Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wordpress wordpress 2.1 vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv2
CVE-2015-9400
The wordpress-meta-robots plugin up to and including 2.1 for WordPress has wp-admin/post-new.php text SQL injection.
Typomedia Wordpress Meta Robots
NA
CVE-2023-46627
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Ashish Ajani WordPress Simple HTML Sitemap plugin <= 2.1 versions.
Freelancer-coder Wordpress Simple Html Sitemap
NA
CVE-2023-45067
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Ashish Ajani WordPress Simple HTML Sitemap plugin <= 2.1 versions.
Freelancer-coder Wordpress Simple Html Sitemap
4.3
CVSSv2
CVE-2008-0205
Multiple cross-site request forgery (CSRF) vulnerabilities in math-comment-spam-protection.php in the Math Comment Spam Protection 2.1 and previous versions plugin for WordPress allow remote malicious users to perform actions as administrators via the (1) mcsp_opt_msg_no_answer o...
Wordpress Math Comment Spam Protection Plugin
4.3
CVSSv2
CVE-2008-0204
Multiple cross-site scripting (XSS) vulnerabilities in math-comment-spam-protection.php in the Math Comment Spam Protection 2.1 and previous versions plugin for WordPress allow remote malicious users to inject arbitrary web script or HTML via the (1) mcsp_opt_msg_no_answer or (2)...
Wordpress Math Comment Spam Protection Plugin
7.5
CVSSv2
CVE-2013-5917
SQL injection vulnerability in wp-comments-post.php in the NOSpam PTI plugin 2.1 for WordPress allows remote malicious users to execute arbitrary SQL commands via the comment_post_ID parameter.
Rodrigo Coimbra Nospam Pti 2.1
1 EDB exploit
7.5
CVSSv2
CVE-2009-0968
SQL injection vulnerability in fmoblog.php in the fMoblog plugin 2.1 for WordPress allows remote malicious users to execute arbitrary SQL commands via the id parameter to index.php. NOTE: some of these details are obtained from third party information.
Fahlstad Fmoblog Plugin 2.1
1 EDB exploit
10
CVSSv2
CVE-2012-3575
Unrestricted file upload vulnerability in uploader.php in the RBX Gallery plugin 2.1 for WordPress allows remote malicious users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in uploads/rbxslider.
Rbx Gallery Rbx Gallery 2.1
1 EDB exploit
7.5
CVSSv2
CVE-2013-3532
SQL injection vulnerability in settings.php in the Web Dorado Spider Video Player plugin 2.1 for WordPress allows remote malicious users to execute arbitrary SQL commands via the theme parameter.
Webdorado Spider Video Player 2.1
1 EDB exploit
7.5
CVSSv2
CVE-2009-2383
SQL injection vulnerability in BTE_RW_webajax.php in the Related Sites plugin 2.1 for WordPress allows remote malicious users to execute arbitrary SQL commands via the guid parameter.
Blogtrafficexchange Related-sites 2.1
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
CVE-2006-4304
wireless
CVE-2023-23022
local file inclusion
CVE-2024-27058
CVE-2024-33820
open redirect
CVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »