Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wordpress wordpress 5.0 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2018-20151
In WordPress prior to 4.9.9 and 5.x prior to 5.0.1, the user-activation page could be read by a search engine's web crawler if an unusual configuration were chosen. The search engine could then index and display a user's e-mail address and (rarely) the password that was...
Wordpress Wordpress
Debian Debian Linux 8.0
Debian Debian Linux 9.0
6.1
CVSSv3
CVE-2011-4955
Multiple cross-site scripting (XSS) vulnerabilities in ui_stats.php in the bSuite plugin prior to 5 alpha 3 for WordPress allow remote malicious users to inject arbitrary web script or HTML via the (1) s or (2) p parameters to index.php.
Bsuite Project Bsuite
Bsuite Project Bsuite 5.0
NA
CVE-2014-7152
Cross-site scripting (XSS) vulnerability in the Easy MailChimp Forms plugin 3.0 up to and including 5.0.6 for WordPress allows remote malicious users to inject arbitrary web script or HTML via the update_options action to wp-admin/admin-ajax.php.
Mailchimp Easy Mailchimp Forms Plugin 5.0.4
Mailchimp Easy Mailchimp Forms Plugin 4.1
Mailchimp Easy Mailchimp Forms Plugin 5.0.6
Mailchimp Easy Mailchimp Forms Plugin 4.4
Mailchimp Easy Mailchimp Forms Plugin 4.2.1
Mailchimp Easy Mailchimp Forms Plugin 4.2
Mailchimp Easy Mailchimp Forms Plugin 5.0.2
Mailchimp Easy Mailchimp Forms Plugin 5.0.3
Mailchimp Easy Mailchimp Forms Plugin 5.0
Mailchimp Easy Mailchimp Forms Plugin 5.0.1
Mailchimp Easy Mailchimp Forms Plugin 3.0
Mailchimp Easy Mailchimp Forms Plugin 4.3
Mailchimp Easy Mailchimp Forms Plugin 4.0
Mailchimp Easy Mailchimp Forms Plugin 5.0.5
NA
CVE-2013-3258
Cross-site request forgery (CSRF) vulnerability in he Digg Digg plugin prior to 5.3.5 for WordPress allows remote malicious users to hijack the authentication of users for requests that modify settings via unspecified vectors.
Bufferapp Digg Digg 5.2.8
Bufferapp Digg Digg 5.0.5
Bufferapp Digg Digg
Bufferapp Digg Digg 5.2
Bufferapp Digg Digg 5.3.2
Bufferapp Digg Digg 5.3.0
Bufferapp Digg Digg 5.3.3
Bufferapp Digg Digg 5.2.5
Bufferapp Digg Digg 5.2.2
Bufferapp Digg Digg 5.0
Bufferapp Digg Digg 5.2.1
Bufferapp Digg Digg 5.0.2
Bufferapp Digg Digg 5.1.2
Bufferapp Digg Digg 5.0.3
Bufferapp Digg Digg 5.2.3
Bufferapp Digg Digg 5.0.4
Bufferapp Digg Digg 5.2.6
Bufferapp Digg Digg 5.1
Bufferapp Digg Digg 5.0.1
Bufferapp Digg Digg 5.2.7
Bufferapp Digg Digg 5.2.4
Bufferapp Digg Digg 5.1.1
NA
CVE-2013-2703
Cross-site request forgery (CSRF) vulnerability in the Facebook Members plugin prior to 5.0.5 for WordPress allows remote malicious users to hijack the authentication of administrators for requests that modify this plugin's settings.
Crunchify Facebook Members
Crunchify Facebook Members 4.5.3
Crunchify Facebook Members 4.6
Crunchify Facebook Members 4.6.1
Crunchify Facebook Members 4.7
Crunchify Facebook Members 5.0
Crunchify Facebook Members 5.0.1
Crunchify Facebook Members 5.0.2
Crunchify Facebook Members 5.0.3
NA
CVE-2008-4796
The _httpsrequest function (Snoopy/Snoopy.class.php) in Snoopy 1.2.3 and previous versions, as used in (1) ampache, (2) libphp-snoopy, (3) mahara, (4) mediamate, (5) opendb, (6) pixelpost, and possibly other products, allows remote malicious users to execute arbitrary commands vi...
Snoopy Project Snoopy
Debian Debian Linux 5.0
Debian Debian Linux 4.0
Nagios Nagios
Wordpress Wordpress
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-38627
CVE-2022-45803
CVE-2024-38319
camera
template injection
CVE-2024-27801
CVE-2024-0762
CVE-2024-5791
unauthorized
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3