WordPress visitors-online plugin SQL injection vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. visitors-online is a plugin for website visitor statistics. A SQL injection vulnerability exists in the WordPress visitors-online...

WordPress peters-login-redirect plugin cross-site request forgery vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. peters-login-redirect is a redirection plugin used in it. A cross-site request forgery vulnerability exists in the WordPress...

WordPress nelio-ab-testing plugin cross-site request forgery vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. nelio-ab-testing is a plugin for A/B testing of websites. A cross-site request forgery vulnerability exists in the WordPress...

PT-2019-7689 · WordPress · Crayon Syntax Highlighter

Name of the Vulnerable Software and Affected Versions: crayon-syntax-highlighter plugin versions prior to 2.8.4 Description: The issue concerns multiple XSS problems that can be triggered via AJAX requests. Recommendations: For versions prior to 2.8.4, update to version 2.8.4 or later to resolve...

CVE-2018-20972

The companion-auto-update plugin before 3.2.1 for WordPress has CSRF...

CVE-2017-18544

The invite-anyone plugin before 1.3.16 for WordPress has admin-panel CSRF...

Cross site request forgery (csrf)

The erident-custom-login-and-dashboard plugin before 3.5 for WordPress has CSRF...

Cross site request forgery (csrf)

The companion-sitemap-generator plugin before 3.7.0 for WordPress has CSRF...

CVE-2015-9326

The wp-business-intelligence-lite plugin before 1.6.3 for WordPress has SQL injection...

CVE-2019-14784

The "CP Contact Form with PayPal" plugin before 1.2.98 for WordPress has XSS in CSS edition...

WordPress simple-add-pages-or-posts plugin cross-site request forgery vulnerability

WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers. simple-add-pages-or-posts is used to add a plugin to one of the pages posts. A cross-site request forgery vulnerability...

WordPress newstatpress plugin cross-site scripting vulnerability (CNVD-2019-30376)

WordPress is the WordPress Foundation's set of blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. newstatpress is a plugin used in it for real-time statistics on blog visits. A cross-site scripting vulnerability exists in the...

CVE-2018-20968

The wp-ultimate-exporter plugin before 1.4.2 for WordPress has CSRF...

CVE-2015-9307

The wp-google-map-plugin plugin before 2.3.10 for WordPress has CSRF in the add/edit location feature...

CVE-2016-10883

The simple-add-pages-or-posts plugin before 1.7 for WordPress has CSRF for deleting users...

Cross site request forgery (csrf)

The google-document-embedder plugin before 2.6.2 for WordPress has CSRF...

Cross site request forgery (csrf)

The simple-add-pages-or-posts plugin before 1.7 for WordPress has CSRF for deleting users...

CVE-2016-10887

The all-in-one-wp-security-and-firewall plugin before 4.0.9 for WordPress has multiple SQL injection issues...

WordPress wp-database-backup plugin cross-site request forgery vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers. wp-database-backup plugin is a database backup and restore plugin used in it. A cross-site request forgery vulnerability...

WordPress wp-editor plugin cross-site scripting vulnerability

WordPress is a set of blogging platform developed by WordPress Foundation using PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers. wp-editor plugin is an editor plugin used in it. A cross-site scripting vulnerability exists in WordPress wp-editor plugin...