WordPress Vulnerability Database - Patchstack

Vulnerability Database

Software

Vulnerability

Type

Version

Published

Medium Severity

4.8

Authenticated Stored CrossSite Scripting (XSS) vulnerability

Medium Severity

4.8

Plugin

<= 13.2.1

2022-05-24

Rating by BestWebSoft

Medium Severity

6.5

Rating Denial of Service (DoS) vulnerability

Medium Severity

6.5

Plugin

<= 1.4

2022-05-24

Simple Membership

Medium Severity

6.1

Reflected CrossSite Scripting (XSS) vulnerability

Medium Severity

6.1

Plugin

<= 4.1.0

2022-05-23

Appointment Hour Booking

Medium Severity

4.8

Authenticated Stored CrossSite Scripting (XSS) vulnerability

Medium Severity

4.8

Plugin

<= 1.3.55

2022-05-23

Minimal Coming Soon & Maintenance Mode – Coming Soon Page

Medium Severity

4.8

Multiple Authenticated Stored CrossSite Scripting (XSS) vulnerabilities

Medium Severity

4.8

Plugin

<= 2.33

2022-05-23

Medium Severity

4.8

Reflected CrossSite Scripting (XSS) vulnerability

Medium Severity

4.8

Plugin

<= 7.4.4

2022-05-23

Like Button Rating

Medium Severity

4.3

Arbitrary email Sending vulnerability

Medium Severity

4.3

Plugin

<= 2.6.44

2022-05-23

Filr – Secure document library

Medium Severity

6.4

Subscriber+ AJAX Calls vulnerability

Medium Severity

6.4

Plugin

<= 1.2.2

2022-05-23

Medium Severity

5.4

Protection Disabling via CrossSite Request Forgery (CSRF) vulnerability

Medium Severity

5.4

Plugin

<= 0.40

2022-05-23

Medium Severity

5.5

Authenticated Stored CrossSite Scripting (XSS) vulnerability

Medium Severity

5.5

Plugin

<= 1.2

2022-05-23

Medium Severity

4.8

Authenticated Stored CrossSite Scripting (XSS) vulnerability

Medium Severity

4.8

Plugin

<= 0.1.2

2022-05-23

Medium Severity

6.1

Arbitrary Settings Update via CSRF vulnerability leading to XSS

Medium Severity

6.1

Plugin

<= 2.10.6

2022-05-23

Auto Delete Posts

Medium Severity

5.4

Arbitrary Settings Update via CrossSite Request Forgery (CSRF) vulnerability

Medium Severity

5.4

Plugin

<= 1.3.0

2022-05-23

Quick Subscribe

Medium Severity

6.1

Arbitrary Settings Update via CSRF leading to Stored XSS vulnerability

Medium Severity

6.1

Plugin

<= 1.7.1

2022-05-23

Keep Backup Daily

Medium Severity

6.1

Reflected CrossSite Scripting (XSS) vulnerability

Medium Severity

6.1

Plugin

<= 2.0.2

2022-05-23

Zephyr Project Manager

Medium Severity

6.1

Reflected CrossSite Scripting (XSS) vulnerability

Medium Severity

6.1

Plugin

<= 3.2.40

2022-05-23

RB Internal Links

Medium Severity

6.1

Stored CrossSite Scripting (XSS) via CrossSite Request Forgery (CSRF) vulnerability

Medium Severity

6.1

Plugin

<= 2.0.16

2022-05-23

High Severity

8.3

Unauthenticated SQL Injection (SQLi) vulnerability

High Severity

8.3

Plugin

<= 2.3.8

2022-05-23

Medium Severity

6.1

Arbitrary Settings Update via CSRF leading to Stored XSS vulnerability

Medium Severity

6.1

Plugin

<= 3.4.10

2022-05-23

Peter’s Collaboration E-mails

Medium Severity

6.3

mails plugin <= 2.2.0 Arbitrary Settings Update via CrossSite Request Forgery (CSRF) vulnerability

Medium Severity

6.3

Plugin

<= 2.2.0

2022-05-23

Newer entries Older entries

Found a vulnerability that puts your sites at risk?

Found a vulnerability? Help us secure the web and join our community of ethical hackers.

Are you the developer of this software? Hire our researchers for a thorough security audit.