Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wordpress wordpress 3.0.6 vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2024-11219
The Otter Blocks – Gutenberg Blocks, Page Builder for Gutenberg Editor & FSE plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 3.0.6 via the get_image function. This makes it possible for unauthenticated malicious users to view a...
4.3
CVSSv2
CVE-2012-4263
Cross-site scripting (XSS) vulnerability in inc/admin/content.php in the Better WP Security (better_wp_security) plugin prior to 3.2.5 for WordPress allows remote malicious users to inject arbitrary web script or HTML via the HTTP_USER_AGENT header.
Bit51 Better-wp-security
Bit51 Better-wp-security -
Bit51 Better-wp-security 0.1
Bit51 Better-wp-security 0.2
Bit51 Better-wp-security 0.3
Bit51 Better-wp-security 0.4
Bit51 Better-wp-security 0.5
Bit51 Better-wp-security 0.6
Bit51 Better-wp-security 0.7
Bit51 Better-wp-security 0.8
Bit51 Better-wp-security 0.9
Bit51 Better-wp-security 0.10
4.3
CVSSv2
CVE-2012-4264
Multiple cross-site scripting (XSS) vulnerabilities in the Better WP Security (better_wp_security) plugin prior to 3.2.5 for WordPress allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors related to "server variables," a different ...
Bit51 Better-wp-security
Bit51 Better-wp-security -
Bit51 Better-wp-security 0.1
Bit51 Better-wp-security 0.2
Bit51 Better-wp-security 0.3
Bit51 Better-wp-security 0.4
Bit51 Better-wp-security 0.5
Bit51 Better-wp-security 0.6
Bit51 Better-wp-security 0.7
Bit51 Better-wp-security 0.8
Bit51 Better-wp-security 0.9
Bit51 Better-wp-security 0.10
5.4
CVSSv3
CVE-2024-1238
The ElementsKit Elementor addons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the button ID parameter in all versions up to, and including, 3.0.6 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attacker...
Wpmet Elements Kit Elementor Addons
3.5
CVSSv2
CVE-2022-0450
The Menu Image, Icons made easy WordPress plugin prior to 3.0.6 does not have authorisation and CSRF checks when saving menu settings, and does not validate, sanitise and escape them. As a result, any authenticate users, such as subscriber can update the settings or arbitrary men...
Freshlightlab Menu Image, Icons Made Easy
5.4
CVSSv3
CVE-2024-2803
The ElementsKit Elementor addons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the countdown widget in all versions up to, and including, 3.0.6 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible f...
Wpmet Elements Kit Elementor Addons
8.8
CVSSv3
CVE-2024-2047
The ElementsKit Elementor addons plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 3.0.6 via the render_raw function. This makes it possible for authenticated attackers, with contributor-level access and above, to include and execute...
Wpmet Elements Kit Elementor Addons
6.5
CVSSv2
CVE-2015-2673
The ec_ajax_update_option and ec_ajax_clear_all_taxrates functions in inc/admin/admin_ajax_functions.php in the WP EasyCart plugin 1.1.30 up to and including 3.0.20 for WordPress allow remote malicious users to gain administrator privileges and execute arbitrary code via the opti...
Wpeasycart Wp Easycart 1.1.30
Wpeasycart Wp Easycart 1.1.31
Wpeasycart Wp Easycart 1.1.32
Wpeasycart Wp Easycart 1.1.33
Wpeasycart Wp Easycart 1.1.34
Wpeasycart Wp Easycart 1.1.35
Wpeasycart Wp Easycart 1.1.36
Wpeasycart Wp Easycart 1.2.0
Wpeasycart Wp Easycart 1.2.1
Wpeasycart Wp Easycart 1.2.2
Wpeasycart Wp Easycart 1.2.3
Wpeasycart Wp Easycart 1.2.4
7.5
CVSSv3
CVE-2024-11423
The Ultimate Gift Cards for WooCommerce – Create WooCommerce Gift Cards, Gift Vouchers, Redeem & Manage Digital Gift Coupons. Offer Gift Certificates, Schedule Gift Cards, and Use Advance Coupons With Personalized Templates plugin for WordPress is vulnerable to unauthor...
Wp Swings Gift Cards For Woocommerce Pro
Wpswings Ultimate Gift Cards For Woocommerce – Create Woocommerce Gift Cards, Gift Vouchers, Redeem & Manage Digital Gift Coupons. Offer Gift Certificates, Schedule Gift Cards, And Use Advance Coupons With Personalized Templates
1 Github repository
Preferred Score:
CVSSv2
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
CVE-2025-0575
CVE-2024-55591
CVE-2024-41742
com.transsion.carlcare
CVE-2024-57926
code injection
CVE-2024-12365
tenda
insecure direct object reference
CVE-2024-13433
tduck-platform
code-projects
XML injection
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5