Export limit exceeded: 344149 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.
Search
Search Results (344149 CVEs found)
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2015-9353 | 1 Tri | 1 Gigpress | 2024-11-21 | 7.2 High |
| The gigpress plugin before 2.3.11 for WordPress has SQL injection in the admin area, a different vulnerability than CVE-2015-4066. | ||||
| CVE-2015-9352 | 1 Wp-polls Project | 1 Wp-polls | 2024-11-21 | N/A |
| The wp-polls plugin before 2.72 for WordPress has SQL injection. | ||||
| CVE-2015-9351 | 1 Slickremix | 1 Feed Them Social | 2024-11-21 | N/A |
| The feed-them-social plugin before 1.7.0 for WordPress has possible shortcode execution in the Facebook Feeds load more button. | ||||
| CVE-2015-9350 | 1 Slickremix | 1 Feed Them Social | 2024-11-21 | N/A |
| The feed-them-social plugin before 1.7.0 for WordPress has reflected XSS in the Facebook Feeds load more button. | ||||
| CVE-2015-9349 | 1 Cksource | 1 Ckeditor | 2024-11-21 | N/A |
| The ckeditor-for-wordpress plugin before 4.5.3.1 for WordPress has reflected XSS in the "built-in (old)" file browser. | ||||
| CVE-2015-9348 | 1 Codepeople | 1 Sell Downloads | 2024-11-21 | N/A |
| The sell-downloads plugin before 1.0.8 for WordPress has insufficient restrictions on brute-force guessing of purchase IDs. | ||||
| CVE-2015-9347 | 1 Plot | 1 Plotly | 2024-11-21 | N/A |
| The wp-plotly plugin before 1.0.3 for WordPress has XSS by authors. | ||||
| CVE-2015-9346 | 1 Codepeople | 1 Polls Cp | 2024-11-21 | N/A |
| The cp-polls plugin before 1.0.5 for WordPress has XSS. | ||||
| CVE-2015-9345 | 1 Petersplugins | 1 Link Log | 2024-11-21 | N/A |
| The link-log plugin before 2.0 for WordPress has HTTP Response Splitting. | ||||
| CVE-2015-9344 | 1 Perafox | 1 Link Log | 2024-11-21 | N/A |
| The link-log plugin before 2.1 for WordPress has SQL injection. | ||||
| CVE-2015-9343 | 1 Impress | 1 Wp Rollback | 2024-11-21 | N/A |
| The wp-rollback plugin before 1.2.3 for WordPress has CSRF. | ||||
| CVE-2015-9342 | 1 Impress | 1 Wp Rollback | 2024-11-21 | N/A |
| The wp-rollback plugin before 1.2.3 for WordPress has XSS. | ||||
| CVE-2015-9341 | 1 Iptanus | 1 Wordpress File Upload | 2024-11-21 | N/A |
| The wp-file-upload plugin before 3.4.1 for WordPress has insufficient restrictions on upload of .php.js files. | ||||
| CVE-2015-9340 | 1 Iptanus | 1 Wordpress File Upload | 2024-11-21 | N/A |
| The wp-file-upload plugin before 3.0.0 for WordPress has insufficient restrictions on upload of php, js, pht, php3, php4, php5, phtml, htm, html, and htaccess files. | ||||
| CVE-2015-9339 | 1 Iptanus | 1 Wordpress File Upload | 2024-11-21 | N/A |
| The wp-file-upload plugin before 2.7.1 for WordPress has insufficient restrictions on upload of .js files. | ||||
| CVE-2015-9338 | 1 Iptanus | 1 Wordpress File Upload | 2024-11-21 | N/A |
| The wp-file-upload plugin before 2.5.0 for WordPress has insufficient restrictions on upload of .php files. | ||||
| CVE-2015-9337 | 1 Cozmoslabs | 1 Profile Builder | 2024-11-21 | N/A |
| The profile-builder plugin before 2.1.4 for WordPress has no access control for activating or deactivating addons via AJAX. | ||||
| CVE-2015-9336 | 1 Codection | 1 Clean Login | 2024-11-21 | N/A |
| The clean-login plugin before 1.5.1 for WordPress has reflected XSS. | ||||
| CVE-2015-9335 | 1 Bestwebsoft | 1 Limit Attempts | 2024-11-21 | N/A |
| The limit-attempts plugin before 1.1.1 for WordPress has SQL injection during IP address handling. | ||||
| CVE-2015-9334 | 1 Email-newsletter Project | 1 Email-newsletter | 2024-11-21 | N/A |
| The email-newsletter plugin through 20.15 for WordPress has SQL injection. | ||||