Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: cms Clear
ID Title
CVE-2017-1002002 Unrestricted File Upload in wordpress (CVE-2017-1002002)
vulnerability in wordpress (CVE-2017-1002002). Successful exploitation can lead to full system takeover.
CVE-2017-1002003 Unrestricted File Upload in wordpress (CVE-2017-1002003)
vulnerability in wordpress (CVE-2017-1002003). Successful exploitation can lead to full system takeover.
CVE-2017-1002004 SQL Injection in wordpress (CVE-2017-1002004)
SQL injection in wordpress (CVE-2017-1002004). Data can be tampered with by attackers.
CVE-2017-1002005 SQL Injection in wordpress (CVE-2017-1002005)
SQL injection in wordpress (CVE-2017-1002005). Data can be tampered with by attackers.
CVE-2017-1002006 Vulnerability in wordpress (CVE-2017-1002006)
vulnerability in wordpress (CVE-2017-1002006). Data can be tampered with by attackers.
CVE-2017-1002007 Vulnerability in wordpress (CVE-2017-1002007)
vulnerability in wordpress (CVE-2017-1002007). Data can be tampered with by attackers.
CVE-2017-1002008 Unrestricted File Upload in wordpress (CVE-2017-1002008)
vulnerability in wordpress (CVE-2017-1002008). Successful exploitation can lead to full system takeover.
CVE-2017-1002009 SQL Injection in wordpress (CVE-2017-1002009)
SQL injection in wordpress (CVE-2017-1002009). Successful exploitation can lead to full system takeover.
CVE-2017-1002010 SQL Injection in wordpress (CVE-2017-1002010)
SQL injection in wordpress (CVE-2017-1002010). Successful exploitation can lead to full system takeover.
CVE-2017-1002011 Cross-Site Scripting (XSS) in wordpress (CVE-2017-1002011)
cross-site scripting in wordpress (CVE-2017-1002011). Risk of unauthorized operations or information disclosure.
CVE-2017-1002012 SQL Injection in wordpress (CVE-2017-1002012)
SQL injection in wordpress (CVE-2017-1002012). Successful exploitation can lead to full system takeover.
CVE-2017-1002013 SQL Injection in wordpress (CVE-2017-1002013)
SQL injection in wordpress (CVE-2017-1002013). Successful exploitation can lead to full system takeover.
CVE-2017-1002014 SQL Injection in wordpress (CVE-2017-1002014)
SQL injection in wordpress (CVE-2017-1002014). Successful exploitation can lead to full system takeover.
CVE-2017-1002015 SQL Injection in wordpress (CVE-2017-1002015)
SQL injection in wordpress (CVE-2017-1002015). Successful exploitation can lead to full system takeover.
CVE-2017-1002016 Unrestricted File Upload in wordpress (CVE-2017-1002016)
vulnerability in wordpress (CVE-2017-1002016). Successful exploitation can lead to full system takeover.
CVE-2017-1002017 Cross-Site Scripting (XSS) in wordpress (CVE-2017-1002017)
cross-site scripting in wordpress (CVE-2017-1002017). Risk of unauthorized operations or information disclosure.
CVE-2017-1002018 SQL Injection in wordpress (CVE-2017-1002018)
SQL injection in wordpress (CVE-2017-1002018). Successful exploitation can lead to full system takeover.
CVE-2017-1002019 SQL Injection in wordpress (CVE-2017-1002019)
SQL injection in wordpress (CVE-2017-1002019). Successful exploitation can lead to full system takeover.
CVE-2017-1002020 SQL Injection in wordpress (CVE-2017-1002020)
SQL injection in wordpress (CVE-2017-1002020). Successful exploitation can lead to full system takeover.
CVE-2017-1002021 SQL Injection in wordpress (CVE-2017-1002021)
SQL injection in wordpress (CVE-2017-1002021). Successful exploitation can lead to full system takeover.
CVE-2015-2749 Open Redirect in drupal (CVE-2015-2749)
vulnerability in drupal (CVE-2015-2749). Risk of unauthorized operations or information disclosure.
CVE-2015-2750 Open Redirect in drupal (CVE-2015-2750)
vulnerability in drupal (CVE-2015-2750). Risk of unauthorized operations or information disclosure.
CVE-2015-7880 Information Disclosure in drupal (CVE-2015-7880)
vulnerability in drupal (CVE-2015-7880). Risk of unauthorized operations or information disclosure.
CVE-2015-9229 Cross-Site Scripting (XSS) in wordpress (CVE-2015-9229)
cross-site scripting in wordpress (CVE-2015-9229). Risk of unauthorized operations or information disclosure.
CVE-2015-9230 Cross-Site Scripting (XSS) in wordpress (CVE-2015-9230)
cross-site scripting in wordpress (CVE-2015-9230). Risk of unauthorized operations or information disclosure.
CVE-2015-9228 Unrestricted File Upload in wordpress (CVE-2015-9228)
vulnerability in wordpress (CVE-2015-9228). Successful exploitation can lead to full system takeover.
CVE-2017-14313 Cross-Site Scripting (XSS) in wordpress (CVE-2017-14313)
cross-site scripting in wordpress (CVE-2017-14313). Risk of unauthorized operations or information disclosure.
CVE-2015-8350 Cross-Site Scripting (XSS) in wordpress (CVE-2015-8350)
cross-site scripting in wordpress (CVE-2015-8350). Risk of unauthorized operations or information disclosure.
CVE-2015-8351 Code Injection in wordpress (CVE-2015-8351)
code injection in wordpress (CVE-2015-8351). Successful exploitation can lead to full system takeover.
CVE-2015-8353 Cross-Site Scripting (XSS) in wordpress (CVE-2015-8353)
cross-site scripting in wordpress (CVE-2015-8353). Risk of unauthorized operations or information disclosure.
CVE-2015-8354 Cross-Site Scripting (XSS) in wordpress (CVE-2015-8354)
cross-site scripting in wordpress (CVE-2015-8354). Risk of unauthorized operations or information disclosure.
CVE-2015-7877 SQL Injection in drupal (CVE-2015-7877)
SQL injection in drupal (CVE-2015-7877). Successful exploitation can lead to full system takeover.
CVE-2015-7879 Cross-Site Scripting (XSS) in drupal (CVE-2015-7879)
cross-site scripting in drupal (CVE-2015-7879). Risk of unauthorized operations or information disclosure.
CVE-2017-14251 Unrestricted File Upload in typo3 (CVE-2017-14251)
vulnerability in typo3 (CVE-2017-14251). Successful exploitation can lead to full system takeover.
CVE-2015-3313 SQL injection vulnerability in WordPress Community Events plugin before 1.4.
SQL injection vulnerability in WordPress Community Events plugin before 1.4.
CVE-2015-3314 SQL injection vulnerability in WordPress Tune Library plugin before 1.5.5.
SQL injection vulnerability in WordPress Tune Library plugin before 1.5.5.
CVE-2015-4697 Cross-Site Request Forgery (CSRF) in wordpress (CVE-2015-4697)
vulnerability in wordpress (CVE-2015-4697). Successful exploitation can lead to full system takeover.
CVE-2017-9834 SQL Injection in wordpress (CVE-2017-9834)
SQL injection in wordpress (CVE-2017-9834). Successful exploitation can lead to full system takeover.
CVE-2017-14126 The Participants Database plugin before 1.7.5.10 for WordPress has XSS.
The Participants Database plugin before 1.7.5.10 for WordPress has XSS.
CVE-2015-7517 SQL Injection in wordpress (CVE-2015-7517)
SQL injection in wordpress (CVE-2015-7517). Successful exploitation can lead to full system takeover.
CVE-2017-13137 The FormCraft Basic plugin 1.0.5 for WordPress has SQL injection in the id parameter to form.php.
The FormCraft Basic plugin 1.0.5 for WordPress has SQL injection in the id parameter to form.php.
CVE-2017-13138 Cross-Site Scripting (XSS) in wordpress (CVE-2017-13138)
cross-site scripting in wordpress (CVE-2017-13138). Risk of unauthorized operations or information disclosure.
CVE-2017-12977 SQL Injection in wordpress (CVE-2017-12977)
SQL injection in wordpress (CVE-2017-12977). Successful exploitation can lead to full system takeover.
CVE-2017-12946 SQL Injection in wordpress (CVE-2017-12946)
SQL injection in wordpress (CVE-2017-12946). Successful exploitation can lead to full system takeover.
CVE-2017-12947 SQL Injection in wordpress (CVE-2017-12947)
SQL injection in wordpress (CVE-2017-12947). Successful exploitation can lead to full system takeover.
CVE-2017-12948 Cross-Site Scripting (XSS) in wordpress (CVE-2017-12948)
cross-site scripting in wordpress (CVE-2017-12948). Risk of unauthorized operations or information disclosure.
CVE-2017-12949 SQL Injection in wordpress (CVE-2017-12949)
SQL injection in wordpress (CVE-2017-12949). Successful exploitation can lead to full system takeover.
CVE-2015-5057 Cross-Site Scripting (XSS) in wordpress (CVE-2015-5057)
cross-site scripting in wordpress (CVE-2015-5057). Risk of unauthorized operations or information disclosure.
CVE-2014-9260 Vulnerability in wordpress (CVE-2014-9260)
vulnerability in wordpress (CVE-2014-9260). Successful exploitation can lead to full system takeover.
CVE-2014-9262 Vulnerability in wordpress (CVE-2014-9262)
vulnerability in wordpress (CVE-2014-9262). Confidential information can be exposed externally.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →