Live Vulnerability Intelligence
Threat Database
Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.
Threat Entry
Updated 2024-11-25
CVE-2024-9772 - Uix Shortcodes Plugin
The The Uix Shortcodes – Compatible with Gutenberg plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 1.9.9. This is due to the software allowing users to execute an action that does not properly validate a value before running do_shortcode. This makes it possible for unauthenticated attackers to execute arbitrary shortcodes.
PLUGIN
Uix Shortcodes
CVE-2024-9772
Risk Score
Threat Entry
Updated 2025-07-10
CVE-2024-9637 - Wpschoolpress Plugin
The School Management System – WPSchoolPress plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 2.2.10. This is due to the plugin not properly validating a user's identity prior to updating their details like email. This makes it possible for authenticated attackers, with teacher-level access and above, to change arbitrary user's email addresses, including administrators, and leverage that to reset the user's password and gain access to their account.
PLUGIN
Wpschoolpress
CVE-2024-9637
Risk Score
Threat Entry
Updated 2024-10-28
CVE-2024-8392 - Sogrid Plugin
The WordPress Post Grid Layouts with Pagination – Sogrid plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.5.2 via the 'tab' parameter. This makes it possible for authenticated attackers, with Administrator-level access and above, to include and execute arbitrary files on the server, allowing the execution of any PHP code in those files. This can be used to bypass access controls, obtain sensitive data, or achieve code execution in cases where images and other “safe” file types can be uploaded and included.…
PLUGIN
Sogrid
CVE-2024-8392
Risk Score
Threat Entry
Updated 2024-10-28
CVE-2024-9890 - User Toolkit Plugin
The User Toolkit plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 1.2.3. This is due to an improper capability check in the 'switchUser' function. This makes it possible for authenticated attackers, with subscriber-level permissions and above, to log in as any existing user on the site, such as an administrator.
PLUGIN
User Toolkit
CVE-2024-9890
Risk Score
Threat Entry
Updated 2025-02-27
CVE-2024-9598 - Accelerated Mobile Pages Plugin
The AMP for WP – Accelerated Mobile Pages plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.99.1. This is due to missing or incorrect nonce validation on the 'proxy' function. This makes it possible for unauthenticated attackers to send the logged in user's cookies to their own server via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.
PLUGIN
Accelerated Mobile Pages
CVE-2024-9598
Risk Score
Threat Entry
Updated 2024-11-05
CVE-2024-9235 - Mapster Wp Maps Plugin
The Mapster WP Maps plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to an insufficient capability check on the mapster_wp_maps_set_option_from_js() function in all versions up to, and including, 1.5.0. This makes it possible for authenticated attackers, with contributor-level access and above, to update arbitrary options on the WordPress site. This can be leveraged to update the default role for registration to administrator and enable user registration for attackers to gain administrative user access to a vulnerable site.
PLUGIN
Mapster Wp Maps
CVE-2024-9235
Risk Score
Threat Entry
Updated 2024-11-05
CVE-2024-9302 - App Builder Plugin
The App Builder – Create Native Android & iOS Apps On The Flight plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 5.3.7. This is due to the verify_otp_forgot_password() and update_password() functions not having enough controls to prevent a successful brute force attack of the OTP to change a password, or verify that a password reset request came from an authorized user. This makes it possible for unauthenticated attackers to generate and brute force an OTP that makes it possible to…
PLUGIN
App Builder
CVE-2024-9302
Risk Score
Threat Entry
Updated 2024-11-06
CVE-2024-10011 - Buddypress Plugin
The BuddyPress plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 14.1.0 via the id parameter. This makes it possible for authenticated attackers, with Subscriber-level access and above, to perform actions on files outside of the originally intended directory and enables file uploads to directories outside of the web root. Depending on server configuration it may be possible to upload files with double extensions. This vulnerability only affects Windows.
PLUGIN
Buddypress
CVE-2024-10011
Risk Score
Threat Entry
Updated 2024-10-25
CVE-2024-9947 - Profilepress Plugin
The ProfilePress Pro plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 4.11.1. This is due to insufficient verification on the user being returned by the social login token. This makes it possible for unauthenticated attackers to log in as any existing user on the site, such as an administrator, if they have access to the email and the user does not have an already-existing account for the service returning the token.
PLUGIN
Profilepress
CVE-2024-9947
Risk Score
Threat Entry
Updated 2024-10-25
CVE-2024-9927 - Woocommerce Order Proposal Plugin
The WooCommerce Order Proposal plugin for WordPress is vulnerable to privilege escalation via order proposal in all versions up to and including 2.0.5. This is due to the improper implementation of allow_payment_without_login function. This makes it possible for authenticated attackers, with Shop Manager-level access and above, to log in to WordPress as an arbitrary user account, including administrators.
PLUGIN
Woocommerce Order Proposal
CVE-2024-9927
Risk Score
Threat Entry
Updated 2024-10-25
CVE-2024-9627 - Teplobot Plugin
The TeploBot - Telegram Bot for WP plugin for WordPress is vulnerable to sensitive information disclosure due to missing authorization checks on the 'service_process' function in all versions up to, and including, 1.3. This makes it possible for unauthenticated attackers to view the Telegram Bot Token, which is a secret token to control the bot.
PLUGIN
Teplobot
CVE-2024-9627
Risk Score
Threat Entry
Updated 2024-10-25
CVE-2024-10002 - Rover Idx Plugin
The Rover IDX plugin for WordPress is vulnerable to Authentication Bypass in versions up to, and including, 3.0.0.2905. This is due to insufficient validation and capability check on the 'rover_idx_refresh_social_callback' function. This makes it possible for authenticated attackers, with subscriber-level permissions and above, to log in to administrator. The vulnerability is partially patched in version 3.0.0.2905 and fully patched in version 3.0.0.2906.
PLUGIN
Rover Idx
CVE-2024-10002
Risk Score
Threat Entry
Updated 2024-10-24
CVE-2024-8625 - Before 2 Plugin
The TS Poll WordPress plugin before 2.4.0 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks
PLUGIN
Before 2
CVE-2024-8625
Risk Score
Threat Entry
Updated 2024-10-29
CVE-2024-9593 - Time Clock Plugin
The Time Clock plugin and Time Clock Pro plugin for WordPress are vulnerable to Remote Code Execution in versions up to, and including, 1.2.2 (for Time Clock) and 1.1.4 (for Time Clock Pro) via the 'etimeclockwp_load_function_callback' function. This allows unauthenticated attackers to execute code on the server. The invoked function's parameters cannot be specified.
PLUGIN
Time Clock
CVE-2024-9593
Risk Score
Threat Entry
Updated 2024-10-22
CVE-2024-10079 - Wp Easy Post Types Plugin
The WP Easy Post Types plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 1.4.4 via deserialization of untrusted input from the 'text' parameter in the 'ajax_import_content' function. This allows authenticated attackers, with subscriber-level permissions and above, to inject a PHP Object. No POP chain is present in the vulnerable plugin. If a POP chain is present via an additional plugin or theme installed on the target system, it could allow the attacker to delete arbitrary files, retrieve sensitive data, or execute code.
PLUGIN
Wp Easy Post Types
CVE-2024-10079
Risk Score
Threat Entry
Updated 2024-10-22
CVE-2024-10078 - Wp Easy Post Types Plugin
The WP Easy Post Types plugin for WordPress is vulnerable to unauthorized access, modification, and loss of data due to a missing capability check on multiple functions in all versions up to, and including, 1.4.4. This makes it possible for authenticated attackers, with subscriber-level access and above, to add, modify, or delete plugin options and posts.
PLUGIN
Wp Easy Post Types
CVE-2024-10078
Risk Score
Threat Entry
Updated 2024-10-18
CVE-2024-9184 - Sendpulse Free Web Push Plugin
The SendPulse Free Web Push plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 1.3.6 due to incorrect use of the wp_kses_allowed_html function. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
PLUGIN
Sendpulse Free Web Push
CVE-2024-9184
Risk Score
Threat Entry
Updated 2025-05-17
CVE-2024-5429 - Before 4 Plugin
The Logo Slider WordPress plugin before 4.1.0 does not validate and escape some of its Slider Settings before outputting them back in attributes, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks
PLUGIN
Before 4
CVE-2024-5429
Risk Score
Threat Entry
Updated 2025-01-28
CVE-2024-9861 - Otp Verification With Firebase Plugin
The Miniorange OTP Verification with Firebase plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 3.6.0. This is due to missing validation on the token being supplied during the otp login through the plugin. This makes it possible for unauthenticated attackers to log in as any existing user on the site, such as an administrator, if they know the phone number associated with that user.
PLUGIN
Otp Verification With Firebase
CVE-2024-9861
Risk Score
Threat Entry
Updated 2024-10-18
CVE-2024-9215 - Publishpress Authors Plugin
The Co-Authors, Multiple Authors and Guest Authors in an Author Box with PublishPress Authors plugin for WordPress is vulnerable to Insecure Direct Object Reference to Privilege Escalation/Account Takeover in all versions up to, and including, 4.7.1 via the action_edited_author() due to missing validation on the 'authors-user_id' user controlled key. This makes it possible for authenticated attackers, with Author-level access and above, to update arbitrary user accounts email addresses, including administrators, which can then be leveraged to reset that user's account password and gain access.
PLUGIN
Publishpress Authors
CVE-2024-9215
Risk Score