Live Vulnerability Intelligence
Threat Database
Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.
Threat Entry
Updated 2024-11-21
CVE-2021-25066 - Before 3 Plugin
The Ninja Forms Contact Form WordPress plugin before 3.6.10 does not sanitize and escape some imported data, allowing high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.
PLUGIN
Before 3
CVE-2021-25066
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2021-25056 - Before 3 Plugin
The Ninja Forms Contact Form WordPress plugin before 3.6.10 does not sanitise and escape field labels, allowing high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.
PLUGIN
Before 3
CVE-2021-25056
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2022-1903 - Before 3 Plugin
The ARMember WordPress plugin before 3.4.8 is vulnerable to account takeover (even the administrator) due to missing nonce and authorization checks in an AJAX action available to unauthenticated users, allowing them to change the password of arbitrary users by knowing their username
PLUGIN
Before 3
CVE-2022-1903
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2022-1964 - Before 3 Plugin
The Easy SVG Support WordPress plugin before 3.3.0 does not sanitise uploaded SVG files, which could allow users with a role as low as Author to upload a malicious SVG containing XSS payloads
PLUGIN
Before 3
CVE-2022-1964
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2022-1990 - Before 3 Plugin
The Nested Pages WordPress plugin before 3.1.21 does not escape and sanitize the some of its settings, which could allow high privilege users to perform Stored Cross-Site Scripting attacks when the unfiltered_html is disallowed
PLUGIN
Before 3
CVE-2022-1990
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2022-1627 - Before 3 Plugin
The My Private Site WordPress plugin before 3.0.8 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack
PLUGIN
Before 3
CVE-2022-1627
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2022-1709 - Before 3 Plugin
The Throws SPAM Away WordPress plugin before 3.3.1 does not have CSRF checks in place when deleting comments (either all, spam, or pending), allowing attackers to make a logged in admin delete comments via a CSRF attack
PLUGIN
Before 3
CVE-2022-1709
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2022-1556 - Before 3 Plugin
The StaffList WordPress plugin before 3.1.5 does not properly sanitise and escape a parameter before using it in a SQL statement when searching for Staff in the admin dashboard, leading to an SQL Injection
PLUGIN
Before 3
CVE-2022-1556
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2022-1009 - Before 3 Plugin
The Smush WordPress plugin before 3.9.9 does not sanitise and escape a configuration parameter before outputting it back in an admin page when uploading a malicious preset configuration, leading to a Reflected Cross-Site Scripting. For the attack to be successful, an attacker would need an admin to upload a malicious configuration file
PLUGIN
Before 3
CVE-2022-1009
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2022-1560 - Before 3 Plugin
The Amministrazione Aperta WordPress plugin before 3.8 does not validate the open parameter before using it in an include statement, leading to a Local File Inclusion issue. The original advisory mentions that unauthenticated users can exploit this, however the affected file generates a fatal error when accessed directly and the affected code is not reached. The issue can be exploited via the dashboard when logged in as an admin, or by making a logged in admin open a malicious link
PLUGIN
Before 3
CVE-2022-1560
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2022-1386 - Before 3 Plugin
The Fusion Builder WordPress plugin before 3.6.2, used in the Avada theme, does not validate a parameter in its forms which could be used to initiate arbitrary HTTP requests. The data returned is then reflected back in the application's response. This could be used to interact with hosts on the server's local network bypassing firewalls and access control measures.
PLUGIN
Before 3
CVE-2022-1386
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2022-1393 - Before 3 Plugin
The WP Subtitle WordPress plugin before 3.4.1 adds a subtitle field and provides a shortcode to display it via [wp_subtitle]. The subtitle is stored as a custom post meta with the key: "wps_subtitle", which is sanitized upon post save/update, however is not sanitized when updating it directly from the post meta update button (via AJAX) - and this makes the XSS exploitable by authenticated users with a role as low as contributor.
PLUGIN
Before 3
CVE-2022-1393
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2022-0867 - Before 3 Plugin
The Pricing Table WordPress plugin before 3.6.1 fails to properly sanitize and escape user supplied POST data before it is being interpolated in an SQL statement and then executed via an AJAX action available to unauthenticated users
PLUGIN
Before 3
CVE-2022-0867
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2022-0948 - Before 3 Plugin
The Order Listener for WooCommerce WordPress plugin before 3.2.2 does not sanitise and escape the id parameter before using it in a SQL statement via a REST route available to unauthenticated users, leading to an SQL injection
PLUGIN
Before 3
CVE-2022-0948
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2022-0814 - Before 3 Plugin
The Ubigeo de Perú para Woocommerce WordPress plugin before 3.6.4 does not properly sanitise and escape some parameters before using them in SQL statements via various AJAX actions, some of which are available to unauthenticated users, leading to SQL Injections
PLUGIN
Before 3
CVE-2022-0814
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2022-1046 - Before 3 Plugin
The Visual Form Builder WordPress plugin before 3.0.7 does not sanitise and escape the form's 'Email to' field , which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed
PLUGIN
Before 3
CVE-2022-1046
Risk Score
Threat Entry
Updated 2025-04-21
CVE-2021-25094 - Before 3 Plugin
The Tatsu WordPress plugin before 3.3.12 add_custom_font action can be used without prior authentication to upload a rogue zip file which is uncompressed under the WordPress's upload directory. By adding a PHP shell with a filename starting with a dot ".", this can bypass extension control implemented in the plugin. Moreover, there is a race condition in the zip extraction process which makes the shell file live long enough on the filesystem to be callable by an attacker.
PLUGIN
Before 3
CVE-2021-25094
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2022-0656 - Before 3 Plugin
The Web To Print Shop : uDraw WordPress plugin before 3.3.3 does not validate the url parameter in its udraw_convert_url_to_base64 AJAX action (available to both unauthenticated and authenticated users) before using it in the file_get_contents function and returning its content base64 encoded in the response. As a result, unauthenticated users could read arbitrary files on the web server (such as /etc/passwd, wp-config.php etc)
PLUGIN
Before 3
CVE-2022-0656
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2022-0398 - Before 3 Plugin
The ThirstyAffiliates Affiliate Link Manager WordPress plugin before 3.10.5 does not have authorisation and CSRF checks when creating affiliate links, which could allow any authenticated user, such as subscriber to create arbitrary affiliate links, which could then be used to redirect users to an arbitrary website
PLUGIN
Before 3
CVE-2022-0398
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2022-0634 - Before 3 Plugin
The ThirstyAffiliates WordPress plugin before 3.10.5 lacks authorization checks in the ta_insert_external_image action, allowing a low-privilege user (with a role as low as Subscriber) to add an image from an external URL to an affiliate link. Further the plugin lacks csrf checks, allowing an attacker to trick a logged in user to perform the action by crafting a special request.
PLUGIN
Before 3
CVE-2022-0634
Risk Score