CVE-2023-34012

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Premium Addons for Elementor Premium Addons PRO plugin = 2.8.24 versions...

CVE-2023-34178

Cross-Site Request Forgery CSRF vulnerability in Groundhogg Inc. Groundhogg plugin = 2.7.11 versions...

CVE-2023-3063

The SP Project & Document Manager plugin for WordPress is vulnerable to Insecure Direct Object References in versions up to, and including, 4.67. This is due to the plugin providing user-controlled access to objects, letting a user bypass authorization and access system resources. This makes it...

CVE-2023-47768

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Russell Jamieson Footer Putter plugin = 1.17 versions...

CVE-2023-28166

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Aakif Kadiwala Tags Cloud Manager plugin = 1.0.0 versions...

CVE-2023-33207

Cross-Site Request Forgery CSRF vulnerability in Krzysztof Wielogórski Stop Referrer Spam plugin = 1.3.0 versions...

CVE-2023-47686

Cross-Site Request Forgery CSRF vulnerability in Kiboko Labs Arigato Autoresponder and Newsletter plugin = 2.7.2.2 versions...

CVE-2023-25055

Cross-Site Request Forgery CSRF vulnerability in Amit Agarwal Google XML Sitemap for Videos plugin = 2.6.1 versions...

CVE-2023-24372

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in USB Memory Direct Simple Custom Author Profiles plugin = 1.0.0 versions...

CVE-2023-47231

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Bainternet ShortCodes UI plugin = 1.9.8 versions...

CVE-2022-43458

Auth. contributor+ Cross-Site Scripting XSS vulnerability in Code Tides Advanced Floating Content plugin = 1.2.1 versions...

CVE-2022-32970

Auth. editor+ Stored Cross-Site Scripting XSS vulnerability in Themify Themify Portfolio Post plugin = 1.2.4 versions...

CVE-2022-46857

Cross-Site Request Forgery CSRF vulnerability in SiteAlert plugin = 1.9.7 versions...

CVE-2022-47587

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Cornel Raiu WP Search Analytics plugin = 1.4.5 versions...

CVE-2022-46798

Cross-Site Request Forgery CSRF vulnerability in HasThemes ShopLentor plugin = 2.5.1 leading to plugin settings change...

CVE-2022-47175

Cross-Site Request Forgery CSRF vulnerability in P Royal Royal Elementor Addons and Templates plugin = 1.3.75 versions...

CVE-2022-47766

PopojiCMS v2.0.1 backend plugin function has a file upload vulnerability...

CVE-2022-43461

Stored Cross-Site Scripting XSS vulnerability in John West Slideshow SE plugin = 2.5.5 versions...

WordPress plugin AncoraThemes Umberto 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code issue...

WordPress plugin Visual Header 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...