Vulnerabilities in unknown
4,233 resultsCVE-2024-3112MEDIUMQuotes and Tips < 1.45 - Admin+ Arbitrary File UploadEPSS 0.4%CVE-2023-4642—kk Star Ratings < 5.4.6 - Rating Tampering via Race ConditionEPSS 0.4%CVE-2024-10568MEDIUMAjax Search Lite < 4.12.4 - Admin+ Stored XSSEPSS 0.4%CVE-2025-8047CRITICALMultiple Plugins from itayamar - Supply Chain CompromiseEPSS 0.4%CVE-2024-1076MEDIUMSSL Zen <= 4.5.3 - Unauthenticated Private Keys AccessEPSS 0.4%CVE-2024-0711MEDIUMButtons Shortcode and Widget <= 1.16 - Stored XSS via shortcodeEPSS 0.4%CVE-2022-1960—MyCSS <= 1.1 - Arbitrary Settings Update via CSRFEPSS 0.4%CVE-2021-24466—Verse-O-Matic <= 4.1.1 - CSRF to Stored XSSEPSS 0.4%CVE-2022-1913—Add Post URL <= 2.1.0 - Arbitrary Settings Update to Stored XSS via CSRFEPSS 0.4%CVE-2022-1914—Clean-Contact <= 1.6 - Arbitrary Settings Update to Stored XSS via CSRFEPSS 0.4%CVE-2022-1847—Rotating Posts <= 1.11 - Arbitrary Settings Update to Stored XSS via CSRFEPSS 0.4%CVE-2022-1603—Mail Subscribe List < 2.1.4 - Arbitrary Subscribed User Deletion via CSRFEPSS 0.4%CVE-2021-24535—Light Messages <= 1.0 - CSRF to Stored XSSEPSS 0.4%CVE-2021-24349—Gallery From Files <= 1.6.0 - Reflected Cross-Site Scripting (XSS)EPSS 0.4%CVE-2022-0875—miniOrange Google Authenticator < 1.0.5 - CSRF to Stored Cross-Site ScriptingEPSS 0.4%CVE-2021-24411—Social Tape <= 1.0 - CSRF to Stored XSSEPSS 0.4%CVE-2021-24434—Glass <= 1.3.2 - CSRF to Stored Cross-Site Scripting (XSS)EPSS 0.4%CVE-2022-2123—WP Opt-in <= 1.4.1 - Arbitrary Settings Update via CSRFEPSS 0.4%CVE-2022-1594—HC Custom WP-Admin URL <= 1.4 - Arbitrary Settings Update via CSRFEPSS 0.4%CVE-2022-1895—underConstruction < 1.20 - Construction Mode Deactivation via CSRFEPSS 0.4%