Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wordpress wordpress 1.3 vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2013-2008
WordPress Super Cache Plugin 1.3 has XSS.
Automattic Wp Super Cache 1.3
6.1
CVSSv3
CVE-2017-18533
The rimons-twitter-widget plugin prior to 1.3 for WordPress has XSS.
Rimons Twitter Widget Project Rimons Twitter Widget
8.8
CVSSv3
CVE-2014-5034
Cross-site request forgery (CSRF) vulnerability in the Brute Force Login Protection module 1.3 for WordPress allows remote malicious users to hijack the authentication of unspecified users for requests that have unknown impact via a crafted request to the brute-force-login-protec...
Fresh-media Brute Force Login Protection 1.3
4.8
CVSSv3
CVE-2017-16758
Cross-site scripting (XSS) vulnerability in admin/partials/uif-access-token-display.php in the Ultimate Instagram Feed plugin prior to 1.3 for WordPress allows remote malicious users to inject arbitrary web script or HTML via the "access_token" parameter.
Ultimate Instagram Feed Project Ultimate Instagram Feed
6.1
CVSSv3
CVE-2017-14751
The Intense WP "WP Jobs" plugin 1.5 for WordPress has XSS, related to the Job Qualification field.
Intensewp Wp Jobs 1.0
Intensewp Wp Jobs 1.1
Intensewp Wp Jobs 1.2
Intensewp Wp Jobs 1.3
Intensewp Wp Jobs 1.4
Intensewp Wp Jobs 1.5
NA
CVE-2015-3904
Multiple cross-site scripting (XSS) vulnerabilities in roomcloud.php in the Roomcloud plugin prior to 1.3 for WordPress allow remote malicious users to inject arbitrary web script or HTML via the (1) pin, (2) start_day, (3) start_month, (4) start_year, (5) end_day, (6) end_month,...
Roomcloud Roomcloud
NA
CVE-2015-0901
Cross-site scripting (XSS) vulnerability in the duwasai flashy theme 1.3 and previous versions for WordPress allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Flashy Project Flashy
NA
CVE-2012-5853
SQL injection vulnerability in the "the_search_function" function in cardoza_ajax_search.php in the AJAX Post Search (cardoza-ajax-search) plugin prior to 1.3 for WordPress allows remote malicious users to execute arbitrary SQL commands via the srch_txt parameter in a &...
Ajax Search Project Ajax Search
NA
CVE-2014-9523
Multiple cross-site request forgery (CSRF) vulnerabilities in the Our Team Showcase (our-team-enhanced) plugin prior to 1.3 for WordPress allow remote malicious users to hijack the authentication of administrators for requests that (1) change plugin settings via unspecified vecto...
Smartcat Our Team Showcase
NA
CVE-2014-9525
Multiple cross-site request forgery (CSRF) vulnerabilities in the Timed Popup (wp-timed-popup) plugin 1.3 for WordPress allow remote malicious users to hijack the authentication of administrators for requests that (1) change plugin settings via unspecified vectors or (2) conduct ...
Timed Popup Project Timed Popup 1.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-38627
CVE-2022-45803
CVE-2024-38319
camera
template injection
CVE-2024-27801
CVE-2024-0762
CVE-2024-5791
unauthorized
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »