Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wordpress wordpress 2.0.8 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-34867
Unauthenticated Sensitive Information Disclosure vulnerability in WP Libre Form 2 plugin <= 2.0.8 at WordPress allows malicious users to list and delete submissions. Affects only versions from 2.0.0 to 2.0.8.
Wp Libre Form Project Wp Libre Form
4.3
CVSSv2
CVE-2013-6280
Cross-site scripting (XSS) vulnerability in Social Sharing Toolkit plugin prior to 2.1.2 for WordPress allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Linksalpha Social Sharing Toolkit Plugin
Linksalpha Social Sharing Toolkit Plugin 1.3.1
Linksalpha Social Sharing Toolkit Plugin 1.3.0
Linksalpha Social Sharing Toolkit Plugin 1.2.5
Linksalpha Social Sharing Toolkit Plugin 1.2.0
Linksalpha Social Sharing Toolkit Plugin 1.0.1
Linksalpha Social Sharing Toolkit Plugin 2.0.6
Linksalpha Social Sharing Toolkit Plugin 2.0.5
Linksalpha Social Sharing Toolkit Plugin 2.0.4
Linksalpha Social Sharing Toolkit Plugin 2.0.3
Linksalpha Social Sharing Toolkit Plugin 2.0.9
Linksalpha Social Sharing Toolkit Plugin 2.0.7
Linksalpha Social Sharing Toolkit Plugin 2.0.2
Linksalpha Social Sharing Toolkit Plugin 2.0.0
Linksalpha Social Sharing Toolkit Plugin 1.0.0
Linksalpha Social Sharing Toolkit Plugin 2.1.0
Linksalpha Social Sharing Toolkit Plugin 2.0.8
Linksalpha Social Sharing Toolkit Plugin 2.0.1
Linksalpha Social Sharing Toolkit Plugin 1.3.2
NA
CVE-2023-5799
The WP Hotel Booking WordPress plugin prior to 2.0.8 does not have proper authorisation when deleting a package, allowing Contributor and above roles to delete posts that do no belong to them
Thimpress Wp Hotel Booking
6.5
CVSSv2
CVE-2021-24754
The MainWP Child Reports WordPress plugin prior to 2.0.8 does not validate or sanitise the order parameter before using it in a SQL statement in the admin dashboard, leading to an SQL injection issue
Mainwp Mainwp Child Reports
4.3
CVSSv2
CVE-2022-0147
The Cookie Information | Free GDPR Consent Solution WordPress plugin prior to 2.0.8 does not escape user data before outputting it back in attributes in the admin dashboard, leading to a Reflected Cross-Site Scripting issue
Cookieinformation Wp-gdpr-compliance
NA
CVE-2022-4787
Themify Shortcodes WordPress plugin prior to 2.0.8 does not validate and escape one of its shortcode attributes, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attack.
Themify Shortcodes
NA
CVE-2023-5651
The WP Hotel Booking WordPress plugin prior to 2.0.8 does not have authorisation and CSRF checks, as well as does not ensure that the package to be deleted is a package, allowing any authenticated users, such as subscriber to delete arbitrary posts
Thimpress Wp Hotel Booking
NA
CVE-2022-4548
The Optimize images ALT Text & names for SEO using AI WordPress plugin prior to 2.0.8 does not have CSRF check in place when updating its settings, which could allow malicious users to make a logged-in admin change them via a CSRF attack.
Imageseo Optimize Images Alt Text \\(alt Tag\\) \\& Names For Seo Using Ai
NA
CVE-2023-0151
The uTubeVideo Gallery WordPress plugin prior to 2.0.8 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site S...
Utubevideo Gallery Project Utubevideo Gallery
4.3
CVSSv2
CVE-2014-4521
Cross-site scripting (XSS) vulnerability in client-assist.php in the dsIDXpress IDX plugin prior to 2.1.1 for WordPress allows remote malicious users to inject arbitrary web script or HTML via the action parameter.
Diversesolutions Dsidxpress Idx Plugin 2.0.30
Diversesolutions Dsidxpress Idx Plugin 2.0.29
Diversesolutions Dsidxpress Idx Plugin 2.0.28
Diversesolutions Dsidxpress Idx Plugin 2.0.27
Diversesolutions Dsidxpress Idx Plugin 2.0.26
Diversesolutions Dsidxpress Idx Plugin 2.0.13
Diversesolutions Dsidxpress Idx Plugin 2.0.12
Diversesolutions Dsidxpress Idx Plugin 2.0.11
Diversesolutions Dsidxpress Idx Plugin 2.0.10
Diversesolutions Dsidxpress Idx Plugin 2.0.38
Diversesolutions Dsidxpress Idx Plugin 2.0.37
Diversesolutions Dsidxpress Idx Plugin 2.0.36
Diversesolutions Dsidxpress Idx Plugin 2.0.35
Diversesolutions Dsidxpress Idx Plugin 2.0.21
Diversesolutions Dsidxpress Idx Plugin 2.0.20
Diversesolutions Dsidxpress Idx Plugin 2.0.19
Diversesolutions Dsidxpress Idx Plugin 2.0.18
Diversesolutions Dsidxpress Idx Plugin 2.0.5
Diversesolutions Dsidxpress Idx Plugin 2.0.4
Diversesolutions Dsidxpress Idx Plugin 2.0.3
Diversesolutions Dsidxpress Idx Plugin 2.0.2
Diversesolutions Dsidxpress Idx Plugin 2.0.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-52710
arbitrary
CVE-2024-5272
CVE-2024-2961
brute force
remote
CVE-2024-32944
CVE-2024-36241
CVE-2024-5274
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »