Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wordpress wordpress 1.5.1 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2014-8800
Cross-site scripting (XSS) vulnerability in nextend-facebook-settings.php in the Nextend Facebook Connect plugin prior to 1.5.1 for WordPress allows remote malicious users to inject arbitrary web script or HTML via the fb_login_button parameter in a newfb_update_options action.
Nextendweb Nextend Facebook Connect
1 EDB exploit
4.3
CVSSv2
CVE-2014-8584
Cross-site scripting (XSS) vulnerability in the Web Dorado Spider Video Player (aka WordPress Video Player) plugin prior to 1.5.2 for WordPress allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Web-dorado Web-dorado Spider Video Player 1.4.7
Web-dorado Web-dorado Spider Video Player 1.5.1
Web-dorado Web-dorado Spider Video Player 1.4.9
Web-dorado Web-dorado Spider Video Player 1.5
Web-dorado Web-dorado Spider Video Player 1.4.8
4.3
CVSSv2
CVE-2012-6623
Cross-site scripting (XSS) vulnerability in fs-admin/wpf-add-forum.php in the ForumPress WP Forum Server plugin prior to 1.7.5 for WordPress allows remote malicious users to inject arbitrary web script or HTML via the groupid parameter in an addforum action to wp-admin/admin.php.
Vasthtml Forumpress 1.6
Vasthtml Forumpress 1.6.2
Vasthtml Forumpress 1.6.3
Vasthtml Forumpress 1.6.4
Vasthtml Forumpress 1.0
Vasthtml Forumpress 1.1
Vasthtml Forumpress 1.2
Vasthtml Forumpress 1.3
Vasthtml Forumpress 1.6.9
Vasthtml Forumpress 1.7
Vasthtml Forumpress 1.7.1
Vasthtml Forumpress 1.7.2
Vasthtml Forumpress 1.7.3
Vasthtml Forumpress 1.4
Vasthtml Forumpress 1.5.1
Vasthtml Forumpress 1.6.6
Vasthtml Forumpress 1.6.8
Vasthtml Forumpress 1.5
Vasthtml Forumpress 1.5.2
Vasthtml Forumpress 1.6.5
Vasthtml Forumpress 1.6.7
Vasthtml Forumpress
6.8
CVSSv2
CVE-2012-5387
Cross-site request forgery (CSRF) vulnerability in wlcms-plugin.php in the White Label CMS plugin prior to 1.5.1 for WordPress allows remote malicious users to hijack the authentication of administrators for requests that modify the developer name via the wlcms_o_developer_name p...
Videousermanuals White-label-cms 1.4.1
Videousermanuals White-label-cms 1.4
Videousermanuals White-label-cms 1.0.2
Videousermanuals White-label-cms 1.4.3
Videousermanuals White-label-cms 1.4.2
Videousermanuals White-label-cms 1.0.4
Videousermanuals White-label-cms 1.0.3
Videousermanuals White-label-cms
Videousermanuals White-label-cms 1.4.7
Videousermanuals White-label-cms 1.3
Videousermanuals White-label-cms 1.2
Videousermanuals White-label-cms 1.4.6
Videousermanuals White-label-cms 1.4.5
Videousermanuals White-label-cms 1.4.4
Videousermanuals White-label-cms 1.1
Videousermanuals White-label-cms 1.0.5
1 EDB exploit
6.8
CVSSv2
CVE-2013-5963
Unrestricted file upload vulnerability in multi.php in Simple Dropbox Upload plugin prior to 1.8.8.1 for WordPress allows remote malicious users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in wp-co...
Cdsincdesign Simple Dropbox Upload Form
Cdsincdesign Simple Dropbox Upload Form 0.5.0
Cdsincdesign Simple Dropbox Upload Form 1.0.0
Cdsincdesign Simple Dropbox Upload Form 1.1.0
Cdsincdesign Simple Dropbox Upload Form 1.1.1
Cdsincdesign Simple Dropbox Upload Form 1.1.2
Cdsincdesign Simple Dropbox Upload Form 1.2.0
Cdsincdesign Simple Dropbox Upload Form 1.3.0
Cdsincdesign Simple Dropbox Upload Form 1.3.1
Cdsincdesign Simple Dropbox Upload Form 1.4.0
Cdsincdesign Simple Dropbox Upload Form 1.5.0
Cdsincdesign Simple Dropbox Upload Form 1.5.1
Cdsincdesign Simple Dropbox Upload Form 1.5.2
Cdsincdesign Simple Dropbox Upload Form 1.5.3
Cdsincdesign Simple Dropbox Upload Form 1.6.0
Cdsincdesign Simple Dropbox Upload Form 1.7.0
Cdsincdesign Simple Dropbox Upload Form 1.8.0
Cdsincdesign Simple Dropbox Upload Form 1.8.1
Cdsincdesign Simple Dropbox Upload Form 1.8.2
Cdsincdesign Simple Dropbox Upload Form 1.8.3
Cdsincdesign Simple Dropbox Upload Form 1.8.4
Cdsincdesign Simple Dropbox Upload Form 1.8.5
4.3
CVSSv2
CVE-2015-9336
The clean-login plugin prior to 1.5.1 for WordPress has reflected XSS.
Codection Clean Login
NA
CVE-2022-45829
Auth. Path Traversal vulnerability in Easy WP SMTP plugin <= 1.5.1 at WordPress.
Wp-ecommerce Easy Wp Smtp
NA
CVE-2022-45833
Auth. Path Traversal vulnerability in Easy WP SMTP plugin <= 1.5.1 on WordPress.
Wp-ecommerce Easy Wp Smtp
9
CVSSv2
CVE-2020-9043
The wpCentral plugin prior to 1.5.1 for WordPress allows disclosure of the connection key.
Wpcentral Wpcentral
NA
CVE-2022-42699
Auth. Remote Code Execution vulnerability in Easy WP SMTP plugin <= 1.5.1 on WordPress.
Wp-ecommerce Easy Wp Smtp
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »