Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wordpress wordpress 3.1.1 vulnerabilities and exploits
(subscribe to this query)
4
CVSSv2
CVE-2022-4905
A vulnerability was found in UDX Stateless Media Plugin 3.1.1 on WordPress. It has been declared as problematic. This vulnerability affects the function setup_wizard_interface of the file lib/classes/class-settings.php. The manipulation of the argument settings leads to cross sit...
Udx Stateless Media Plugin 3.1.1
4.3
CVSSv2
CVE-2014-6312
Cross-site request forgery (CSRF) vulnerability in the Login Widget With Shortcode (login-sidebar-widget) plugin prior to 3.2.1 for WordPress allows remote malicious users to hijack the authentication of administrators for requests that conduct cross-site scripting (XSS) attacks ...
Login Widget With Shortcode Project Login Widget With Shortcode
Login Widget With Shortcode Project Login Widget With Shortcode 1.0.1
Login Widget With Shortcode Project Login Widget With Shortcode 2.0.1
Login Widget With Shortcode Project Login Widget With Shortcode 2.0.2
Login Widget With Shortcode Project Login Widget With Shortcode 2.1.3
Login Widget With Shortcode Project Login Widget With Shortcode 2.2.3
Login Widget With Shortcode Project Login Widget With Shortcode 2.2.4
1 EDB exploit
4.3
CVSSv2
CVE-2011-3850
Cross-site scripting (XSS) vulnerability in the Atahualpa theme prior to 3.6.8 for WordPress allows remote malicious users to inject arbitrary web script or HTML via the s parameter.
Bytesforall Atahualpa
Bytesforall Atahualpa 2.0
Bytesforall Atahualpa 2.01
Bytesforall Atahualpa 2.2
Bytesforall Atahualpa 2.21
Bytesforall Atahualpa 3.1
Bytesforall Atahualpa 3.1.1
Bytesforall Atahualpa 3.1.2
Bytesforall Atahualpa 3.1.3
Bytesforall Atahualpa 3.1.4
Bytesforall Atahualpa 3.1.5
Bytesforall Atahualpa 3.1.6
1 EDB exploit
7.5
CVSSv2
CVE-2011-4671
SQL injection vulnerability in adrotate/adrotate-out.php in the AdRotate plugin 3.6.6, and other versions prior to 3.6.8, for WordPress allows remote malicious users to execute arbitrary SQL commands via the track parameter (aka redirect URL).
Adrotateplugin Adrotate
Adrotateplugin Adrotate 0.1
Adrotateplugin Adrotate 0.2
Adrotateplugin Adrotate 0.3
Adrotateplugin Adrotate 0.4
Adrotateplugin Adrotate 0.5
Adrotateplugin Adrotate 0.6
Adrotateplugin Adrotate 0.7
Adrotateplugin Adrotate 0.7.1
Adrotateplugin Adrotate 0.8
Adrotateplugin Adrotate 1.0
Adrotateplugin Adrotate 2.0
2 EDB exploits
5.1
CVSSv2
CVE-2013-5962
Unrestricted file upload vulnerability in frames/upload-images.php in the Complete Gallery Manager plugin prior to 3.3.4 rev40279 for WordPress allows remote malicious users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct...
Envato Complete Gallery Manager Plugin
Envato Complete Gallery Manager Plugin 1.0.0
Envato Complete Gallery Manager Plugin 1.0.1
Envato Complete Gallery Manager Plugin 1.0.2
Envato Complete Gallery Manager Plugin 2.0.0
Envato Complete Gallery Manager Plugin 2.0.1
Envato Complete Gallery Manager Plugin 2.0.2
Envato Complete Gallery Manager Plugin 2.0.3
Envato Complete Gallery Manager Plugin 3.0.0
Envato Complete Gallery Manager Plugin 3.0.1
Envato Complete Gallery Manager Plugin 3.1.0
Envato Complete Gallery Manager Plugin 3.1.1
1 EDB exploit
7.5
CVSSv2
CVE-2013-1852
SQL injection vulnerability in leaguemanager.php in the LeagueManager plugin prior to 3.8.1 for WordPress allows remote malicious users to execute arbitrary SQL commands via the league_id parameter in the leaguemanager-export page to wp-admin/admin.php.
Kolja Schleich Leaguemanager
Kolja Schleich Leaguemanager 1.0
Kolja Schleich Leaguemanager 1.1
Kolja Schleich Leaguemanager 1.2
Kolja Schleich Leaguemanager 1.2.1
Kolja Schleich Leaguemanager 1.2.2
Kolja Schleich Leaguemanager 1.3
Kolja Schleich Leaguemanager 1.4
Kolja Schleich Leaguemanager 1.4.1
Kolja Schleich Leaguemanager 1.4.2
Kolja Schleich Leaguemanager 1.5
Kolja Schleich Leaguemanager 2.0
1 EDB exploit
1 Github repository
6.8
CVSSv2
CVE-2014-2340
Cross-site request forgery (CSRF) vulnerability in the XCloner plugin prior to 3.1.1 for WordPress allows remote malicious users to hijack the authentication of administrators for requests that create website backups via a request to wp-admin/plugins.php.
Xcloner Xcloner
Xcloner Xcloner 2.1
Xcloner Xcloner 2.1.2
Xcloner Xcloner 2.2.1
Xcloner Xcloner 3.0
Xcloner Xcloner 3.0.1
Xcloner Xcloner 3.0.2
Xcloner Xcloner 3.0.3
Xcloner Xcloner 3.0.4
Xcloner Xcloner 3.0.5
Xcloner Xcloner 3.0.6
Xcloner Xcloner 3.0.7
1 EDB exploit
4.3
CVSSv2
CVE-2013-1636
Cross-site scripting (XSS) vulnerability in open-flash-chart.swf in Open Flash Chart (aka Open-Flash Chart), as used in the Pretty Link Lite plugin prior to 1.6.3 for WordPress, JNews (com_jnews) component 8.0.1 for Joomla!, and CiviCRM 3.1.0 up to and including 4.2.9 and 4.3.0 u...
Blair Williams Pretty Link Lite
Blair Williams Pretty Link Lite 1.6.0
Blair Williams Pretty Link Lite 1.6.1
Joobi Com Jnews 8.0.1
Civicrm Civicrm 3.1.0
Civicrm Civicrm 3.1.1
Civicrm Civicrm 3.1.2
Civicrm Civicrm 3.1.3
Civicrm Civicrm 3.1.4
Civicrm Civicrm 3.1.5
Civicrm Civicrm 3.1.6
Civicrm Civicrm 3.2.0
1 EDB exploit
5
CVSSv2
CVE-2012-0896
Absolute path traversal vulnerability in download.php in the Count Per Day module prior to 3.1.1 for WordPress allows remote malicious users to read arbitrary files via the f parameter.
Count Per Day Project Count Per Day 2.2
Count Per Day Project Count Per Day 2.15
Count Per Day Project Count Per Day 2.15.1
Count Per Day Project Count Per Day 2.16
Tom Braider Count Per Day
Tom Braider Count Per Day 1.0
1 EDB exploit
4.3
CVSSv2
CVE-2012-0895
Cross-site scripting (XSS) vulnerability in map/map.php in the Count Per Day module prior to 3.1.1 for WordPress allows remote malicious users to inject arbitrary web script or HTML via the map parameter.
Tom Braider Count Per Day
Tom Braider Count Per Day 1.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-44852
CVE-2024-3400
CVE-2024-30129
insecure direct object reference
CVE-2024-12115
CVE-2024-11220
CVE-2024-51378
privilege escalation
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »