Vulnerabilities in unknown

4,233 results
CVE-2024-3112MEDIUMQuotes and Tips < 1.45 - Admin+ Arbitrary File UploadEPSS 0.4%CVE-2023-4642kk Star Ratings < 5.4.6 - Rating Tampering via Race ConditionEPSS 0.4%CVE-2024-10568MEDIUMAjax Search Lite < 4.12.4 - Admin+ Stored XSSEPSS 0.4%CVE-2025-8047CRITICALMultiple Plugins from itayamar - Supply Chain CompromiseEPSS 0.4%CVE-2024-1076MEDIUMSSL Zen <= 4.5.3 - Unauthenticated Private Keys AccessEPSS 0.4%CVE-2024-0711MEDIUMButtons Shortcode and Widget <= 1.16 - Stored XSS via shortcodeEPSS 0.4%CVE-2022-1960MyCSS <= 1.1 - Arbitrary Settings Update via CSRFEPSS 0.4%CVE-2021-24466Verse-O-Matic <= 4.1.1 - CSRF to Stored XSSEPSS 0.4%CVE-2022-1913Add Post URL <= 2.1.0 - Arbitrary Settings Update to Stored XSS via CSRFEPSS 0.4%CVE-2022-1914Clean-Contact <= 1.6 - Arbitrary Settings Update to Stored XSS via CSRFEPSS 0.4%CVE-2022-1847Rotating Posts <= 1.11 - Arbitrary Settings Update to Stored XSS via CSRFEPSS 0.4%CVE-2022-1603Mail Subscribe List < 2.1.4 - Arbitrary Subscribed User Deletion via CSRFEPSS 0.4%CVE-2021-24535Light Messages <= 1.0 - CSRF to Stored XSSEPSS 0.4%CVE-2021-24349Gallery From Files <= 1.6.0 - Reflected Cross-Site Scripting (XSS)EPSS 0.4%CVE-2022-0875miniOrange Google Authenticator < 1.0.5 - CSRF to Stored Cross-Site ScriptingEPSS 0.4%CVE-2021-24411Social Tape <= 1.0 - CSRF to Stored XSSEPSS 0.4%CVE-2021-24434Glass <= 1.3.2 - CSRF to Stored Cross-Site Scripting (XSS)EPSS 0.4%CVE-2022-2123WP Opt-in <= 1.4.1 - Arbitrary Settings Update via CSRFEPSS 0.4%CVE-2022-1594HC Custom WP-Admin URL <= 1.4 - Arbitrary Settings Update via CSRFEPSS 0.4%CVE-2022-1895underConstruction < 1.20 - Construction Mode Deactivation via CSRFEPSS 0.4%