Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wordpress wordpress 2.0.3 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2006-3389
index.php in WordPress 2.0.3 allows remote malicious users to obtain sensitive information, such as SQL table prefixes, via an invalid paged parameter, which displays the information in an SQL error message. NOTE: this issue has been disputed by a third party who states that the ...
Wordpress Wordpress 2.0.3
5
CVSSv2
CVE-2006-3390
WordPress 2.0.3 allows remote malicious users to obtain the installation path via a direct request to various files, such as those in the (1) wp-admin, (2) wp-content, and (3) wp-includes directories, possibly due to uninitialized variables.
Wordpress Wordpress 2.0.3
4.9
CVSSv2
CVE-2009-2334
wp-admin/admin.php in WordPress and WordPress MU prior to 2.8.1 does not require administrative authentication to access the configuration of a plugin, which allows remote malicious users to specify a configuration file in the page parameter to obtain sensitive information or mod...
Wordpress Wordpress 2.3.3
Wordpress Wordpress 2.3.2
Wordpress Wordpress 2.2.2
Wordpress Wordpress 2.2.1
Wordpress Wordpress 2.1.1
Wordpress Wordpress 2.1
Wordpress Wordpress 2.6
Wordpress Wordpress 2.3.1
Wordpress Wordpress 2.2.0
Wordpress Wordpress 2.2
Wordpress Wordpress 2.0.9
Wordpress Wordpress 2.0.8
Wordpress Wordpress 2.0.11
Wordpress Wordpress 2.0.10 Rc2
Wordpress Wordpress 1.5.1.3
Wordpress Wordpress 1.5.1.2
Wordpress Wordpress 1.2.2
Wordpress Wordpress 1.2.1
Wordpress Wordpress 2.5.1
Wordpress Wordpress 2.5
Wordpress Wordpress 2.3
Wordpress Wordpress 2.2 Revision5003
1 EDB exploit
4.3
CVSSv2
CVE-2022-27860
Cross-Site Request Forgery (CSRF) leading to Cross-Site Scripting (XSS) in Shea Bunge's Footer Text plugin <= 2.0.3 on WordPress.
Footer-text Project Footer-text
4.3
CVSSv2
CVE-2021-38355
The Bug Library WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the successimportcount parameter found in the ~/bug-library.php file which allows malicious users to inject arbitrary web scripts, in versions up to and including 2.0.3.
Bug Library Project Bug Library
4.3
CVSSv2
CVE-2018-20970
The pdf-print plugin prior to 2.0.3 for WordPress has multiple XSS issues.
Bestwebsoft Pdf \\& Print
4.3
CVSSv2
CVE-2017-17780
The Clockwork SMS clockwork-test-message.php component has XSS via a crafted "to" parameter in a clockwork-test-message request to wp-admin/admin.php. This component code is found in the following WordPress plugins: Clockwork Free and Paid SMS Notifications 2.0.3, Two-F...
Mediaburst Booking Calendar Sms 1.0.5
Mediaburst Clockwork Sms Notfications 2.0.3
Mediaburst Contact Form 7 Sms 2.3.0
Mediaburst Fast Secure Contact Form Sms 2.1.2
Mediaburst Formidable 1.0.2
Mediaburst Gravity Forms 2.2
Mediaburst Two-factor Authentication 1.0.2
Mediaburst Wp E-commerce 2.0.5
4.3
CVSSv2
CVE-2014-8492
Multiple cross-site scripting (XSS) vulnerabilities in assets/misc/fallback-page.php in the Profile Builder plugin prior to 2.0.3 for WordPress allow remote malicious users to inject arbitrary web script or HTML via the (1) site_name, (2) message, or (3) site_url parameter.
Cozmoslabs Profile Builder
4.3
CVSSv2
CVE-2014-4576
Cross-site scripting (XSS) vulnerability in services/diagnostics.php in the WordPress Social Login plugin 2.0.3 and previous versions for WordPress allows remote malicious users to inject arbitrary web script or HTML via the xhrurl parameter.
Wordpress Social Login Project Wordpress Social Login
4.3
CVSSv2
CVE-2014-4521
Cross-site scripting (XSS) vulnerability in client-assist.php in the dsIDXpress IDX plugin prior to 2.1.1 for WordPress allows remote malicious users to inject arbitrary web script or HTML via the action parameter.
Diversesolutions Dsidxpress Idx Plugin 2.0.30
Diversesolutions Dsidxpress Idx Plugin 2.0.29
Diversesolutions Dsidxpress Idx Plugin 2.0.28
Diversesolutions Dsidxpress Idx Plugin 2.0.27
Diversesolutions Dsidxpress Idx Plugin 2.0.26
Diversesolutions Dsidxpress Idx Plugin 2.0.13
Diversesolutions Dsidxpress Idx Plugin 2.0.12
Diversesolutions Dsidxpress Idx Plugin 2.0.11
Diversesolutions Dsidxpress Idx Plugin 2.0.10
Diversesolutions Dsidxpress Idx Plugin 2.0.38
Diversesolutions Dsidxpress Idx Plugin 2.0.37
Diversesolutions Dsidxpress Idx Plugin 2.0.36
Diversesolutions Dsidxpress Idx Plugin 2.0.35
Diversesolutions Dsidxpress Idx Plugin 2.0.21
Diversesolutions Dsidxpress Idx Plugin 2.0.20
Diversesolutions Dsidxpress Idx Plugin 2.0.19
Diversesolutions Dsidxpress Idx Plugin 2.0.18
Diversesolutions Dsidxpress Idx Plugin 2.0.5
Diversesolutions Dsidxpress Idx Plugin 2.0.4
Diversesolutions Dsidxpress Idx Plugin 2.0.3
Diversesolutions Dsidxpress Idx Plugin 2.0.2
Diversesolutions Dsidxpress Idx Plugin 2.0.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »