Live Vulnerability Intelligence
Threat Database
Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.
Threat Entry
Updated 2025-06-03
CVE-2023-6049 - Before 4 Plugin
The Estatik Real Estate Plugin WordPress plugin before 4.1.1 unserializes user input via some of its cookies, which could allow unauthenticated users to perform PHP Object Injection when a suitable gadget chain is present on the blog
PLUGIN
Before 4
CVE-2023-6049
Risk Score
Threat Entry
Updated 2025-06-03
CVE-2023-6048 - Before 4 Plugin
The Estatik Real Estate Plugin WordPress plugin before 4.1.1 does not prevent user with low privileges on the site, like subscribers, from setting any of the site's options to 1, which could be used to break sites and lead to DoS when certain options are reset
PLUGIN
Before 4
CVE-2023-6048
Risk Score
Threat Entry
Updated 2025-06-03
CVE-2023-6050 - Before 4 Plugin
The Estatik Real Estate Plugin WordPress plugin before 4.1.1 does not sanitise and escape various parameters and generated URLs before outputting them back in attributes, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin
PLUGIN
Before 4
CVE-2023-6050
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2023-6140 - Before 4 Plugin
The Essential Real Estate WordPress plugin before 4.4.0 does not prevent users with limited privileges on the site, like subscribers, from momentarily uploading malicious PHP files disguised as ZIP archives, which may lead to remote code execution.
PLUGIN
Before 4
CVE-2023-6140
Risk Score
Threat Entry
Updated 2025-06-18
CVE-2023-6141 - Before 4 Plugin
The Essential Real Estate WordPress plugin before 4.4.0 does not apply proper capability checks on its AJAX actions, which among other things, allow attackers with a subscriber account to conduct Stored XSS attacks.
PLUGIN
Before 4
CVE-2023-6141
Risk Score
Threat Entry
Updated 2025-06-03
CVE-2023-6139 - Before 4 Plugin
The Essential Real Estate WordPress plugin before 4.4.0 does not apply proper capability checks on its AJAX actions, which among other things, allow attackers with a subscriber account to conduct Denial of Service attacks.
PLUGIN
Before 4
CVE-2023-6139
Risk Score
Threat Entry
Updated 2025-06-18
CVE-2023-6000 - Before 4 Plugin
The Popup Builder WordPress plugin before 4.2.3 does not prevent simple visitors from updating existing popups, and injecting raw JavaScript in them, which could lead to Stored XSS attacks.
PLUGIN
Before 4
CVE-2023-6000
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2023-5991 - Before 4 Plugin
The Hotel Booking Lite WordPress plugin before 4.8.5 does not validate file paths provided via user input, as well as does not have proper CSRF and authorisation checks, allowing unauthenticated users to download and delete arbitrary files on the server
PLUGIN
Before 4
CVE-2023-5991
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2023-5931 - Before 4 Plugin
The rtMedia for WordPress, BuddyPress and bbPress WordPress plugin before 4.6.16 does not validate files to be uploaded, which could allow attackers with a low-privilege account (e.g. subscribers) to upload arbitrary files such as PHP on the server
PLUGIN
Before 4
CVE-2023-5931
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2023-6114 - Before 4 Plugin
The Duplicator WordPress plugin before 1.5.7.1, Duplicator Pro WordPress plugin before 4.5.14.2 does not disallow listing the `backups-dup-lite/tmp` directory (or the `backups-dup-pro/tmp` directory in the Pro version), which temporarily stores files containing sensitive data. When directory listing is enabled in the web server, this allows unauthenticated attackers to discover and access these sensitive files, which include a full database dump and a zip archive of the site.
PLUGIN
Before 4
CVE-2023-6114
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2023-5939 - Before 4 Plugin
The rtMedia for WordPress, BuddyPress and bbPress WordPress plugin before 4.6.16 loads the contents of the import file in an unsafe manner, leading to remote code execution by privileged users.
PLUGIN
Before 4
CVE-2023-5939
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2023-5884 - Before 4 Plugin
The Word Balloon WordPress plugin before 4.20.3 does not protect some of its actions against CSRF attacks, allowing an unauthenticated attacker to trick a logged in user to delete arbitrary avatars by clicking a link.
PLUGIN
Before 4
CVE-2023-5884
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2023-5620 - Before 4 Plugin
The Web Push Notifications WordPress plugin before 4.35.0 does not prevent visitors on the site from changing some of the plugin options, some of which may be used to conduct Stored XSS attacks.
PLUGIN
Before 4
CVE-2023-5620
Risk Score
Threat Entry
Updated 2025-04-23
CVE-2023-5003 - Before 4 Plugin
The Active Directory Integration / LDAP Integration WordPress plugin before 4.1.10 stores sensitive LDAP logs in a buffer file when an administrator wants to export said logs. Unfortunately, this log file is never removed, and remains accessible to any users knowing the URL to do so.
PLUGIN
Before 4
CVE-2023-5003
Risk Score
Threat Entry
Updated 2025-04-23
CVE-2023-5089 - Before 4 Plugin
The Defender Security WordPress plugin before 4.1.0 does not prevent redirects to the login page via the auth_redirect WordPress function, allowing an unauthenticated visitor to access the login page, even when the hide login page functionality of the plugin is enabled.
PLUGIN
Before 4
CVE-2023-5089
Risk Score
Threat Entry
Updated 2025-04-23
CVE-2023-4811 - Before 4 Plugin
The WordPress File Upload WordPress plugin before 4.23.3 does not sanitise and escape some of its settings, which could allow high privilege users such as contributors to perform Stored Cross-Site Scripting attacks.
PLUGIN
Before 4
CVE-2023-4811
Risk Score
Threat Entry
Updated 2025-04-23
CVE-2023-4643 - Before 4 Plugin
The Enable Media Replace WordPress plugin before 4.1.3 unserializes user input via the Remove Background feature, which could allow Author+ users to perform PHP Object Injection when a suitable gadget is present on the blog
PLUGIN
Before 4
CVE-2023-4643
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2023-3226 - Before 4 Plugin
The Popup Builder WordPress plugin before 4.2.0 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).
PLUGIN
Before 4
CVE-2023-3226
Risk Score
Threat Entry
Updated 2025-05-02
CVE-2023-4270 - Before 4 Plugin
The Min Max Control WordPress plugin before 4.6 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin.
PLUGIN
Before 4
CVE-2023-4270
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2023-3169 - Before 4 Plugin
The tagDiv Composer WordPress plugin before 4.2, used as a companion by the Newspaper and Newsmag themes from tagDiv, does not have authorisation in a REST route and does not validate as well as escape some parameters when outputting them back, which could allow unauthenticated users to perform Stored Cross-Site Scripting attacks.
PLUGIN
Before 4
CVE-2023-3169
Risk Score