Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

wordpress wordpress 4.5.3 vulnerabilities and exploits

(subscribe to this query)

5.5
CVSSv2
CVE-2016-6896
Directory traversal vulnerability in the wp_ajax_update_plugin function in wp-admin/includes/ajax-actions.php in WordPress 4.5.3 allows remote authenticated users to cause a denial of service or read certain text files via a .. (dot dot) in the plugin parameter to...
Wordpress Wordpress 4.5.3
5
CVSSv2
CVE-2017-14719
Before version 4.8.2, WordPress was vulnerable to a directory traversal attack during unzip operations in the ZipArchive and PclZip components....
Wordpress Wordpress 3.0Wordpress Wordpress 3.0.1Wordpress Wordpress 3.0.2Wordpress Wordpress 3.0.3Wordpress Wordpress 3.0.4Wordpress Wordpress 3.0.5Wordpress Wordpress 3.0.6Wordpress Wordpress 3.1Wordpress Wordpress 3.1.1Wordpress Wordpress 3.1.2Wordpress Wordpress 3.1.3Wordpress Wordpress 3.1.4Wordpress Wordpress 3.2Wordpress Wordpress 3.2.1Wordpress Wordpress 3.3Wordpress Wordpress 3.3.1Wordpress Wordpress 3.3.2Wordpress Wordpress 3.3.3Wordpress Wordpress 3.4Wordpress Wordpress 3.4.1Wordpress Wordpress 3.4.2Wordpress Wordpress 3.5Wordpress Wordpress 3.5.1Wordpress Wordpress 3.5.2Wordpress Wordpress 3.6Wordpress Wordpress 3.6.1Wordpress Wordpress 3.7Wordpress Wordpress 3.7.1Wordpress Wordpress 3.7.2Wordpress Wordpress 3.7.3Wordpress Wordpress 3.7.4Wordpress Wordpress 3.7.5Wordpress Wordpress 3.7.6Wordpress Wordpress 3.7.7Wordpress Wordpress 3.7.8Wordpress Wordpress 3.7.9Wordpress Wordpress 3.7.10Wordpress Wordpress 3.7.11Wordpress Wordpress 3.7.12Wordpress Wordpress 3.7.13Wordpress Wordpress 3.7.14Wordpress Wordpress 3.7.15Wordpress Wordpress 3.7.16Wordpress Wordpress 3.7.17Wordpress Wordpress 3.7.18Wordpress Wordpress 3.7.19Wordpress Wordpress 3.7.20Wordpress Wordpress 3.7.21Wordpress Wordpress 3.7.22Wordpress Wordpress 3.8Wordpress Wordpress 3.8.1Wordpress Wordpress 3.8.2Wordpress Wordpress 3.8.3Wordpress Wordpress 3.8.4Wordpress Wordpress 3.8.5Wordpress Wordpress 3.8.6Wordpress Wordpress 3.8.7Wordpress Wordpress 3.8.8Wordpress Wordpress 3.8.9Wordpress Wordpress 3.8.10Wordpress Wordpress 3.8.11Wordpress Wordpress 3.8.12Wordpress Wordpress 3.8.13Wordpress Wordpress 3.8.14Wordpress Wordpress 3.8.15Wordpress Wordpress 3.8.16Wordpress Wordpress 3.8.17Wordpress Wordpress 3.8.18Wordpress Wordpress 3.8.19Wordpress Wordpress 3.8.20Wordpress Wordpress 3.8.21Wordpress Wordpress 3.8.22Wordpress Wordpress 3.9Wordpress Wordpress 3.9.1Wordpress Wordpress 3.9.2Wordpress Wordpress 3.9.3Wordpress Wordpress 3.9.4Wordpress Wordpress 3.9.5Wordpress Wordpress 3.9.6Wordpress Wordpress 3.9.7Wordpress Wordpress 3.9.8Wordpress Wordpress 3.9.9Wordpress Wordpress 3.9.10Wordpress Wordpress 3.9.11Wordpress Wordpress 3.9.12Wordpress Wordpress 3.9.13Wordpress Wordpress 3.9.14Wordpress Wordpress 3.9.15Wordpress Wordpress 3.9.16Wordpress Wordpress 3.9.17Wordpress Wordpress 3.9.18Wordpress Wordpress 3.9.19Wordpress Wordpress 3.9.20Wordpress Wordpress 4.0Wordpress Wordpress 4.0.1Wordpress Wordpress 4.0.2Wordpress Wordpress 4.0.3Wordpress Wordpress 4.0.4Wordpress Wordpress 4.0.5Wordpress Wordpress 4.0.6Wordpress Wordpress 4.0.7Wordpress Wordpress 4.0.8Wordpress Wordpress 4.0.9Wordpress Wordpress 4.0.10Wordpress Wordpress 4.0.11Wordpress Wordpress 4.0.12Wordpress Wordpress 4.0.13Wordpress Wordpress 4.0.14Wordpress Wordpress 4.0.15Wordpress Wordpress 4.0.16Wordpress Wordpress 4.0.17Wordpress Wordpress 4.0.18Wordpress Wordpress 4.0.19Wordpress Wordpress 4.1Wordpress Wordpress 4.1.1Wordpress Wordpress 4.1.2Wordpress Wordpress 4.1.3Wordpress Wordpress 4.1.4Wordpress Wordpress 4.1.5Wordpress Wordpress 4.1.6Wordpress Wordpress 4.1.7Wordpress Wordpress 4.1.8Wordpress Wordpress 4.1.9Wordpress Wordpress 4.1.10Wordpress Wordpress 4.1.11Wordpress Wordpress 4.1.12Wordpress Wordpress 4.1.13Wordpress Wordpress 4.1.14Wordpress Wordpress 4.1.15Wordpress Wordpress 4.1.16Wordpress Wordpress 4.1.17Wordpress Wordpress 4.1.18Wordpress Wordpress 4.1.19Wordpress Wordpress 4.2Wordpress Wordpress 4.2.1Wordpress Wordpress 4.2.2Wordpress Wordpress 4.2.3Wordpress Wordpress 4.2.4Wordpress Wordpress 4.2.5Wordpress Wordpress 4.2.6Wordpress Wordpress 4.2.7Wordpress Wordpress 4.2.8Wordpress Wordpress 4.2.9Wordpress Wordpress 4.2.10Wordpress Wordpress 4.2.11Wordpress Wordpress 4.2.12Wordpress Wordpress 4.2.13Wordpress Wordpress 4.2.14Wordpress Wordpress 4.2.15Wordpress Wordpress 4.2.16Wordpress Wordpress 4.3Wordpress Wordpress 4.3.1Wordpress Wordpress 4.3.2Wordpress Wordpress 4.3.3Wordpress Wordpress 4.3.4Wordpress Wordpress 4.3.5Wordpress Wordpress 4.3.6Wordpress Wordpress 4.3.7Wordpress Wordpress 4.3.8Wordpress Wordpress 4.3.9Wordpress Wordpress 4.3.10Wordpress Wordpress 4.3.11Wordpress Wordpress 4.3.12Wordpress Wordpress 4.4Wordpress Wordpress 4.4.1Wordpress Wordpress 4.4.2Wordpress Wordpress 4.4.3Wordpress Wordpress 4.4.4Wordpress Wordpress 4.4.5Wordpress Wordpress 4.4.6Wordpress Wordpress 4.4.7Wordpress Wordpress 4.4.8Wordpress Wordpress 4.4.9Wordpress Wordpress 4.4.10Wordpress Wordpress 4.4.11Wordpress Wordpress 4.5Wordpress Wordpress 4.5.1Wordpress Wordpress 4.5.2Wordpress Wordpress 4.5.3Wordpress Wordpress 4.5.4Wordpress Wordpress 4.5.5Wordpress Wordpress 4.5.6Wordpress Wordpress 4.5.7Wordpress Wordpress 4.5.8Wordpress Wordpress 4.5.9Wordpress Wordpress 4.5.10Wordpress Wordpress 4.6Wordpress Wordpress 4.6.1Wordpress Wordpress 4.6.2Wordpress Wordpress 4.6.3Wordpress Wordpress 4.6.4Wordpress Wordpress 4.6.5Wordpress Wordpress 4.6.6Wordpress Wordpress 4.6.7Wordpress Wordpress 4.7Wordpress Wordpress 4.7.1Wordpress Wordpress 4.7.2Wordpress Wordpress 4.7.3Wordpress Wordpress 4.7.4Wordpress Wordpress 4.7.5Wordpress Wordpress 4.8Wordpress Wordpress 4.8.1
5
CVSSv2
CVE-2016-5839
WordPress before 4.5.3 allows remote attackers to bypass the sanitize_file_name protection mechanism via unspecified vectors....
Wordpress Wordpress
5
CVSSv2
CVE-2016-5838
WordPress before 4.5.3 allows remote attackers to bypass intended password-change restrictions by leveraging knowledge of a cookie....
Wordpress Wordpress
5
CVSSv2
CVE-2016-5832
The customizer in WordPress before 4.5.3 allows remote attackers to bypass intended redirection restrictions via unspecified vectors....
Wordpress Wordpress
4.3
CVSSv2
CVE-2016-5834
Cross-site scripting (XSS) vulnerability in the wp_get_attachment_link function in wp-includes/post-template.php in WordPress before 4.5.3 allows remote attackers to inject arbitrary web script or HTML via a crafted attachment name, a different vulnerability than CVE-2016-5833....
Wordpress Wordpress
4.3
CVSSv2
CVE-2016-5833
Cross-site scripting (XSS) vulnerability in the column_title function in wp-admin/includes/class-wp-media-list-table.php in WordPress before 4.5.3 allows remote attackers to inject arbitrary web script or HTML via a crafted attachment name, a different vulnerability than...
Wordpress Wordpress
5
CVSSv2
CVE-2016-5836
The oEmbed protocol implementation in WordPress before 4.5.3 allows remote attackers to cause a denial of service via unspecified vectors....
Wordpress Wordpress
5
CVSSv2
CVE-2016-5837
WordPress before 4.5.3 allows remote attackers to bypass intended access restrictions and remove a category attribute from a post via unspecified vectors....
Wordpress Wordpress
5
CVSSv2
CVE-2016-5835
WordPress before 4.5.3 allows remote attackers to obtain sensitive revision-history information by leveraging the ability to read a post, related to wp-admin/includes/ajax-actions.php and wp-admin/revision.php....
Wordpress Wordpress
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
XXECVE-2021-21973mass assignmentCVE-2021-1396CVE-2018-19518CVE-2020-28599deserializationCVE-2021-1230CVE-2021-26681