Exploit for CVE-2026-27384

CVE-2026-27384 CVE-2026-27384 — W3 Total Cache mfunc/eval...

CVE-2024-1350

Missing Authorization vulnerability in Prasidhda Malla Honeypot for WP Comment.This issue affects Honeypot for WP Comment: from n/a through 2.2.3...

CVE-2024-24933

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Prasidhda Malla Honeypot for WP Comment allows Reflected XSS.This issue affects Honeypot for WP Comment: from n/a through 2.2.3...

WordPress Comment Images Reloaded Plugin <= 2.2.1 is vulnerable to Broken Access Control

Software Comment Images Reloaded Type Plugin Vulnerable versions = 2.2.1 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-5856 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID a3534aef50ef Credits Lucio Sá Required...

WordPress Comment Reply Email Plugin <= 1.3 is vulnerable to Cross Site Scripting (XSS)

Software Comment Reply Email Type Plugin Vulnerable versions = 1.3 Fixed in 1.5 OWASP Top 10 A1: Injection Classification Cross Site Scripting XSS CVE CVE-2024-35773 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID 8f46fb8fc4c8 Credits Masamichi Aoki Required privilege...

CVE-2024-24933

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Prasidhda Malla Honeypot for WP Comment allows Reflected XSS.This issue affects Honeypot for WP Comment: from n/a through 2.2.3...

WordPress Comment Blacklist Updater Plugin <= 1.1.0 is vulnerable to Broken Access Control

Software Comment Blacklist Updater Type Plugin Vulnerable versions = 1.1.0 Fixed in 1.2.0 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-44147 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 32e14d976eb2 Credits Nguyen Xuan Chien...

CVE-2022-0279 AnyComment < 0.2.18 - Comment Rating Increase/Decrease via Race Condition

The AnyComment WordPress plugin before 0.2.18 is affected by a race condition when liking/disliking a comment/reply, which could allow any authenticated user to quickly raise their rating or lower the rating of other users...

WordPress Comment Control Plugin <= 0.3.0 - SQL Injection

This plugin is prone to an SQL injection vulnerability in comment-control.php type parameter. Solution Update the plugin...

WordPress Comment Extra Fields 1.7 CSRF / XSS

Description : Wordpress Plugins - Comment Extra Fields XSRF/XSS Injection : http://site/wordpress/wp-content/plugins/comment-extra-field/scripts/swfupload.swf?movieName=";catcheif!self.aself.a=!alert'XSS';//...

WordPress Comment Rating Plugin Multiple Vulnerabilities

WordPress Comment Rating Plugin is prone to cross-site scripting XSS and SQL injection SQLi vulnerabilities. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...