Live Vulnerability Intelligence
Threat Database
Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.
Threat Entry
Updated 2025-02-26
CVE-2023-0940 - Before 5 Plugin
The ProfileGrid WordPress plugin before 5.3.1 provides an AJAX endpoint for resetting a user password but does not implement proper authorization. This allows a user with low privileges, such as subscriber, to change the password of any account, including Administrator ones.
PLUGIN
Before 5
CVE-2023-0940
Risk Score
Threat Entry
Updated 2025-02-25
CVE-2023-0911 - Before 5 Plugin
The WordPress Shortcodes Plugin — Shortcodes Ultimate WordPress plugin before 5.12.8 does not validate the user meta to be retrieved via the user shortcode, allowing any authenticated users such as subscriber to retrieve arbitrary user meta (except the user_pass), such as the user email and activation key by default.
PLUGIN
Before 5
CVE-2023-0911
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2023-0890 - Before 5 Plugin
The WordPress Shortcodes Plugin — Shortcodes Ultimate WordPress plugin before 5.12.8 does not ensure that posts to be displayed via some shortcodes are already public and can be accessed by the user making the request, allowing any authenticated users such as subscriber to view draft, private or even password protected posts. It is also possible to leak the password of protected posts
PLUGIN
Before 5
CVE-2023-0890
Risk Score
Threat Entry
Updated 2025-02-26
CVE-2023-0364 - Before 5 Plugin
The real.Kit WordPress plugin before 5.1.1 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks.
PLUGIN
Before 5
CVE-2023-0364
Risk Score
Threat Entry
Updated 2025-06-10
CVE-2023-0378 - Before 5 Plugin
The Greenshift WordPress plugin before 5.0 does not validate and escape some of its block options before outputting them back in a page/post where the block is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks.
PLUGIN
Before 5
CVE-2023-0378
Risk Score
Threat Entry
Updated 2025-03-21
CVE-2023-0080 - Before 5 Plugin
The Customer Reviews for WooCommerce WordPress plugin before 5.16.0 does not validate one of its shortcode attribute, which could allow users with a contributor role and above to include arbitrary files via a traversal attack. This could also allow them to read non PHP files and retrieve their content. RCE could also be achieved if the attacker manage to upload a malicious image containing PHP code, and then include it via the affected attribute, on a default WP install, authors could easily achieve that given that they have the upload_file…
PLUGIN
Before 5
CVE-2023-0080
Risk Score
Threat Entry
Updated 2025-05-09
CVE-2022-3302 - Before 5 Plugin
The Spam protection, AntiSpam, FireWall by CleanTalk WordPress plugin before 5.185.1 does not validate ids before using them in a SQL statement, which could lead to SQL injection exploitable by high privilege users such as admin
PLUGIN
Before 5
CVE-2022-3302
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2022-2271 - Before 5 Plugin
The WP Database Backup WordPress plugin before 5.9 does not escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks when the unfiltered_html capability is disallowed (for example in multisite setup)
PLUGIN
Before 5
CVE-2022-2271
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2022-2594 - Before 5 Plugin
The Advanced Custom Fields WordPress plugin before 5.12.3, Advanced Custom Fields Pro WordPress plugin before 5.12.3 allows unauthenticated users to upload files allowed in a default WP configuration (so PHP is not possible) if there is a frontend form available. This vulnerability was introduced in the 5.0 rewrite and did not exist prior to that release.
PLUGIN
Before 5
CVE-2022-2594
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2022-2407 - Before 5 Plugin
The WP phpMyAdmin WordPress plugin before 5.2.0.4 does not escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks when the unfiltered_html capability is disallowed (for example in multisite setup)
PLUGIN
Before 5
CVE-2022-2407
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2022-2198 - Before 5 Plugin
The WPQA Builder WordPress plugin before 5.7 which is a companion plugin to the Hilmer and Discy , does not check authorization before displaying private messages, allowing any logged in user to read other users private message using the message id, which can easily be brute forced.
PLUGIN
Before 5
CVE-2022-2198
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2022-1323 - Before 5 Theme
The Discy WordPress theme before 5.0 lacks authorization checks then processing ajax requests to the discy_update_options action, allowing any logged in users (with privileges as low as Subscriber,) to change Theme options by sending a crafted POST request.
THEME
Before 5
CVE-2022-1323
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2022-1933 - Before 5 Plugin
The CDI WordPress plugin before 5.1.9 does not sanitise and escape a parameter before outputting it back in the response of an AJAX action (available to both unauthenticated and authenticated users), leading to a Reflected Cross-Site Scripting
PLUGIN
Before 5
CVE-2022-1933
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2022-2144 - Before 5 Plugin
The Jquery Validation For Contact Form 7 WordPress plugin before 5.3 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change Blog options like default_role, users_can_register via a CSRF attack
PLUGIN
Before 5
CVE-2022-2144
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2022-1321 - Before 5 Plugin
The miniOrange's Google Authenticator WordPress plugin before 5.5.6 does not sanitise and escape some of its settings, leading to malicious users with administrator privileges to store malicious Javascript code leading to Cross-Site Scripting attacks when unfiltered_html is disallowed (for example in multisite setup)
PLUGIN
Before 5
CVE-2022-1321
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2022-1095 - Before 5 Plugin
The Mihdan: No External Links WordPress plugin before 5.0.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)
PLUGIN
Before 5
CVE-2022-1095
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2022-1610 - Before 5 Plugin
The Seamless Donations WordPress plugin before 5.1.9 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack
PLUGIN
Before 5
CVE-2022-1610
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2022-0663 - Before 5 Plugin
The Print, PDF, Email by PrintFriendly WordPress plugin before 5.2.3 does not sanitise and escape the Custom Button Text settings, which could allow high privilege users such as admin to perform cross-Site Scripting attacks even when the unfiltered_html capability is disallowed
PLUGIN
Before 5
CVE-2022-0663
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2022-1422 - Before 5 Theme
The Discy WordPress theme before 5.2 does not check for CSRF tokens in the AJAX action discy_reset_options, allowing an attacker to trick an admin into resetting the site settings back to defaults.
THEME
Before 5
CVE-2022-1422
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2022-1597 - Before 5 Plugin
The WPQA Builder WordPress plugin before 5.4, used as a companion for the Discy and Himer , does not sanitise and escape a parameter on its reset password form which makes it possible to perform Reflected Cross-Site Scripting attacks
PLUGIN
Before 5
CVE-2022-1597
Risk Score