Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: cms Clear
ID Title
CVE-2017-12650 SQL Injection in wordpress (CVE-2017-12650)
SQL injection in wordpress (CVE-2017-12650). Successful exploitation can lead to full system takeover.
CVE-2017-12651 Cross-Site Request Forgery (CSRF) in wordpress (CVE-2017-12651)
vulnerability in wordpress (CVE-2017-12651). Successful exploitation can lead to full system takeover. Exploitable via `Referer header`.
CVE-2015-7875 Vulnerability in drupal (CVE-2015-7875)
vulnerability in drupal (CVE-2015-7875). Data can be tampered with by attackers.
CVE-2017-11364 Vulnerability in joomla (CVE-2017-11364)
vulnerability in joomla (CVE-2017-11364). Successful exploitation can lead to full system takeover.
CVE-2017-12199 SQL Injection in wordpress (CVE-2017-12199)
SQL injection in wordpress (CVE-2017-12199). Successful exploitation can lead to full system takeover.
CVE-2017-12200 Cross-Site Scripting (XSS) in wordpress (CVE-2017-12200)
cross-site scripting in wordpress (CVE-2017-12200). Risk of unauthorized operations or information disclosure.
CVE-2017-12068 Cross-Site Scripting (XSS) in wordpress (CVE-2017-12068)
cross-site scripting in wordpress (CVE-2017-12068). Risk of unauthorized operations or information disclosure.
CVE-2017-12131 Cross-Site Scripting (XSS) in wordpress (CVE-2017-12131)
cross-site scripting in wordpress (CVE-2017-12131). Risk of unauthorized operations or information disclosure.
CVE-2017-11658 Path Traversal in wordpress (CVE-2017-11658)
path traversal in wordpress (CVE-2017-11658). Confidential information can be exposed externally.
CVE-2017-11612 Cross-Site Scripting (XSS) in joomla (CVE-2017-11612)
cross-site scripting in joomla (CVE-2017-11612). Risk of unauthorized operations or information disclosure.
CVE-2015-3421 Cross-Site Scripting (XSS) in wordpress (CVE-2015-3421)
cross-site scripting in wordpress (CVE-2015-3421). Risk of unauthorized operations or information disclosure.
CVE-2017-9933 Information Disclosure in joomla (CVE-2017-9933)
vulnerability in joomla (CVE-2017-9933). Confidential information can be exposed externally.
CVE-2017-9934 Cross-Site Scripting (XSS) in csrf (CVE-2017-9934)
cross-site scripting in csrf (CVE-2017-9934). Risk of unauthorized operations or information disclosure.
CVE-2017-1000033 Cross-Site Scripting (XSS) in wordpress (CVE-2017-1000033)
cross-site scripting in wordpress (CVE-2017-1000033). Risk of unauthorized operations or information disclosure.
CVE-2017-1000038 Cross-Site Scripting (XSS) in wordpress (CVE-2017-1000038)
cross-site scripting in wordpress (CVE-2017-1000038). Risk of unauthorized operations or information disclosure.
CVE-2017-11187 Vulnerability in phpmyfaq (CVE-2017-11187)
vulnerability in phpmyfaq (CVE-2017-11187). Successful exploitation can lead to full system takeover.
CVE-2017-10991 Cross-Site Scripting (XSS) in wordpress (CVE-2017-10991)
cross-site scripting in wordpress (CVE-2017-10991). Risk of unauthorized operations or information disclosure.
CVE-2017-2216 Cross-Site Scripting (XSS) in wordpress (CVE-2017-2216)
cross-site scripting in wordpress (CVE-2017-2216). Risk of unauthorized operations or information disclosure.
CVE-2017-2217 Open Redirect in wordpress (CVE-2017-2217)
vulnerability in wordpress (CVE-2017-2217). Risk of unauthorized operations or information disclosure.
CVE-2017-2222 Cross-Site Scripting (XSS) in wordpress (CVE-2017-2222)
cross-site scripting in wordpress (CVE-2017-2222). Risk of unauthorized operations or information disclosure.
CVE-2017-9419 Cross-Site Scripting (XSS) in wordpress (CVE-2017-9419)
cross-site scripting in wordpress (CVE-2017-9419). Risk of unauthorized operations or information disclosure.
CVE-2017-9429 SQL Injection in wordpress (CVE-2017-9429)
SQL injection in wordpress (CVE-2017-9429). Successful exploitation can lead to full system takeover.
CVE-2017-9603 SQL Injection in wordpress (CVE-2017-9603)
SQL injection in wordpress (CVE-2017-9603). Successful exploitation can lead to full system takeover.
CVE-2017-9418 SQL Injection in wordpress (CVE-2017-9418)
SQL injection in wordpress (CVE-2017-9418). Successful exploitation can lead to full system takeover.
CVE-2015-3634 Information Disclosure in wordpress (CVE-2015-3634)
vulnerability in wordpress (CVE-2015-3634). Confidential information can be exposed externally.
CVE-2014-9310 Cross-Site Scripting (XSS) in wordpress (CVE-2014-9310)
cross-site scripting in wordpress (CVE-2014-9310). Risk of unauthorized operations or information disclosure.
CVE-2017-9420 Cross-Site Scripting (XSS) in wordpress (CVE-2017-9420)
cross-site scripting in wordpress (CVE-2017-9420). Risk of unauthorized operations or information disclosure.
CVE-2017-9336 The WP Editor.MD plugin 1.6 for WordPress has a stored XSS vulnerability in the content of a post.
The WP Editor.MD plugin 1.6 for WordPress has a stored XSS vulnerability in the content of a post.
CVE-2017-9337 Cross-Site Scripting (XSS) in wordpress (CVE-2017-9337)
cross-site scripting in wordpress (CVE-2017-9337). Risk of unauthorized operations or information disclosure.
CVE-2017-9288 Cross-Site Scripting (XSS) in wordpress (CVE-2017-9288)
cross-site scripting in wordpress (CVE-2017-9288). Risk of unauthorized operations or information disclosure.
CVE-2015-4455 Unrestricted File Upload in wordpress (CVE-2015-4455)
vulnerability in wordpress (CVE-2015-4455). Successful exploitation can lead to full system takeover.
CVE-2015-4704 Path Traversal in wordpress (CVE-2015-4704)
path traversal in wordpress (CVE-2015-4704). Confidential information can be exposed externally.
CVE-2015-5468 Path Traversal in wordpress (CVE-2015-5468)
path traversal in wordpress (CVE-2015-5468). Confidential information can be exposed externally.
CVE-2015-5469 Path Traversal in wordpress (CVE-2015-5469)
path traversal in wordpress (CVE-2015-5469). Confidential information can be exposed externally.
CVE-2015-5609 Path Traversal in wordpress (CVE-2015-5609)
path traversal in wordpress (CVE-2015-5609). Confidential information can be exposed externally.
CVE-2015-5682 Vulnerability in wordpress (CVE-2015-5682)
vulnerability in wordpress (CVE-2015-5682). Data can be tampered with by attackers.
CVE-2016-4903 Cross-Site Scripting (XSS) in wordpress (CVE-2016-4903)
cross-site scripting in wordpress (CVE-2016-4903). Risk of unauthorized operations or information disclosure.
CVE-2016-4904 Cross-Site Request Forgery (CSRF) in wordpress (CVE-2016-4904)
vulnerability in wordpress (CVE-2016-4904). Successful exploitation can lead to full system takeover.
CVE-2016-4905 SQL Injection in wordpress (CVE-2016-4905)
SQL injection in wordpress (CVE-2016-4905). Successful exploitation can lead to full system takeover.
CVE-2017-9061 Cross-Site Scripting (XSS) in wordpress (CVE-2017-9061)
cross-site scripting in wordpress (CVE-2017-9061). Risk of unauthorized operations or information disclosure.
CVE-2017-9062 In WordPress before 4.7.5, there is improper handling of post meta data values in the XML-RPC API.
In WordPress before 4.7.5, there is improper handling of post meta data values in the XML-RPC API.
CVE-2017-9063 Cross-Site Scripting (XSS) in wordpress (CVE-2017-9063)
cross-site scripting in wordpress (CVE-2017-9063). Risk of unauthorized operations or information disclosure.
CVE-2017-9064 Cross-Site Request Forgery (CSRF) in wordpress (CVE-2017-9064)
vulnerability in wordpress (CVE-2017-9064). Successful exploitation can lead to full system takeover.
CVE-2017-9065 Vulnerability in wordpress (CVE-2017-9065)
vulnerability in wordpress (CVE-2017-9065). Data can be tampered with by attackers.
CVE-2017-9066 SSRF (Server-Side Request Forgery) in wordpress (CVE-2017-9066)
SSRF in wordpress (CVE-2017-9066). Data can be tampered with by attackers.
CVE-2017-8917 SQL Injection in sqli (CVE-2017-8917)
SQL injection in sqli (CVE-2017-8917). Successful exploitation can lead to full system takeover.
CVE-2015-3998 Cross-Site Scripting (XSS) in wordpress (CVE-2015-3998)
cross-site scripting in wordpress (CVE-2015-3998). Risk of unauthorized operations or information disclosure.
CVE-2015-4070 Open Redirect in wordpress (CVE-2015-4070)
vulnerability in wordpress (CVE-2015-4070). Risk of unauthorized operations or information disclosure.
CVE-2017-8875 Cross-Site Request Forgery (CSRF) in wordpress (CVE-2017-8875)
vulnerability in wordpress (CVE-2017-8875). Data can be tampered with by attackers.
CVE-2017-8295 Vulnerability in wordpress (CVE-2017-8295)
vulnerability in wordpress (CVE-2017-8295). Data can be tampered with by attackers. Exploitable via `Host header`.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →