Live Vulnerability Intelligence
Threat Database
Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.
Threat Entry
Updated 2025-04-23
CVE-2023-4795 - Before 1 Plugin
The Testimonial Slider Shortcode WordPress plugin before 1.1.9 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against high privilege users such as admin
PLUGIN
Before 1
CVE-2023-4795
Risk Score
Threat Entry
Updated 2025-04-23
CVE-2023-4725 - Before 1 Plugin
The Simple Posts Ticker WordPress plugin before 1.1.6 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)
PLUGIN
Before 1
CVE-2023-4725
Risk Score
Threat Entry
Updated 2025-04-23
CVE-2023-4666 - Before 1 Plugin
The Form Maker by 10Web WordPress plugin before 1.15.20 does not validate signatures when creating them on the server from user input, allowing unauthenticated users to create arbitrary files and lead to RCE
PLUGIN
Before 1
CVE-2023-4666
Risk Score
Threat Entry
Updated 2025-04-23
CVE-2023-4646 - Before 1 Plugin
The Simple Posts Ticker WordPress plugin before 1.1.6 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks.
PLUGIN
Before 1
CVE-2023-4646
Risk Score
Threat Entry
Updated 2025-04-23
CVE-2023-3746 - Before 1 Plugin
The ActivityPub WordPress plugin before 1.0.0 does not sanitize and escape some data from post content, which could allow contributor and above role to perform Stored Cross-Site Scripting attacks
PLUGIN
Before 1
CVE-2023-3746
Risk Score
Threat Entry
Updated 2025-04-23
CVE-2023-3707 - Before 1 Plugin
The ActivityPub WordPress plugin before 1.0.0 does not ensure that post contents to be displayed are public and belong to the plugin, allowing any authenticated user, such as subscriber to retrieve the content of arbitrary post (such as draft and private) via an IDOR vector. Password protected posts are not affected by this issue.
PLUGIN
Before 1
CVE-2023-3707
Risk Score
Threat Entry
Updated 2025-04-23
CVE-2023-3706 - Before 1 Plugin
The ActivityPub WordPress plugin before 1.0.0 does not ensure that post titles to be displayed are public and belong to the plugin, allowing any authenticated user, such as subscriber to retrieve the title of arbitrary post (such as draft and private) via an IDOR vector
PLUGIN
Before 1
CVE-2023-3706
Risk Score
Threat Entry
Updated 2025-04-23
CVE-2023-4827 - Before 1 Plugin
The File Manager Pro WordPress plugin before 1.8 does not properly check the CSRF nonce in the `fs_connector` AJAX action. This allows attackers to make highly privileged users perform unwanted file system actions via CSRF attacks by using GET requests, such as uploading a web shell.
PLUGIN
Before 1
CVE-2023-4827
Risk Score
Threat Entry
Updated 2025-05-02
CVE-2023-4294 - Before 1 Plugin
The URL Shortify WordPress plugin before 1.7.6 does not properly escape the value of the referer header, thus allowing an unauthenticated attacker to inject malicious javascript that will trigger in the plugins admin panel with statistics of the created short link.
PLUGIN
Before 1
CVE-2023-4294
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2023-2705 - Before 1 Plugin
The gAppointments WordPress plugin before 1.10.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against admin
PLUGIN
Before 1
CVE-2023-2705
Risk Score
Threat Entry
Updated 2025-04-23
CVE-2023-4279 - Before 1 Plugin
This User Activity Log WordPress plugin before 1.6.7 retrieves client IP addresses from potentially untrusted headers, allowing an attacker to manipulate its value. This may be used to hide the source of malicious traffic.
PLUGIN
Before 1
CVE-2023-4279
Risk Score
Threat Entry
Updated 2025-03-06
CVE-2023-4151 - Before 1 Plugin
The Store Locator WordPress plugin before 1.4.13 does not sanitise and escape an invalid nonce before outputting it back in an AJAX response, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin
PLUGIN
Before 1
CVE-2023-4151
Risk Score
Threat Entry
Updated 2025-04-23
CVE-2023-4298 - Before 1 Plugin
The 123.chat WordPress plugin before 1.3.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)
PLUGIN
Before 1
CVE-2023-4298
Risk Score
Threat Entry
Updated 2025-04-23
CVE-2023-4269 - Before 1 Plugin
The User Activity Log WordPress plugin before 1.6.6 lacks proper authorisation when exporting its activity logs, allowing any authenticated users, such as subscriber to perform such action and retrieve PII such as email addresses.
PLUGIN
Before 1
CVE-2023-4269
Risk Score
Threat Entry
Updated 2025-04-23
CVE-2023-4216 - Before 1 Plugin
The Orders Tracking for WooCommerce WordPress plugin before 1.2.6 doesn't validate the file_url parameter when importing a CSV file, allowing high privilege users with the manage_woocommerce capability to access any file on the web server via a Traversal attack. The content retrieved is however limited to the first line of the file.
PLUGIN
Before 1
CVE-2023-4216
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2023-2813 - Before 1 Theme
All of the above Aapna WordPress theme through 1.3, Anand WordPress theme through 1.2, Anfaust WordPress theme through 1.1, Arendelle WordPress theme before 1.1.13, Atlast Business WordPress theme through 1.5.8.5, Bazaar Lite WordPress theme before 1.8.6, Brain Power WordPress theme through 1.2, BunnyPressLite WordPress theme before 2.1, Cafe Bistro WordPress theme before 1.1.4, College WordPress theme before 1.5.1, Connections Reloaded WordPress theme through 3.1, Counterpoint WordPress theme through 1.8.1, Digitally WordPress theme through 1.0.8, Directory WordPress theme before 3.0.2, Drop WordPress theme before 1.22, Everse WordPress theme before 1.2.4, Fashionable…
THEME
Before 1
CVE-2023-2813
Risk Score
Threat Entry
Updated 2025-05-05
CVE-2023-3720 - Before 1 Plugin
The Upload Media By URL WordPress plugin before 1.0.8 does not have CSRF check when uploading files, which could allow attackers to make logged in admins upload files (including HTML containing JS code for users with the unfiltered_html capability) on their behalf.
PLUGIN
Before 1
CVE-2023-3720
Risk Score
Threat Entry
Updated 2025-04-23
CVE-2023-4035 - Before 1 Plugin
The Simple Blog Card WordPress plugin before 1.31 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks
PLUGIN
Before 1
CVE-2023-4035
Risk Score
Threat Entry
Updated 2025-04-23
CVE-2023-3501 - Before 1 Plugin
The FormCraft WordPress plugin before 1.2.7 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).
PLUGIN
Before 1
CVE-2023-3501
Risk Score
Threat Entry
Updated 2025-05-02
CVE-2023-4036 - Before 1 Plugin
The Simple Blog Card WordPress plugin before 1.32 does not ensure that posts to be displayed via a shortcode are public, allowing any authenticated users, such as subscriber, to retrieve arbitrary post title and their content such as draft, private and password protected ones
PLUGIN
Before 1
CVE-2023-4036
Risk Score