordpress Wordpress 3.7.12Wordpress Wordpress 3.7.13Wordpress Wordpress 3.7.14Wordpress Wordpress 3.7.15Wordpress Wordpress 3.7.16Wordpress Wordpress 3.7.17Wordpress Wordpress 3.7.18Wordpress Wordpress 3.7.19Wordpress Wordpress 3.7.20Wordpress Wordpress 3.7.21Wordpress Wordpress 3.7.22Wordpress Wordpress 3.8Wordpress Wordpress 3.8.1Wordpress Wordpress 3.8.2Wordpress Wordpress 3.8.3Wordpress Wordpress 3.8.4Wordpress Wordpress 3.8.5Wordpress Wordpress 3.8.6Wordpress Wordpress 3.8.7Wordpress Wordpress 3.8.8Wordpress Wordpress 3.8.9Wordpress Wordpress 3.8.10Wordpress Wordpress 3.8.11Wordpress Wordpress 3.8.12Wordpress Wordpress 3.8.13Wordpress Wordpress 3.8.14Wordpress Wordpress 3.8.15Wordpress Wordpress 3.8.16Wordpress Wordpress 3.8.17Wordpress Wordpress 3.8.18Wordpress Wordpress 3.8.19Wordpress Wordpress 3.8.20Wordpress Wordpress 3.8.21Wordpress Wordpress 3.8.22Wordpress Wordpress 3.9Wordpress Wordpress 3.9.1Wordpress Wordpress 3.9.2Wordpress Wordpress 3.9.3Wordpress Wordpress 3.9.4Wordpress Wordpress 3.9.5Wordpress Wordpress 3.9.6Wordpress Wordpress 3.9.7Wordpress Wordpress 3.9.8Wordpress Wordpress 3.9.9Wordpress Wordpress 3.9.10Wordpress Wordpress 3.9.11Wordpress Wordpress 3.9.12Wordpress Wordpress 3.9.13Wordpress Wordpress 3.9.14Wordpress Wordpress 3.9.15Wordpress Wordpress 3.9.16Wordpress Wordpress 3.9.17Wordpress Wordpress 3.9.18Wordpress Wordpress 3.9.19Wordpress Wordpress 3.9.20Wordpress Wordpress 4.0Wordpress Wordpress 4.0.1Wordpress Wordpress 4.0.2Wordpress Wordpress 4.0.3Wordpress Wordpress 4.0.4Wordpress Wordpress 4.0.5Wordpress Wordpress 4.0.6Wordpress Wordpress 4.0.7Wordpress Wordpress 4.0.8Wordpress Wordpress 4.0.9Wordpress Wordpress 4.0.10Wordpress Wordpress 4.0.11Wordpress Wordpress 4.0.12Wordpress Wordpress 4.0.13Wordpress Wordpress 4.0.14Wordpress Wordpress 4.0.15Wordpress Wordpress 4.0.16Wordpress Wordpress 4.0.17Wordpress Wordpress 4.0.18Wordpress Wordpress 4.0.19Wordpress Wordpress 4.1Wordpress Wordpress 4.1.1Wordpress Wordpress 4.1.2Wordpress Wordpress 4.1.3Wordpress Wordpress 4.1.4Wordpress Wordpress 4.1.5Wordpress Wordpress 4.1.6Wordpress Wordpress 4.1.7Wordpress Wordpress 4.1.8Wordpress Wordpress 4.1.9Wordpress Wordpress 4.1.10Wordpress Wordpress 4.1.11Wordpress Wordpress 4.1.12Wordpress Wordpress 4.1.13Wordpress Wordpress 4.1.14Wordpress Wordpress 4.1.15Wordpress Wordpress 4.1.16Wordpress Wordpress 4.1.17Wordpress Wordpress 4.1.18Wordpress Wordpress 4.1.19Wordpress Wordpress 4.2Wordpress Wordpress 4.2.1Wordpress Wordpress 4.2.2Wordpress Wordpress 4.2.3Wordpress Wordpress 4.2.4Wordpress Wordpress 4.2.5Wordpress Wordpress 4.2.6Wordpress Wordpress 4.2.7Wordpress Wordpress 4.2.8Wordpress Wordpress 4.2.9Wordpress Wordpress 4.2.10Wordpress Wordpress 4.2.11Wordpress Wordpress 4.2.12Wordpress Wordpress 4.2.13Wordpress Wordpress 4.2.14Wordpress Wordpress 4.2.15Wordpress Wordpress 4.2.16Wordpress Wordpress 4.3Wordpress Wordpress 4.3.1Wordpress Wordpress 4.3.2Wordpress Wordpress 4.3.3Wordpress Wordpress 4.3.4Wordpress Wordpress 4.3.5Wordpress Wordpress 4.3.6Wordpress Wordpress 4.3.7Wordpress Wordpress 4.3.8Wordpress Wordpress 4.3.9Wordpress Wordpress 4.3.10Wordpress Wordpress 4.3.11Wordpress Wordpress 4.3.12Wordpress Wordpress 4.4Wordpress Wordpress 4.4.1Wordpress Wordpress 4.4.2Wordpress Wordpress 4.4.3Wordpress Wordpress 4.4.4Wordpress Wordpress 4.4.5Wordpress Wordpress 4.4.6Wordpress Wordpress 4.4.7Wordpress Wordpress 4.4.8Wordpress Wordpress 4.4.9Wordpress Wordpress 4.4.10Wordpress Wordpress 4.4.11Wordpress Wordpress 4.5Wordpress Wordpress 4.5.1Wordpress Wordpress 4.5.2Wordpress Wordpress 4.5.3Wordpress Wordpress 4.5.4Wordpress Wordpress 4.5.5Wordpress Wordpress 4.5.6Wordpress Wordpress 4.5.7Wordpress Wordpress 4.5.8Wordpress Wordpress 4.5.9Wordpress Wordpress 4.5.10Wordpress Wordpress 4.6Wordpress Wordpress 4.6.1Wordpress Wordpress 4.6.2Wordpress Wordpress 4.6.3Wordpress Wordpress 4.6.4Wordpress Wordpress 4.6.5Wordpress Wordpress 4.6.6Wordpress Wordpress 4.6.7Wordpress Wordpress 4.7Wordpress Wordpress 4.7.1Wordpress Wordpress 4.7.2Wordpress Wordpress 4.7.3Wordpress Wordpress 4.7.4Wordpress Wordpress 4.7.5Wordpress Wordpress 4.8Wordpress Wordpress 4.8.1
7.5
CVSSv2
CVE-2012-5310
SQL injection vulnerability in the WP e-Commerce plugin before 3.8.7.6 for WordPress allows remote attackers to execute arbitrary SQL commands via unspecified vectors....
Getshopped Wp E-commerce 3.6.5Getshopped Wp E-commerce 3.6.6Getshopped Wp E-commerce 3.6.7Getshopped Wp E-commerce 3.6.8Getshopped Wp E-commerce 3.6.9Getshopped Wp E-commerce 3.6.10Getshopped Wp E-commerce 3.6.11Getshopped Wp E-commerce 3.6.12Getshopped Wp E-commerce 3.6.13Getshopped Wp E-commerce 3.7Getshopped Wp E-commerce 3.7.1Getshopped Wp E-commerce 3.7.2Getshopped Wp E-commerce 3.7.3Getshopped Wp E-commerce 3.7.4Getshopped Wp E-commerce 3.7.5Getshopped Wp E-commerce 3.7.5.1Getshopped Wp E-commerce 3.7.5.2Getshopped Wp E-commerce 3.7.5.3Getshopped Wp E-commerce 3.7.6Getshopped Wp E-commerce 3.7.6.1Getshopped Wp E-commerce 3.7.6.2Getshopped Wp E-commerce 3.7.6.3Getshopped Wp E-commerce 3.7.6.4Getshopped Wp E-commerce 3.7.6.5Getshopped Wp E-commerce 3.7.6.6Getshopped Wp E-commerce 3.7.6.7Getshopped Wp E-commerce 3.7.6.9Getshopped Wp E-commerce 3.7.7Getshopped Wp E-commerce 3.7.8Getshopped Wp E-commerce 3.7.8.1Getshopped Wp E-commerce 3.7.8.2Getshopped Wp E-commerce 3.7.8.3Getshopped Wp E-commerce 3.8Getshopped Wp E-commerce 3.8.1Getshopped Wp E-commerce 3.8.2Getshopped Wp E-commerce 3.8.3Getshopped Wp E-commerce 3.8.4Getshopped Wp E-commerce 3.8.5Getshopped Wp E-commerce 3.8.6Getshopped Wp E-commerce 3.8.6.1Getshopped Wp E-commerce 3.8.7Getshopped Wp E-commerce 3.8.7.1Getshopped Wp E-commerce 3.8.7.2Getshopped Wp E-commerce 3.8.7.3Getshopped Wp E-commerce 3.8.7.4Getshopped Wp E-commerceGetshopped Wp E-commerce 3.8.8
4.3
CVSSv2
CVE-2011-5104
Cross-site scripting (XSS) vulnerability in wpsc-admin/display-sales-logs.php in WP e-Commerce plugin 3.8.7.1 and possibly earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the custom_text parameter. NOTE: some of these details are...
Getshopped Wp E-commerce 3.6.5Getshopped Wp E-commerce 3.6.6Getshopped Wp E-commerce 3.6.7Getshopped Wp E-commerce 3.6.8Getshopped Wp E-commerce 3.6.9Getshopped Wp E-commerce 3.6.10Getshopped Wp E-commerce 3.6.11Getshopped Wp E-commerce 3.6.12Getshopped Wp E-commerce 3.6.13Getshopped Wp E-commerce 3.7Getshopped Wp E-commerce 3.7.1Getshopped Wp E-commerce 3.7.2Getshopped Wp E-commerce 3.7.3Getshopped Wp E-commerce 3.7.4Getshopped Wp E-commerce 3.7.5Getshopped Wp E-commerce 3.7.5.1Getshopped Wp E-commerce 3.7.5.2Getshopped Wp E-commerce 3.7.5.3Getshopped Wp E-commerce 3.7.6Getshopped Wp E-commerce 3.7.6.1Getshopped Wp E-commerce 3.7.6.2Getshopped Wp E-commerce 3.7.6.3Getshopped Wp E-commerce 3.7.6.4Getshopped Wp E-commerce 3.7.6.5Getshopped Wp E-commerce 3.7.6.6Getshopped Wp E-commerce 3.7.6.7Getshopped Wp E-commerce 3.7.6.9Getshopped Wp E-commerce 3.7.7Getshopped Wp E-commerce 3.7.8Getshopped Wp E-commerce 3.7.8.1Getshopped Wp E-commerce 3.7.8.2Getshopped Wp E-commerce 3.7.8.3Getshopped Wp E-commerce 3.8Getshopped Wp E-commerce 3.8.1Getshopped Wp E-commerce 3.8.2Getshopped Wp E-commerce 3.8.3Getshopped Wp E-commerce 3.8.4Getshopped Wp E-commerce 3.8.5Getshopped Wp E-commerce 3.8.6Getshopped Wp E-commerce 3.8.6.1Getshopped Wp E-commerce 3.8.7Getshopped Wp E-commerce
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
arbitrary codeCVE-2020-36079microfocusCVE-2021-26561CVE-2021-21972NULL pointer dereferenceCVE-2021-25281deserializationsolutions business managerCVE-2020-28243CVE-2020-27618