Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
By Recent Activity
wordpress wordpress 3.8.2 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2020-20625
Sliced Invoices plugin for WordPress 3.8.2 and earlier allows unauthenticated information disclosure and authenticated SQL injection via core/class-sliced.php....
1 Github repository available
7.5
CVSSv2
CVE-2012-5310
SQL injection vulnerability in the WP e-Commerce plugin before 3.8.7.6 for WordPress allows remote attackers to execute arbitrary SQL commands via unspecified vectors....
Getshopped Wp E-commerce 3.8.7.3
Getshopped Wp E-commerce 3.8.7.2
Getshopped Wp E-commerce 3.8.4
Getshopped Wp E-commerce 3.8.7.1
Getshopped Wp E-commerce 3.8.1
Getshopped Wp E-commerce 3.8.2
Getshopped Wp E-commerce 3.7.6.4
Getshopped Wp E-commerce 3.7.6.3
Getshopped Wp E-commerce 3.7
Getshopped Wp E-commerce 3.7.2
Getshopped Wp E-commerce 3.7.6
Getshopped Wp E-commerce 3.7.5
Getshopped Wp E-commerce 3.6.5
Getshopped Wp E-commerce 3.6.8
Getshopped Wp E-commerce
Getshopped Wp E-commerce 3.8
Getshopped Wp E-commerce 3.8.6.1
Getshopped Wp E-commerce 3.8.7
Getshopped Wp E-commerce 3.7.8.2
Getshopped Wp E-commerce 3.7.6.2
Getshopped Wp E-commerce 3.7.6.1
Getshopped Wp E-commerce 3.7.1
Getshopped Wp E-commerce 3.7.4
Getshopped Wp E-commerce 3.7.5.1
Getshopped Wp E-commerce 3.6.7
Getshopped Wp E-commerce 3.6.10
Getshopped Wp E-commerce 3.8.5
Getshopped Wp E-commerce 3.7.8.1
Getshopped Wp E-commerce 3.7.8
Getshopped Wp E-commerce 3.7.6.9
Getshopped Wp E-commerce 3.7.6.7
Getshopped Wp E-commerce 3.7.3
Getshopped Wp E-commerce 3.7.5.2
Getshopped Wp E-commerce 3.6.9
Getshopped Wp E-commerce 3.6.12
Getshopped Wp E-commerce 3.8.8
Getshopped Wp E-commerce 3.8.7.4
Getshopped Wp E-commerce 3.8.6
Getshopped Wp E-commerce 3.8.3
Getshopped Wp E-commerce 3.7.7
Getshopped Wp E-commerce 3.7.8.3
Getshopped Wp E-commerce 3.7.6.6
Getshopped Wp E-commerce 3.7.6.5
Getshopped Wp E-commerce 3.7.5.3
Getshopped Wp E-commerce 3.6.13
Getshopped Wp E-commerce 3.6.6
Getshopped Wp E-commerce 3.6.11
4.3
CVSSv2
CVE-2011-5104
Cross-site scripting (XSS) vulnerability in wpsc-admin/display-sales-logs.php in WP e-Commerce plugin 3.8.7.1 and possibly earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the custom_text parameter. NOTE: some of these details are...
Getshopped Wp E-commerce 3.8.6
Getshopped Wp E-commerce 3.8.5
Getshopped Wp E-commerce 3.8
Getshopped Wp E-commerce 3.7.8.1
Getshopped Wp E-commerce 3.7.8
Getshopped Wp E-commerce 3.7.7
Getshopped Wp E-commerce 3.7.6.2
Getshopped Wp E-commerce 3.7.6.1
Getshopped Wp E-commerce 3.7
Getshopped Wp E-commerce 3.7.5.3
Getshopped Wp E-commerce 3.7.5
Getshopped Wp E-commerce 3.6.13
Getshopped Wp E-commerce 3.6.12
Getshopped Wp E-commerce 3.8.4
Getshopped Wp E-commerce 3.8.3
Getshopped Wp E-commerce 3.7.6.9
Getshopped Wp E-commerce 3.7.6.7
Getshopped Wp E-commerce 3.7.6
Getshopped Wp E-commerce 3.7.5.2
Getshopped Wp E-commerce 3.7.5.1
Getshopped Wp E-commerce 3.7.4
Getshopped Wp E-commerce 3.6.11
Getshopped Wp E-commerce 3.6.10
Getshopped Wp E-commerce 3.6.5
Getshopped Wp E-commerce 3.8.7
Getshopped Wp E-commerce 3.8.6.1
Getshopped Wp E-commerce 3.7.8.3
Getshopped Wp E-commerce 3.7.8.2
Getshopped Wp E-commerce 3.7.6.4
Getshopped Wp E-commerce 3.7.6.3
Getshopped Wp E-commerce 3.7.1
Getshopped Wp E-commerce 3.6.7
Getshopped Wp E-commerce 3.6.6
Getshopped Wp E-commerce
Getshopped Wp E-commerce 3.8.2
Getshopped Wp E-commerce 3.8.1
Getshopped Wp E-commerce 3.7.6.6
Getshopped Wp E-commerce 3.7.6.5
Getshopped Wp E-commerce 3.7.3
Getshopped Wp E-commerce 3.7.2
Getshopped Wp E-commerce 3.6.9
Getshopped Wp E-commerce 3.6.8
4
CVSSv2
CVE-2014-0165
WordPress before 3.7.2 and 3.8.x before 3.8.2 allows remote authenticated users to publish posts by leveraging the Contributor role, related to wp-admin/includes/post.php and wp-admin/includes/class-wp-posts-list-table.php....
6.4
CVSSv2
CVE-2014-0166
The wp_validate_auth_cookie function in wp-includes/pluggable.php in WordPress before 3.7.2 and 3.8.x before 3.8.2 does not properly determine the validity of authentication cookies, which makes it easier for remote attackers to obtain access via a forged cookie....
1 Github repository available
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-27833
firewall
malicious code
CVE-2021-28482
file upload
CVE-2021-1079
CVE-2021-29606
CVE-2021-29596
CVE-2021-32054
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
Vulmon