wordpress · threatengine.sh

CVE-2022-4973

<= 6.0.2

WordPress Core, in versions up to 6.0.2, is vulnerable to Authenticated Stored Cross-Site Scripting that can be exploited by users

4.9MEDIUM

CVE-2024-4439

>= 6.0 and <= 6.0.7

WordPress Core is vulnerable to Stored Cross-Site Scripting via user display names in the Avatar block in various versions up to 6

7.2HIGH

CVE-2024-31211

>= 6.4.0 and < 6.4.2

WordPress is an open publishing platform for the Web. Unserialization of instances of the WP_HTML_Token class allows for code ex

5.5MEDIUM

CVE-2024-31210

< 4.1.40

WordPress is an open publishing platform for the Web. It's possible for a file of a type other than a zip file to be submitted as

7.6HIGH

CVE-2023-5561

>= 4.7 and < 4.7.27

WordPress does not properly restrict which user fields are searchable via the REST API, allowing unauthenticated attackers to disc

5.3MEDIUM

CVE-2023-39999

>= 4.1 and <= 4.1.38

Exposure of Sensitive Information to an Unauthorized Actor in WordPress from 6.3 through 6.3.1, from 6.2 through 6.2.2, from 6.1

4.3MEDIUM

CVE-2023-38000

>= 5.9 and <= 5.9.7

Auth. Stored (contributor+) Cross-Site Scripting (XSS) vulnerability in WordPress core 6.3 through 6.3.1, from 6.2 through 6.2.2,

6.5MEDIUM

CVE-2023-2745

< 4.1.38

WordPress Core is vulnerable to Directory Traversal in versions up to, and including, 6.2, via the ‘wp_lang’ parameter. This a

5.4MEDIUM

CVE-2023-22622

<= 6.1.1

WordPress through 6.1.1 depends on unpredictable client visits to cause wp-cron.php execution and the resulting security updates,

5.3MEDIUM

CVE-2022-3590

>= 4.2 and <= 6.1.1

WordPress is affected by an unauthenticated blind SSRF in the pingback feature. Because of a TOCTOU race condition between the val

5.9MEDIUM

CVE-2022-43504

< 3.7.40

Improper authentication vulnerability in WordPress versions prior to 6.0.3 allows a remote unauthenticated attacker to obtain the

5.3MEDIUM

CVE-2022-43500

< 3.7.40

Cross-site scripting vulnerability in WordPress versions prior to 6.0.3 allows a remote unauthenticated attacker to inject an arbi

6.1MEDIUM

CVE-2022-43497

< 3.7.40

Cross-site scripting vulnerability in WordPress versions prior to 6.0.3 allows a remote unauthenticated attacker to inject an arbi

6.1MEDIUM

CVE-2011-1762

< 3.0.6

A flaw exists in Wordpress related to the 'wp-admin/press-this.php 'script improperly checking user permissions when publishing po

6.5MEDIUM

CVE-2022-21664

< 5.8.3

WordPress is a free and open-source content management system written in PHP and paired with a MariaDB database. Due to lack of pr

7.4HIGH

CVE-2022-21663

< 5.8.3

WordPress is a free and open-source content management system written in PHP and paired with a MariaDB database. On a multisite, u

6.6MEDIUM

CVE-2022-21662

< 5.8.3

WordPress is a free and open-source content management system written in PHP and paired with a MariaDB database. Low-privileged au

8.0HIGH

CVE-2022-21661

>= 3.7 and < 3.7.37

WordPress is a free and open-source content management system written in PHP and paired with a MariaDB database. Due to improper s

8.0HIGH

CVE-2021-44223

< 5.8

WordPress before 5.8 lacks support for the Update URI plugin header. This makes it easier for remote attackers to execute arbitrar

8.1HIGH

CVE-2021-39203

all versions

WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. In affec

6.8MEDIUM

CVE-2021-39202

all versions

WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. In affec

7.6HIGH

CVE-2021-39201

>= 5.0 and < 5.8

WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. ### Impa

7.6HIGH

CVE-2021-39200

>= 5.2 and < 5.8.1

WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. In affec

5.3MEDIUM

CVE-2020-36326

>= 3.7 and < 3.7.36

PHPMailer 6.1.8 through 6.4.0 allows object injection through Phar Deserialization via addAttachment with a UNC pathname. NOTE: th

9.8CRITICAL

CVE-2021-29450

>= 4.7 and < 5.7.1

Wordpress is an open source CMS. One of the blocks in the WordPress editor can be exploited in a way that exposes password-protect

6.5MEDIUM

CVE-2021-29447

>= 5.6.0 and < 5.7.1

Wordpress is an open source CMS. A user with the ability to upload files (like an Author) can exploit an XML parsing issue in the

7.1HIGH

CVE-2020-28040

< 5.5.2

WordPress before 5.5.2 allows CSRF attacks that change a theme's background image.

4.3MEDIUM

CVE-2020-28039

< 5.5.2

is_protected_meta in wp-includes/meta.php in WordPress before 5.5.2 allows arbitrary file deletion because it does not properly de

9.1CRITICAL

CVE-2020-28038

< 5.5.2

WordPress before 5.5.2 allows stored XSS via post slugs.

6.1MEDIUM

CVE-2020-28037

< 5.5.2

is_blog_installed in wp-includes/functions.php in WordPress before 5.5.2 improperly determines whether WordPress is already instal

9.8CRITICAL

CVE-2020-28036

< 5.5.2

wp-includes/class-wp-xmlrpc-server.php in WordPress before 5.5.2 allows attackers to gain privileges by using XML-RPC to comment o

9.8CRITICAL

CVE-2020-28035

< 5.5.2

WordPress before 5.5.2 allows attackers to gain privileges via XML-RPC.

9.8CRITICAL

CVE-2020-28034

< 5.5.2

WordPress before 5.5.2 allows XSS associated with global variables.

6.1MEDIUM

CVE-2020-28033

< 5.5.2

WordPress before 5.5.2 mishandles embeds from disabled sites on a multisite network, as demonstrated by allowing a spam embed.

7.5HIGH

CVE-2020-28032

< 5.5.2

WordPress before 5.5.2 mishandles deserialization requests in wp-includes/Requests/Utility/FilteredIterator.php.

9.8CRITICAL

CVE-2020-25286

< 5.4.2

In wp-includes/comment-template.php in WordPress before 5.4.2, comments from a post or page could sometimes be seen in the latest

5.3MEDIUM

CVE-2020-4050

>= 3.7 and < 3.7.34

In affected versions of WordPress, misuse of the set-screen-option filter's return value allows arbitrary user meta fields to be

3.5LOW

CVE-2020-4049

>= 3.7 and < 3.7.34

In affected versions of WordPress, when uploading themes, the name of the theme folder can be crafted in a way that could lead to

2.4LOW

CVE-2020-4048

>= 3.7 and < 3.7.34

In affected versions of WordPress, due to an issue in wp_validate_redirect() and URL sanitization, an arbitrary external link can

5.7MEDIUM

CVE-2020-4047

>= 3.7 and < 3.7.34

In affected versions of WordPress, authenticated users with upload permissions (like authors) are able to inject JavaScript into s

6.8MEDIUM

CVE-2020-4046

>= 3.7 and < 3.7.34

In affected versions of WordPress, users with low privileges (like contributors and authors) can use the embed block in a certain

5.4MEDIUM

CVE-2020-11030

< 5.4.1

In affected versions of WordPress, a special payload can be crafted that can lead to scripts getting executed within the search bl

6.4MEDIUM

CVE-2020-11029

>= 3.7 and < 3.7.33

In affected versions of WordPress, a vulnerability in the stats() method of class-wp-object-cache.php can be exploited to execute

5.8MEDIUM

CVE-2020-11028

< 5.4.1

In affected versions of WordPress, some private posts, which were previously public, can result in unauthenticated disclosure unde

5.8MEDIUM

CVE-2020-11027

>= 3.7 and < 3.7.33

In affected versions of WordPress, a password reset link emailed to a user does not expire upon changing the user password. Access

6.1MEDIUM

CVE-2020-11026

>= 3.7 and < 3.7.33

In affected versions of WordPress, files with a specially crafted name when uploaded to the Media section can lead to script execu

8.7HIGH

CVE-2020-11025

>= 4.7 and < 5.4.1

In affected versions of WordPress, a cross-site scripting (XSS) vulnerability in the navigation section of Customizer allows JavaS

5.8MEDIUM

CVE-2019-20043

>= 3.7 and < 5.3.1

In wp-includes/rest-api/endpoints/class-wp-rest-posts-controller.php in WordPress 3.7 to 5.3.0, authenticated users who do not

4.3MEDIUM

CVE-2019-20042

>= 3.7 and < 5.3.1

In wp-includes/formatting.php in WordPress 3.7 to 5.3.0, the function wp_targeted_link_rel() can be used in a particular way to re

6.1MEDIUM

CVE-2019-20041

< 5.3.1

wp_kses_bad_protocol in wp-includes/kses.php in WordPress before 5.3.1 mishandles the HTML5 colon named entity, allowing attackers

9.8CRITICAL

CVE-2019-16781

< 5.3.1

In WordPress before 5.3.1, authenticated users with lower privileges (like contributors) can inject JavaScript code in the block e

5.8MEDIUM

CVE-2019-16780

> 3.7 and < 5.3.1

WordPress users with lower privileges (like contributors) can inject JavaScript code in the block editor using a specific payload,

5.8MEDIUM

CVE-2019-17675

< 5.2.4

WordPress before 5.2.4 does not properly consider type confusion during validation of the referer in the admin pages, possibly lea

8.8HIGH

CVE-2019-17674

< 5.2.4

WordPress before 5.2.4 is vulnerable to stored XSS (cross-site scripting) via the Customizer.

5.4MEDIUM

CVE-2019-17673

< 5.2.4

WordPress before 5.2.4 is vulnerable to poisoning of the cache of JSON GET requests because certain requests lack a Vary: Origin h

7.5HIGH

CVE-2019-17672

< 5.2.4

WordPress before 5.2.4 is vulnerable to a stored XSS attack to inject JavaScript into STYLE elements.

6.1MEDIUM

CVE-2019-17671

< 5.2.4

In WordPress before 5.2.4, unauthenticated viewing of certain content is possible because the static query property is mishandled.

5.3MEDIUM

CVE-2019-17670

< 5.2.4

WordPress before 5.2.4 has a Server Side Request Forgery (SSRF) vulnerability because Windows paths are mishandled during certain

9.8CRITICAL

CVE-2019-17669

< 5.2.4

WordPress before 5.2.4 has a Server Side Request Forgery (SSRF) vulnerability because URL validation does not consider the interpr

9.8CRITICAL

CVE-2019-16223

< 5.2.3

WordPress before 5.2.3 allows XSS in post previews by authenticated users.

5.4MEDIUM

CVE-2019-16222

< 5.2.3

WordPress before 5.2.3 has an issue with URL sanitization in wp_kses_bad_protocol_once in wp-includes/kses.php that can lead to cr

6.1MEDIUM

CVE-2019-16221

< 5.2.3

WordPress before 5.2.3 allows reflected XSS in the dashboard.

6.1MEDIUM

CVE-2019-16220

< 5.2.3

In WordPress before 5.2.3, validation and sanitization of a URL in wp_validate_redirect in wp-includes/pluggable.php could lead to

6.1MEDIUM

CVE-2019-16219

< 5.2.3

WordPress before 5.2.3 allows XSS in shortcode previews.

6.1MEDIUM

CVE-2019-16218

< 5.2.3

WordPress before 5.2.3 allows XSS in stored comments.

6.1MEDIUM

CVE-2019-16217

< 5.2.3

WordPress before 5.2.3 allows XSS in media uploads because wp_ajax_upload_attachment is mishandled.

6.1MEDIUM

CVE-2017-6514

all versions

WordPress 4.7.2 mishandles listings of post authors, which allows remote attackers to obtain sensitive information (Path Disclosur

5.3MEDIUM

CVE-2019-9787

< 5.1.1

WordPress before 5.1.1 does not properly filter comment content, leading to Remote Code Execution by unauthenticated users in a de

8.8HIGH

CVE-2019-8943

<= 5.0.3

WordPress through 5.0.3 allows Path Traversal in wp_crop_image(). An attacker (who has privileges to crop an image) can write the

6.5MEDIUM

CVE-2019-8942

< 4.9.9

WordPress before 4.9.9 and 5.x before 5.0.1 allows remote code execution because an _wp_attached_file Post Meta entry can be chang

8.8HIGH

CVE-2018-20153

< 4.9.9

In WordPress before 4.9.9 and 5.x before 5.0.1, contributors could modify new comments made by users with greater privileges, poss

5.4MEDIUM

CVE-2018-20152

< 4.9.9

In WordPress before 4.9.9 and 5.x before 5.0.1, authors could bypass intended restrictions on post types via crafted input.

6.5MEDIUM

CVE-2018-20151

< 4.9.9

In WordPress before 4.9.9 and 5.x before 5.0.1, the user-activation page could be read by a search engine's web crawler if an unus

7.5HIGH

CVE-2018-20150

< 4.9.9

In WordPress before 4.9.9 and 5.x before 5.0.1, crafted URLs could trigger XSS for certain use cases involving plugins.

6.1MEDIUM

CVE-2018-20149

< 4.9.9

In WordPress before 4.9.9 and 5.x before 5.0.1, when the Apache HTTP Server is used, authors could upload crafted files that bypas

5.4MEDIUM

CVE-2018-20148

< 4.9.9

In WordPress before 4.9.9 and 5.x before 5.0.1, contributors could conduct PHP object injection attacks via crafted metadata in a

9.8CRITICAL

CVE-2018-20147

< 4.9.9

In WordPress before 4.9.9 and 5.x before 5.0.1, authors could modify metadata to bypass intended restrictions on deleting files.

6.5MEDIUM

CVE-2018-19296

>= 3.7 and <= 5.7

PHPMailer before 5.2.27 and 6.x before 6.0.6 is vulnerable to an object injection attack.

8.8HIGH

CVE-2018-1000773

<= 4.9.8

WordPress version 4.9.8 and earlier contains a CWE-20 Input Validation vulnerability in thumbnail processing that can result in re

8.8HIGH

CVE-2017-1000600

< 4.9

WordPress version <4.9 contains a CWE-20 Input Validation vulnerability in thumbnail processing that can result in remote code exe

8.8HIGH

CVE-2018-14028

all versions

In WordPress 4.9.7, plugins uploaded via the admin area are not verified as being ZIP files. This allows for PHP files to be uploa

7.2HIGH

CVE-2018-12895

< 4.9.7

WordPress through 4.9.6 allows Author users to execute arbitrary code by leveraging directory traversal in the wp-admin/post.php t

8.8HIGH

CVE-2018-10102

< 4.9.5

Before WordPress 4.9.5, the version string was not escaped in the get_the_generator function, and could lead to XSS in a generator

6.1MEDIUM

CVE-2018-10101

< 4.9.5

Before WordPress 4.9.5, the URL validator assumed URLs with the hostname localhost were on the same host as the WordPress server.

6.1MEDIUM

CVE-2018-10100

< 4.9.5

Before WordPress 4.9.5, the redirection URL for the login page was not validated or sanitized if forced to use HTTPS.

6.1MEDIUM

CVE-2014-6412

< 4.4.0

WordPress before 4.4 makes it easier for remote attackers to predict password-recovery tokens via a brute-force approach.

8.1HIGH

CVE-2018-6389

<= 4.9.2

In WordPress through 4.9.2, unauthenticated attackers can cause a denial of service (resource consumption) by using the large list

7.5HIGH

CVE-2018-5776

< 4.9.2

WordPress before 4.9.2 has XSS in the Flash fallback files in MediaElement (under wp-includes/js/mediaelement).

6.1MEDIUM

CVE-2017-17094

< 4.9.1

wp-includes/feed.php in WordPress before 4.9.1 does not properly restrict enclosures in RSS and Atom fields, which might allow att

5.4MEDIUM

CVE-2017-17093

< 4.9.1

wp-includes/general-template.php in WordPress before 4.9.1 does not properly restrict the lang attribute of an HTML element, which

5.4MEDIUM

CVE-2017-17092

< 4.9.1

wp-includes/functions.php in WordPress before 4.9.1 does not require the unfiltered_html capability for upload of .js files, which

5.4MEDIUM

CVE-2017-17091

<= 4.9

wp-admin/user-new.php in WordPress before 4.9.1 sets the newbloguser key to a string that can be directly derived from the user ID

8.8HIGH

CVE-2017-16510

<= 4.8.2

WordPress before 4.8.3 is affected by an issue where $wpdb-prepare() can create unexpected and unsafe queries leading to potential

9.8CRITICAL

CVE-2012-6707

<= 4.8.2

WordPress through 4.8.2 uses a weak MD5-based password hashing algorithm, which makes it easier for attackers to determine clearte

7.5HIGH

CVE-2016-9263

<= 4.8.2

WordPress through 4.8.2, when domain-based flashmediaelement.swf sandboxing is not used, allows remote attackers to conduct cross-

4.7MEDIUM

CVE-2017-14990

all versions

WordPress 4.8.2 stores cleartext wp_signups.activation_key values (but stores the analogous wp_users.user_activation_key values as

6.5MEDIUM

CVE-2017-14726

<= 4.8.1

Before version 4.8.2, WordPress was vulnerable to a cross-site scripting attack via shortcodes in the TinyMCE visual editor.

6.1MEDIUM

CVE-2017-14725

<= 4.8.1

Before version 4.8.2, WordPress was susceptible to an open redirect attack in wp-admin/edit-tag-form.php and wp-admin/user-edit.ph

5.4MEDIUM

CVE-2017-14724

<= 4.8.1

Before version 4.8.2, WordPress was vulnerable to cross-site scripting in oEmbed discovery.

6.1MEDIUM

CVE-2017-14723

<= 4.8.1

Before version 4.8.2, WordPress mishandled % characters and additional placeholder values in $wpdb-prepare, and thus did not prope

9.8CRITICAL

CVE-2017-14722

all versions

Before version 4.8.2, WordPress allowed a Directory Traversal attack in the Customizer component via a crafted theme filename.

7.5HIGH

CVE-2017-14721

<= 4.8.1

Before version 4.8.2, WordPress allowed Cross-Site scripting in the plugin editor via a crafted plugin name.

6.1MEDIUM

CVE-2017-14720

<= 4.8.1

Before version 4.8.2, WordPress allowed a Cross-Site scripting attack in the template list view via a crafted template name.

6.1MEDIUM

CVE-2017-14719

all versions

Before version 4.8.2, WordPress was vulnerable to a directory traversal attack during unzip operations in the ZipArchive and PclZi

7.5HIGH

CVE-2017-14718

<= 4.8.1

Before version 4.8.2, WordPress was susceptible to a Cross-Site Scripting attack in the link modal via a javascript: or data: URL.

6.1MEDIUM

CVE-2017-9066

<= 4.7.4

In WordPress before 4.7.5, there is insufficient redirect validation in the HTTP class, leading to SSRF.

8.6HIGH

CVE-2017-9065

<= 4.7.4

In WordPress before 4.7.5, there is a lack of capability checks for post meta data in the XML-RPC API.

7.5HIGH

CVE-2017-9064

<= 4.7.4

In WordPress before 4.7.5, a Cross Site Request Forgery (CSRF) vulnerability exists in the filesystem credentials dialog because a

8.8HIGH

CVE-2017-9063

<= 4.7.4

In WordPress before 4.7.5, a cross-site scripting (XSS) vulnerability related to the Customizer exists, involving an invalid custo

6.1MEDIUM

CVE-2017-9062

<= 4.7.4

In WordPress before 4.7.5, there is improper handling of post meta data values in the XML-RPC API.

8.6HIGH

CVE-2017-9061

<= 4.7.4

In WordPress before 4.7.5, a cross-site scripting (XSS) vulnerability exists when attempting to upload very large files, because t

6.1MEDIUM

CVE-2017-8295

<= 4.7.4

WordPress through 4.7.4 relies on the Host HTTP header for a password-reset e-mail message, which makes it easier for remote attac

5.9MEDIUM

CVE-2017-1001000

all versions

The register_routes function in wp-includes/rest-api/endpoints/class-wp-rest-posts-controller.php in the REST API in WordPress 4.7

7.5HIGH

CVE-2017-6819

<= 4.7.2

In WordPress before 4.7.3, there is cross-site request forgery (CSRF) in Press This (wp-admin/includes/class-wp-press-this.php), l

6.5MEDIUM

CVE-2017-6818

<= 4.7.2

In WordPress before 4.7.3 (wp-admin/js/tags-box.js), there is cross-site scripting (XSS) via taxonomy term names.

6.1MEDIUM

CVE-2017-6817

<= 4.7.2

In WordPress before 4.7.3 (wp-includes/embed.php), there is authenticated Cross-Site Scripting (XSS) in YouTube URL Embeds.

5.4MEDIUM

CVE-2017-6816

<= 4.7.2

In WordPress before 4.7.3 (wp-admin/plugins.php), unintended files can be deleted by administrators using the plugin deletion func

4.9MEDIUM

CVE-2017-6815

<= 4.7.2

In WordPress before 4.7.3 (wp-includes/pluggable.php), control characters can trick redirect URL validation.

6.1MEDIUM

CVE-2017-6814

<= 4.7.2

In WordPress before 4.7.3, there is authenticated Cross-Site Scripting (XSS) via Media File Metadata. This is demonstrated by both

5.4MEDIUM

CVE-2017-5612

<= 4.7.1

Cross-site scripting (XSS) vulnerability in wp-admin/includes/class-wp-posts-list-table.php in the posts list table in WordPress b

6.1MEDIUM

CVE-2017-5611

<= 4.7.1

SQL injection vulnerability in wp-includes/class-wp-query.php in WP_Query in WordPress before 4.7.2 allows remote attackers to exe

9.8CRITICAL

CVE-2017-5610

<= 4.7.1

wp-admin/includes/class-wp-press-this.php in Press This in WordPress before 4.7.2 does not properly restrict visibility of a taxon

5.3MEDIUM

CVE-2016-6897

<= 4.5.5

Cross-site request forgery (CSRF) vulnerability in the wp_ajax_update_plugin function in wp-admin/includes/ajax-actions.php in Wor

6.5MEDIUM

CVE-2016-6896

all versions

Directory traversal vulnerability in the wp_ajax_update_plugin function in wp-admin/includes/ajax-actions.php in WordPress 4.5.3 a

7.1HIGH

CVE-2016-10148

<= 4.5.5

The wp_ajax_update_plugin function in wp-admin/includes/ajax-actions.php in WordPress before 4.6 makes a get_plugin_data call befo

4.3MEDIUM

CVE-2017-5493

<= 4.7

wp-includes/ms-functions.php in the Multisite WordPress API in WordPress before 4.7.1 does not properly choose random numbers for

7.5HIGH

CVE-2017-5492

<= 4.7

Cross-site request forgery (CSRF) vulnerability in the widget-editing accessibility-mode feature in WordPress before 4.7.1 allows

8.8HIGH

CVE-2017-5491

<= 4.7

wp-mail.php in WordPress before 4.7.1 might allow remote attackers to bypass intended posting restrictions via a spoofed mail serv

5.3MEDIUM

CVE-2017-5490

<= 4.7

Cross-site scripting (XSS) vulnerability in the theme-name fallback functionality in wp-includes/class-wp-theme.php in WordPress b

6.1MEDIUM

CVE-2017-5489

<= 4.7

Cross-site request forgery (CSRF) vulnerability in WordPress before 4.7.1 allows remote attackers to hijack the authentication of

8.8HIGH

CVE-2017-5488

<= 4.7

Multiple cross-site scripting (XSS) vulnerabilities in wp-admin/update-core.php in WordPress before 4.7.1 allow remote attackers t

6.1MEDIUM

CVE-2017-5487

<= 4.7

wp-includes/rest-api/endpoints/class-wp-rest-users-controller.php in the REST API implementation in WordPress 4.7 before 4.7.1 doe

5.3MEDIUM

CVE-2016-7169

<= 4.6

Directory traversal vulnerability in the File_Upload_Upgrader class in wp-admin/includes/class-file-upload-upgrader.php in the upg

6.3MEDIUM

CVE-2016-7168

<= 4.6

Cross-site scripting (XSS) vulnerability in the media_handle_upload function in wp-admin/includes/media.php in WordPress before 4.

4.8MEDIUM

CVE-2016-10045

<= 4.7

The isMail transport in PHPMailer before 5.2.20 might allow remote attackers to pass extra parameters to the mail command and cons

9.8CRITICAL

CVE-2016-10033

<= 4.7

The mailSend function in the isMail transport in PHPMailer before 5.2.18 might allow remote attackers to pass extra parameters to

9.8CRITICAL

CVE-2016-6635

<= 4.4.2

Cross-site request forgery (CSRF) vulnerability in the wp_ajax_wp_compression_test function in wp-admin/includes/ajax-actions.php

8.8HIGH

CVE-2016-6634

<= 4.4.4

Cross-site scripting (XSS) vulnerability in the network settings page in WordPress before 4.5 allows remote attackers to inject ar

6.1MEDIUM

CVE-2016-4029

< 4.5

WordPress before 4.5 does not consider octal and hexadecimal IP address formats when determining an intranet address, which allows

8.6HIGH

CVE-2016-5839

<= 4.5.2

WordPress before 4.5.3 allows remote attackers to bypass the sanitize_file_name protection mechanism via unspecified vectors.

7.5HIGH

CVE-2016-5838

<= 4.5.2

WordPress before 4.5.3 allows remote attackers to bypass intended password-change restrictions by leveraging knowledge of a cookie

7.5HIGH

CVE-2016-5837

<= 4.5.2

WordPress before 4.5.3 allows remote attackers to bypass intended access restrictions and remove a category attribute from a post

7.5HIGH

CVE-2016-5836

<= 4.5.2

The oEmbed protocol implementation in WordPress before 4.5.3 allows remote attackers to cause a denial of service via unspecified

7.5HIGH

CVE-2016-5835

<= 4.5.2

WordPress before 4.5.3 allows remote attackers to obtain sensitive revision-history information by leveraging the ability to read

7.5HIGH

CVE-2016-5834

<= 4.5.2

Cross-site scripting (XSS) vulnerability in the wp_get_attachment_link function in wp-includes/post-template.php in WordPress befo

6.1MEDIUM

CVE-2016-5833

<= 4.5.2

Cross-site scripting (XSS) vulnerability in the column_title function in wp-admin/includes/class-wp-media-list-table.php in WordPr

6.1MEDIUM

CVE-2016-5832

<= 4.5.2

The customizer in WordPress before 4.5.3 allows remote attackers to bypass intended redirection restrictions via unspecified vecto

7.5HIGH

CVE-2016-4567

<= 4.5.1

Cross-site scripting (XSS) vulnerability in flash/FlashMediaElement.as in MediaElement.js before 2.21.0, as used in WordPress befo

6.1MEDIUM

CVE-2016-4566

<= 4.5.1

Cross-site scripting (XSS) vulnerability in plupload.flash.swf in Plupload before 2.1.9, as used in WordPress before 4.5.2, allows

6.1MEDIUM

CVE-2016-2222

all versions

The wp_http_validate_url function in wp-includes/http.php in WordPress before 4.4.2 allows remote attackers to conduct server-side

8.6HIGH

CVE-2016-2221

<= 4.4.1

Open redirect vulnerability in the wp_validate_redirect function in wp-includes/pluggable.php in WordPress before 4.4.2 allows rem

7.4HIGH

CVE-2016-1564

<= 4.4.0

Multiple cross-site scripting (XSS) vulnerabilities in wp-includes/class-wp-theme.php in WordPress before 4.4.1 allow remote attac

6.1MEDIUM

CVE-2015-8834

<= 4.2.1

Cross-site scripting (XSS) vulnerability in wp-includes/wp-db.php in WordPress before 4.2.2 allows remote attackers to inject arbi

6.1MEDIUM

CVE-2015-7989

<= 4.3.0

Cross-site scripting (XSS) vulnerability in the user list table in WordPress before 4.3.1 allows remote authenticated users to inj

5.4MEDIUM

CVE-2015-5715

<= 4.3.0

The mw_editPost function in wp-includes/class-wp-xmlrpc-server.php in the XMLRPC subsystem in WordPress before 4.3.1 allows remote

4.3MEDIUM

CVE-2015-5714

<= 4.3.0

Cross-site scripting (XSS) vulnerability in WordPress before 4.3.1 allows remote attackers to inject arbitrary web script or HTML

6.1MEDIUM

CVE-2015-5734

<= 4.2.3

Cross-site scripting (XSS) vulnerability in the legacy theme preview implementation in wp-includes/theme.php in WordPress before 4

CVE-2015-5733

<= 4.2.3

Cross-site scripting (XSS) vulnerability in the refreshAdvancedAccessibilityOfItem function in wp-admin/js/nav-menu.js in WordPres

CVE-2015-5732

<= 4.2.3

Cross-site scripting (XSS) vulnerability in the form function in the WP_Nav_Menu_Widget class in wp-includes/default-widgets.php i

CVE-2015-5731

<= 4.2.3

Cross-site request forgery (CSRF) vulnerability in wp-admin/post.php in WordPress before 4.2.4 allows remote attackers to hijack t

CVE-2015-5730

<= 4.2.3

The sanitize_widget_instance function in wp-includes/class-wp-customize-widgets.php in WordPress before 4.2.4 does not use a const

CVE-2015-2213

<= 4.2.3

SQL injection vulnerability in the wp_untrash_post_comments function in wp-includes/post.php in WordPress before 4.2.4 allows remo

CVE-2015-3439

all versions

Cross-site scripting (XSS) vulnerability in the Ephox (formerly Moxiecode) plupload.flash.swf shim 2.1.2 in Plupload, as used in W

CVE-2015-3438

<= 4.1.1

Multiple cross-site scripting (XSS) vulnerabilities in WordPress before 4.1.2, when MySQL is used without strict mode, allow remot

CVE-2015-5623

<= 4.2.2

WordPress before 4.2.3 does not properly verify the edit_posts capability, which allows remote authenticated users to bypass inten

CVE-2015-5622

<= 4.2.2

Cross-site scripting (XSS) vulnerability in WordPress before 4.2.3 allows remote authenticated users to inject arbitrary web scrip

CVE-2015-3440

<= 4.2

Cross-site scripting (XSS) vulnerability in wp-includes/wp-db.php in WordPress before 4.2.1 allows remote attackers to inject arbi

CVE-2014-9039

<= 3.7.4

wp-login.php in WordPress before 3.7.5, 3.8.x before 3.8.5, 3.9.x before 3.9.3, and 4.x before 4.0.1 might allow remote attackers

CVE-2014-9038

<= 3.7.4

wp-includes/http.php in WordPress before 3.7.5, 3.8.x before 3.8.5, 3.9.x before 3.9.3, and 4.x before 4.0.1 allows remote attacke

CVE-2014-9037

<= 3.7.4

WordPress before 3.7.5, 3.8.x before 3.8.5, 3.9.x before 3.9.3, and 4.x before 4.0.1 might allow remote attackers to obtain access

CVE-2014-9036

<= 3.7.4

Cross-site scripting (XSS) vulnerability in WordPress before 3.7.5, 3.8.x before 3.8.5, 3.9.x before 3.9.3, and 4.x before 4.0.1 a

CVE-2014-9035

<= 3.7.4

Cross-site scripting (XSS) vulnerability in Press This in WordPress before 3.7.5, 3.8.x before 3.8.5, 3.9.x before 3.9.3, and 4.x

CVE-2014-9034

<= 3.7.4

wp-includes/class-phpass.php in WordPress before 3.7.5, 3.8.x before 3.8.5, 3.9.x before 3.9.3, and 4.x before 4.0.1 allows remote

CVE-2014-9033

all versions

Cross-site request forgery (CSRF) vulnerability in wp-login.php in WordPress 3.7.4, 3.8.4, 3.9.2, and 4.0 allows remote attackers

CVE-2014-9032

all versions

Cross-site scripting (XSS) vulnerability in the media-playlists feature in WordPress before 3.9.x before 3.9.3 and 4.x before 4.0.

CVE-2014-9031

<= 3.7.4

Cross-site scripting (XSS) vulnerability in the wptexturize function in WordPress before 3.7.5, 3.8.x before 3.8.5, and 3.9.x befo

CVE-2003-1599

all versions

PHP remote file inclusion vulnerability in wp-links/links.all.php in WordPress 0.70 allows remote attackers to execute arbitrary P

CVE-2003-1598

<= 0.7

SQL injection vulnerability in log.header.php in WordPress 0.7 and earlier allows remote attackers to execute arbitrary SQL comman

CVE-2014-5266

<= 3.9.1

The Incutio XML-RPC (IXR) Library, as used in WordPress before 3.9.2 and Drupal 6.x before 6.33 and 7.x before 7.31, does not limi

CVE-2014-5265

<= 3.9.1

The Incutio XML-RPC (IXR) Library, as used in WordPress before 3.9.2 and Drupal 6.x before 6.33 and 7.x before 7.31, permits entit

CVE-2014-5240

<= 3.9.1

Cross-site scripting (XSS) vulnerability in wp-includes/pluggable.php in WordPress before 3.9.2, when Multisite is enabled, allows

CVE-2014-5205

<= 3.9.1

wp-includes/pluggable.php in WordPress before 3.9.2 does not use delimiters during concatenation of action values and uid values i

CVE-2014-5204

<= 3.9.1

wp-includes/pluggable.php in WordPress before 3.9.2 rejects invalid CSRF nonces with a different timing depending on which charact

CVE-2014-5203

all versions

wp-includes/class-wp-customize-widgets.php in the widget implementation in WordPress 3.9.x before 3.9.2 might allow remote attacke

CVE-2014-0166

<= 3.7.1

The wp_validate_auth_cookie function in wp-includes/pluggable.php in WordPress before 3.7.2 and 3.8.x before 3.8.2 does not proper

CVE-2014-0165

<= 3.7.1

WordPress before 3.7.2 and 3.8.x before 3.8.2 allows remote authenticated users to publish posts by leveraging the Contributor rol

CVE-2012-6635

<= 3.3.2

wp-admin/includes/class-wp-posts-list-table.php in WordPress before 3.3.3 does not properly restrict excerpt-view access, which al

CVE-2012-6634

<= 3.3.2

wp-admin/media-upload.php in WordPress before 3.3.3 allows remote attackers to obtain sensitive information or bypass intended med

CVE-2012-6633

<= 3.3.2

Cross-site scripting (XSS) vulnerability in wp-includes/default-filters.php in WordPress before 3.3.3 allows remote attackers to i

CVE-2011-5270

<= 3.0.5

wp-admin/press-this.php in WordPress before 3.0.6 does not enforce the publish_posts capability requirement, which allows remote a

CVE-2010-5297

<= 3.0

WordPress before 3.0.1, when a Multisite installation is used, permanently retains the "site administrators can add users" option

CVE-2010-5296

<= 3.0.1

wp-includes/capabilities.php in WordPress before 3.0.2, when a Multisite configuration is used, does not require the Super Admin r

CVE-2010-5295

<= 3.0.1

Cross-site scripting (XSS) vulnerability in wp-admin/plugins.php in WordPress before 3.0.2 might allow remote attackers to inject

CVE-2010-5294

<= 3.0.1

Multiple cross-site scripting (XSS) vulnerabilities in the request_filesystem_credentials function in wp-admin/includes/file.php i

CVE-2010-5293

<= 3.0.1

wp-includes/comment.php in WordPress before 3.0.2 does not properly whitelist trackbacks and pingbacks in the blogroll, which allo

CVE-2013-7240

all versions

Directory traversal vulnerability in download-file.php in the Advanced Dewplayer plugin 1.2 for WordPress allows remote attackers

CVE-2013-7233

<= 2.0.11

Cross-site request forgery (CSRF) vulnerability in the retrospam component in wp-admin/options-discussion.php in WordPress 2.0.11

CVE-2013-5739

<= 3.6

The default configuration of WordPress before 3.6.1 does not prevent uploads of .swf and .exe files, which might make it easier fo

CVE-2013-5738

<= 3.6

The get_allowed_mime_types function in wp-includes/functions.php in WordPress before 3.6.1 does not require the unfiltered_html ca

CVE-2013-4340

<= 3.6

wp-admin/includes/post.php in WordPress before 3.6.1 allows remote authenticated users to spoof the authorship of a post by levera

CVE-2013-4339

<= 3.6

WordPress before 3.6.1 does not properly validate URLs before use in an HTTP redirect, which allows remote attackers to bypass int

CVE-2013-4338

<= 3.6

wp-includes/functions.php in WordPress before 3.6.1 does not properly determine whether data has been serialized, which allows rem

CVE-2012-3414

<= 3.3.1

Cross-site scripting (XSS) vulnerability in swfupload.swf in SWFUpload 2.2.0.1 and earlier, as used in WordPress before 3.3.2, Tin

CVE-2013-2205

<= 3.5.1

The default configuration of SWFUpload in WordPress before 3.5.2 has an unrestrictive security.allowDomain setting, which allows r

CVE-2013-2204

<= 3.5.1

moxieplayer.as in Moxiecode moxieplayer, as used in the TinyMCE Media plugin in WordPress before 3.5.2 and other products, does no

CVE-2013-2203

<= 3.5.1

WordPress before 3.5.2, when the uploads directory forbids write access, allows remote attackers to obtain sensitive information v

CVE-2013-2202

<= 3.5.1

WordPress before 3.5.2 allows remote attackers to read arbitrary files via an oEmbed XML provider response containing an external

CVE-2013-2201

<= 3.5.1

Multiple cross-site scripting (XSS) vulnerabilities in WordPress before 3.5.2 allow remote attackers to inject arbitrary web scrip

CVE-2013-2200

<= 3.5.1

WordPress before 3.5.2 does not properly check the capabilities of roles, which allows remote authenticated users to bypass intend

CVE-2013-2199

<= 3.5.1

The HTTP API in WordPress before 3.5.2 allows remote attackers to send HTTP requests to intranet servers via unspecified vectors,

CVE-2013-0237

<= 3.5.0

Cross-site scripting (XSS) vulnerability in Plupload.as in Moxiecode plupload before 1.5.5, as used in WordPress before 3.5.1 and

CVE-2013-0236

<= 3.5.0

Multiple cross-site scripting (XSS) vulnerabilities in WordPress before 3.5.1 allow remote attackers to inject arbitrary web scrip

CVE-2013-0235

<= 3.5.0

The XMLRPC API in WordPress before 3.5.1 allows remote attackers to send HTTP requests to intranet servers, and conduct port-scann

CVE-2013-2173

all versions

wp-includes/class-phpass.php in WordPress 3.5.1, when a password-protected post exists, allows remote attackers to cause a denial

CVE-2012-6527

all versions

Cross-site scripting (XSS) vulnerability in the My Calendar plugin before 1.10.2 for WordPress allows remote attackers to inject a

CVE-2012-5868

all versions

WordPress 3.4.2 does not invalidate a wordpress_sec session cookie upon an administrator's logout action, which makes it easier fo

CVE-2011-5216

all versions

SQL injection vulnerability in ajax.php in SCORM Cloud For WordPress plugin before 1.0.7 for WordPress allows remote attackers to

CVE-2012-5350

<= 1.1

SQL injection vulnerability in the Pay With Tweet plugin before 1.2 for WordPress allows remote authenticated users with certain p

CVE-2012-5349

<= 1.1

Multiple cross-site scripting (XSS) vulnerabilities in pay.php in the Pay With Tweet plugin before 1.2 allow remote attackers to i

CVE-2012-4448

all versions

Cross-site request forgery (CSRF) vulnerability in wp-admin/index.php in WordPress 3.4.2 allows remote attackers to hijack the aut

CVE-2012-4422

<= 3.4.1

wp-admin/plugins.php in WordPress before 3.4.2, when the multisite feature is enabled, does not check for network-administrator pr

CVE-2012-4421

<= 3.4.1

The create_post function in wp-includes/class-wp-atom-server.php in WordPress before 3.4.2 does not perform a capability check, wh

CVE-2010-5106

<= 3.0.2

The XML-RPC remote publishing interface in xmlrpc.php in WordPress before 3.0.3 does not properly check capabilities, which allows

CVE-2012-4271

all versions

Multiple cross-site scripting (XSS) vulnerabilities in bad-behavior-wordpress-admin.php in the Bad Behavior plugin before 2.0.47 a

CVE-2012-3385

<= 3.4.0

WordPress before 3.4.1 does not properly restrict access to post contents such as private or draft posts, which allows remote auth

CVE-2012-3384

<= 3.4.0

Cross-site request forgery (CSRF) vulnerability in the customizer in WordPress before 3.4.1 allows remote attackers to hijack the

CVE-2012-3383

all versions

The map_meta_cap function in wp-includes/capabilities.php in WordPress 3.4.x before 3.4.2, when the multisite feature is enabled,

CVE-2011-4957

<= 3.1

The make_clickable function in wp-includes/formatting.php in WordPress before 3.1.1 does not properly check URLs before passing th

CVE-2011-4956

<= 3.1

Cross-site scripting (XSS) vulnerability in WordPress before 3.1.1 allows remote attackers to inject arbitrary web script or HTML

CVE-2012-2633

<= 1.8.3

Cross-site scripting (XSS) vulnerability in wassup.php in the WassUp plugin before 1.8.3.1 for WordPress allows remote attackers t

CVE-2012-1936

<= 3.3.1

The wp_create_nonce function in wp-includes/pluggable.php in WordPress 3.3.1 and earlier associates a nonce with a user account in

CVE-2012-2404

<= 3.3.1

wp-comments-post.php in WordPress before 3.3.2 supports offsite redirects, which makes it easier for remote attackers to conduct c

CVE-2012-2403

<= 3.3.1

wp-includes/formatting.php in WordPress before 3.3.2 attempts to enable clickable links inside attributes, which makes it easier f

CVE-2012-2402

<= 3.3.1

wp-admin/plugins.php in WordPress before 3.3.2 allows remote authenticated site administrators to bypass intended access restricti

CVE-2012-2401

<= 3.3.1

Plupload before 1.5.4, as used in wp-includes/js/plupload/ in WordPress before 3.3.2 and other products, enables scripting regardl

CVE-2012-2400

<= 3.3.1

Unspecified vulnerability in wp-includes/js/swfobject.js in WordPress before 3.3.2 has unknown impact and attack vectors.

CVE-2012-2399

<= 3.3.1

Cross-site scripting (XSS) vulnerability in swfupload.swf in SWFupload 2.2.0.1 and earlier, as used in WordPress before 3.5.2, Tin

CVE-2012-0937

<= 3.3.1

wp-admin/setup-config.php in the installation component in WordPress 3.3.1 and earlier does not limit the number of MySQL queries

CVE-2012-0782

<= 3.3.1

Multiple cross-site scripting (XSS) vulnerabilities in wp-admin/setup-config.php in the installation component in WordPress 3.3.1

CVE-2011-4899

<= 3.3.1

wp-admin/setup-config.php in the installation component in WordPress 3.3.1 and earlier does not ensure that the specified MySQL da

CVE-2011-4898

<= 3.3.1

wp-admin/setup-config.php in the installation component in WordPress 3.3.1 and earlier generates different error messages for requ

CVE-2012-0287

all versions

Cross-site scripting (XSS) vulnerability in wp-comments-post.php in WordPress 3.3.x before 3.3.1, when Internet Explorer is used,

CVE-2011-4669

<= 1.3

SQL injection vulnerability in wp-users.php in WordPress Users plugin 1.3 and possibly earlier for WordPress allows remote attacke

CVE-2011-3818

all versions

WordPress 2.9.2 and 3.0.4 allows remote attackers to obtain sensitive information via a direct request to a .php file, which revea

CVE-2011-3130

all versions

wp-includes/taxonomy.php in WordPress 3.1 before 3.1.3 and 3.2 before Beta 2 has unknown impact and attack vectors related to "Tax

CVE-2011-3129

all versions

The file upload functionality in WordPress 3.1 before 3.1.3 and 3.2 before Beta 2, when running "on hosts with dangerous security

CVE-2011-3128

all versions

WordPress 3.1 before 3.1.3 and 3.2 before Beta 2 treats unattached attachments as published, which might allow remote attackers to

CVE-2011-3127

all versions

WordPress 3.1 before 3.1.3 and 3.2 before Beta 2 does not prevent rendering for (1) admin or (2) login pages inside a frame in a t

CVE-2011-3126

all versions

WordPress 3.1 before 3.1.3 and 3.2 before Beta 2 allows remote attackers to determine usernames of non-authors via canonical redir

CVE-2011-3125

all versions

Unspecified vulnerability in WordPress 3.1 before 3.1.3 and 3.2 before Beta 2 has unknown impact and attack vectors related to "Va

CVE-2011-3122

all versions

Unspecified vulnerability in WordPress 3.1 before 3.1.3 and 3.2 before Beta 2 has unknown impact and attack vectors related to "Me

CVE-2011-0701

<= 3.0.4

wp-admin/async-upload.php in the media uploader in WordPress before 3.0.5 allows remote authenticated users to read (1) draft post

CVE-2011-0700

<= 3.0.4

Multiple cross-site scripting (XSS) vulnerabilities in WordPress before 3.0.5 allow remote authenticated users to inject arbitrary

CVE-2010-4536

<= 3.0.3

Multiple cross-site scripting (XSS) vulnerabilities in KSES, as used in WordPress before 3.0.4, allow remote attackers to inject a

CVE-2010-4257

<= 3.0.1

SQL injection vulnerability in the do_trackbacks function in wp-includes/comment.php in WordPress before 3.0.2 allows remote authe

CVE-2010-0682

all versions

WordPress 2.9 before 2.9.2 allows remote authenticated users to read trash posts from other authors via a direct request with a mo

CVE-2009-3891

<= 2.8.5

Cross-site scripting (XSS) vulnerability in wp-admin/press-this.php in WordPress before 2.8.6 allows remote authenticated users to

CVE-2009-3890

<= 2.8.5

Unrestricted file upload vulnerability in the wp_check_filetype function in wp-includes/functions.php in WordPress before 2.8.6, w

CVE-2009-3622

<= 2.8.4

Algorithmic complexity vulnerability in wp-trackback.php in WordPress before 2.8.5 allows remote attackers to cause a denial of se

CVE-2009-2854

<= 2.8.2

Wordpress before 2.8.3 does not check capabilities for certain actions, which allows remote attackers to make unauthorized edits o

CVE-2009-2853

all versions

Wordpress before 2.8.3 allows remote attackers to gain privileges via a direct request to (1) admin-footer.php, (2) edit-category-

CVE-2009-2851

<= 2.8.1

Cross-site scripting (XSS) vulnerability in the administrator interface in WordPress before 2.8.2 allows remote attackers to injec

CVE-2009-2762

<= 2.8.3

wp-login.php in WordPress 2.8.3 and earlier allows remote attackers to force a password reset for the first user in the database,

CVE-2009-2432

<= 2.7.1

WordPress and WordPress MU before 2.8.1 allow remote attackers to obtain sensitive information via a direct request to wp-settings

CVE-2009-2431

all versions

WordPress 2.7.1 places the username of a post's author in an HTML comment, which allows remote attackers to obtain sensitive infor

CVE-2009-2336

< 2.8.1

The forgotten mail interface in WordPress and WordPress MU before 2.8.1 exhibits different behavior for a password request dependi

CVE-2009-2335

< 2.8.1

WordPress and WordPress MU before 2.8.1 exhibit different behavior for a failed login attempt depending on whether the user accoun

CVE-2009-2334

<= 2.7.1

wp-admin/admin.php in WordPress and WordPress MU before 2.8.1 does not require administrative authentication to access the configu

CVE-2008-6767

all versions

wp-admin/upgrade.php in WordPress, probably 2.6.x, allows remote attackers to upgrade the application, and possibly cause a denial

CVE-2008-6762

all versions

Open redirect vulnerability in wp-admin/upgrade.php in WordPress, probably 2.6.x, allows remote attackers to redirect users to arb

CVE-2009-1030

<= 2.6

Cross-site scripting (XSS) vulnerability in the choose_primary_blog function in wp-includes/wpmu-functions.php in WordPress MU (WP

CVE-2008-5695

<= 2.3.2

wp-admin/options.php in WordPress MU before 1.3.2, and WordPress 2.3.2 and earlier, does not properly validate requests to update

CVE-2008-5278

<= 2.6.3

Cross-site scripting (XSS) vulnerability in the self_link function in the RSS Feed Generator (wp-includes/feed.php) for WordPre

CVE-2008-5113

all versions

WordPress 2.6.3 relies on the REQUEST superglobal array in certain dangerous situations, which makes it easier for remote attacker

CVE-2008-4796

< 2.6.3

The _httpsrequest function (Snoopy/Snoopy.class.php) in Snoopy 1.2.3 and earlier, as used in (1) ampache, (2) libphp-snoopy, (3) m

CVE-2008-4769

<= 2.3.3

Directory traversal vulnerability in the get_category_template function in wp-includes/theme.php in WordPress 2.3.3 and earlier, a

CVE-2008-4671

all versions

Cross-site scripting (XSS) vulnerability in wp-admin/wp-blogs.php in Wordpress MU (WPMU) before 2.6 allows remote attackers to inj

CVE-2008-4106

<= 2.6.1

WordPress before 2.6.2 does not properly handle MySQL warnings about insertion of username strings that exceed the maximum column

CVE-2008-3747

all versions

The (1) get_edit_post_link and (2) get_edit_comment_link functions in wp-includes/link-template.php in WordPress before 2.6.1 do n

CVE-2008-3233

<= 2.5.1

Cross-site scripting (XSS) vulnerability in WordPress before 2.6, SVN development versions only, allows remote attackers to inject

CVE-2008-2392

<= 2.5.1

Unrestricted file upload vulnerability in WordPress 2.5.1 and earlier might allow remote authenticated administrators to upload an

CVE-2008-2146

<= 2.2.2

wp-includes/vars.php in Wordpress before 2.2.3 does not properly extract the current path from the PATH_INFO ($PHP_SELF), which al

CVE-2008-2068

all versions

Cross-site scripting (XSS) vulnerability in WordPress 2.5 allows remote attackers to inject arbitrary web script or HTML via unspe

CVE-2008-1930

all versions

The cookie authentication method in WordPress 2.5 relies on a hash of a concatenated string containing USERNAME and EXPIRY_TIME, w

CVE-2008-1304

all versions

Multiple cross-site scripting (XSS) vulnerabilities in WordPress 2.3.2 allow remote attackers to inject arbitrary web script or HT

CVE-2008-1061

all versions

Multiple cross-site scripting (XSS) vulnerabilities in the Sniplets 1.1.2 and 1.2.2 plugin for WordPress allow remote attackers to

CVE-2008-1060

all versions

Eval injection vulnerability in modules/execute.php in the Sniplets 1.1.2 and 1.2.2 plugin for WordPress allows remote attackers t

CVE-2008-1059

all versions

PHP remote file inclusion vulnerability in modules/syntax_highlight.php in the Sniplets 1.1.2 and 1.2.2 plugin for WordPress allow

CVE-2008-0664

all versions

The XML-RPC implementation (xmlrpc.php) in WordPress before 2.3.3, when registration is enabled, allows remote attackers to edit p

CVE-2008-0520

<= 1.4.3

Multiple SQL injection vulnerabilities in main.php in the WassUp plugin 1.4 through 1.4.3 for WordPress allow remote attackers to

CVE-2008-0507

all versions

SQL injection vulnerability in adclick.php in the AdServe 0.2 plugin for WordPress allows remote attackers to execute arbitrary SQ

CVE-2008-0205

<= 2.1

Multiple cross-site request forgery (CSRF) vulnerabilities in math-comment-spam-protection.php in the Math Comment Spam Protection

CVE-2008-0204

<= 2.1

Multiple cross-site scripting (XSS) vulnerabilities in math-comment-spam-protection.php in the Math Comment Spam Protection 2.1 an

CVE-2008-0196

<= 2.0.11

Multiple directory traversal vulnerabilities in WordPress 2.0.11 and earlier allow remote attackers to read arbitrary files via a

CVE-2008-0195

<= 2.0.11

WordPress 2.0.11 and earlier allows remote attackers to obtain sensitive information via an empty value of the page parameter to c

CVE-2008-0194

<= 2.0.3

Directory traversal vulnerability in wp-db-backup.php in WordPress 2.0.3 and earlier allows remote attackers to read arbitrary fil

CVE-2008-0193

<= 2.0.11

Cross-site scripting (XSS) vulnerability in wp-db-backup.php in WordPress 2.0.11 and earlier, and possibly 2.1.x through 2.3.x, al

CVE-2008-0192

<= 2.0.9

Multiple cross-site scripting (XSS) vulnerabilities in WordPress 2.0.9 and earlier allow remote attackers to inject arbitrary web

CVE-2008-0191

all versions

WordPress 2.2.x and 2.3.x allows remote attackers to obtain sensitive information via an invalid p parameter in an rss2 action to

CVE-2007-6318

all versions

SQL injection vulnerability in wp-includes/query.php in WordPress 2.3.1 and earlier allows remote attackers to execute arbitrary S

CVE-2007-6013

>= 1.5 and <= 2.3.1

Wordpress 1.5 through 2.3.1 uses cookie values based on the MD5 hash of a password MD5 hash, which allows attackers to bypass auth

9.8CRITICAL

CVE-2007-5710

all versions

Cross-site scripting (XSS) vulnerability in wp-admin/edit-post-rows.php in WordPress 2.3 allows remote attackers to inject arbitra

CVE-2007-5106

all versions

Cross-site scripting (XSS) vulnerability in wp-register.php in WordPress 2.0 allows remote attackers to inject arbitrary web scrip

CVE-2007-5105

all versions

Cross-site scripting (XSS) vulnerability in wp-register.php in WordPress 2.0 and 2.0.1 allows remote attackers to inject arbitrary

CVE-2007-4894

all versions

Multiple SQL injection vulnerabilities in Wordpress before 2.2.3 and Wordpress multi-user (MU) before 1.2.5a allow remote attacker

CVE-2007-4893

all versions

wp-admin/admin-functions.php in Wordpress before 2.2.3 and Wordpress multi-user (MU) before 1.2.5a does not properly verify the un

CVE-2007-4544

<= 1.0

Cross-site scripting (XSS) vulnerability in wp-newblog.php in WordPress multi-user (MU) 1.0 and earlier allows remote attackers to

CVE-2007-4481

all versions

Cross-site scripting (XSS) vulnerability in index.php in the (1) Blix 0.9.1 and (2) Blix 0.9.1 Rus themes for WordPress allows rem

CVE-2007-4154

all versions

SQL injection vulnerability in options.php in WordPress 2.2.1 allows remote authenticated administrators to execute arbitrary SQL

CVE-2007-4153

all versions

Multiple cross-site scripting (XSS) vulnerabilities in WordPress 2.2.1 allow remote authenticated administrators to inject arbitra

CVE-2007-4139

all versions

Cross-site scripting (XSS) vulnerability in the Temporary Uploads editing functionality (wp-admin/includes/upload.php) in WordPres

CVE-2007-4014

all versions

Cross-site scripting (XSS) vulnerability in a certain index.php installation script related to the (1) Blix 0.9.1, (2) Blixed 1.0,

CVE-2007-3639

<= 2.2.1

WordPress before 2.2.2 allows remote attackers to redirect visitors to other websites and potentially obtain sensitive information

CVE-2007-3544

<= 2.2.0

Unrestricted file upload vulnerability in (1) wp-app.php and (2) app.php in WordPress 2.2.1 and WordPress MU 1.2.3 allows remote a

CVE-2007-3543

<= 2.2.0

Unrestricted file upload vulnerability in WordPress before 2.2.1 and WordPress MU before 1.2.3 allows remote authenticated users t

CVE-2007-3241

all versions

Cross-site scripting (XSS) vulnerability in blogroll.php in the cordobo-green-park theme for WordPress allows remote attackers to

CVE-2007-3240

all versions

Cross-site scripting (XSS) vulnerability in 404.php in the Vistered-Little theme for WordPress allows remote attackers to inject a

CVE-2007-3239

all versions

Cross-site scripting (XSS) vulnerability in searchform.php in the AndyBlue theme before 20070607 for WordPress allows remote attac

CVE-2007-3238

all versions

Cross-site scripting (XSS) vulnerability in functions.php in the default theme in WordPress 2.2 allows remote authenticated admini

CVE-2007-3140

all versions

SQL injection vulnerability in xmlrpc.php in WordPress 2.2 allows remote authenticated users to execute arbitrary SQL commands via

CVE-2007-2821

<= 2.1.3

SQL injection vulnerability in wp-admin/admin-ajax.php in WordPress before 2.2 allows remote attackers to execute arbitrary SQL co

CVE-2007-2627

all versions

Cross-site scripting (XSS) vulnerability in sidebar.php in WordPress, when custom 404 pages that call get_sidebar are used, allows

CVE-2007-1897

<= 2.1.2

SQL injection vulnerability in xmlrpc (xmlrpc.php) in WordPress 2.1.2, and probably earlier, allows remote authenticated users to

CVE-2007-1894

all versions

Cross-site scripting (XSS) vulnerability in wp-includes/general-template.php in WordPress before 20070309 allows remote attackers

CVE-2007-1893

<= 2.1.2

xmlrpc (xmlrpc.php) in WordPress 2.1.2, and probably earlier, allows remote authenticated users with the contributor role to bypas

CVE-2007-1732

all versions

Cross-site scripting (XSS) vulnerability in an mt import in wp-admin/admin.php in WordPress 2.1.2 allows remote authenticated admi

CVE-2007-1622

all versions

Cross-site scripting (XSS) vulnerability in wp-admin/vars.php in WordPress before 2.0.10 RC2, and before 2.1.3 RC2 in the 2.1 seri

CVE-2007-1599

all versions

wp-login.php in WordPress allows remote attackers to redirect authenticated users to other websites and potentially obtain sensiti

CVE-2007-1409

all versions

WordPress allows remote attackers to obtain sensitive information via a direct request for wp-admin/admin-functions.php, which rev

CVE-2007-1277

all versions

WordPress 2.1.1, as downloaded from some official distribution sites during February and March 2007, contains an externally introd

CVE-2007-1244

<= 2.1.1

Cross-site request forgery (CSRF) vulnerability in the AdminPanel in WordPress 2.1.1 and earlier allows remote attackers to perfor

CVE-2007-1230

all versions

Multiple cross-site scripting (XSS) vulnerabilities in wp-includes/functions.php in WordPress before 2.1.2-alpha allow remote atta

CVE-2007-1049

all versions

Cross-site scripting (XSS) vulnerability in the wp_explain_nonce function in the nonce AYS functionality (wp-includes/functions.ph

CVE-2007-0541

<= 2.0

WordPress allows remote attackers to determine the existence of arbitrary files, and possibly read portions of certain files, via

CVE-2007-0540

<= 2.0

WordPress allows remote attackers to cause a denial of service (bandwidth or thread consumption) via pingback service calls with a

CVE-2007-0539

<= 2.0

The wp_remote_fopen function in WordPress before 2.1 allows remote attackers to cause a denial of service (bandwidth or thread con

CVE-2007-0262

all versions

WordPress 2.0.6, and 2.1Alpha 3 (SVN:4662), does not properly verify that the m parameter value has the string data type, which al

CVE-2007-0233

all versions

wp-trackback.php in WordPress 2.0.6 and earlier does not properly unset variables when the input data includes a numeric parameter

CVE-2007-0109

all versions

wp-login.php in WordPress 2.0.5 and earlier displays different error messages if a user exists or not, which allows remote attacke

CVE-2007-0107

<= 2.0.5

WordPress before 2.0.6, when mbstring is enabled for PHP, decodes alternate character sets after escaping the SQL query, which all

CVE-2007-0106

all versions

Cross-site scripting (XSS) vulnerability in the CSRF protection scheme in WordPress before 2.0.6 allows remote attackers to inject

CVE-2006-6808

<= 2.0.5

Cross-site scripting (XSS) vulnerability in wp-admin/templates.php in WordPress 2.0.5 allows remote attackers to inject arbitrary

CVE-2006-6017

<= 2.0.5

WordPress before 2.0.5 does not properly store a profile containing a string representation of a serialized object, which allows r

6.5MEDIUM

CVE-2006-6016

<= 2.0.4

wp-admin/user-edit.php in WordPress before 2.0.5 allows remote authenticated users to read the metadata of an arbitrary user via a

6.5MEDIUM

CVE-2006-5705

<= 2.0.4

Multiple directory traversal vulnerabilities in plugins/wp-db-backup.php in WordPress before 2.0.5 allow remote authenticated user

CVE-2006-4743

all versions

WordPress 2.0.2 through 2.0.5 allows remote attackers to obtain sensitive information via a direct request for (1) 404.php, (2) ak

CVE-2006-4028

all versions

Multiple unspecified vulnerabilities in WordPress before 2.0.4 have unknown impact and remote attack vectors. NOTE: due to lack o

CVE-2006-3390

all versions

WordPress 2.0.3 allows remote attackers to obtain the installation path via a direct request to various files, such as those in th

CVE-2006-3389

all versions

index.php in WordPress 2.0.3 allows remote attackers to obtain sensitive information, such as SQL table prefixes, via an invalid p

CVE-2006-2702

all versions

vars.php in WordPress 2.0.2, possibly when running on Mac OS X, allows remote attackers to spoof their IP address via a PC_REMOTE_

CVE-2006-2667

<= 2.0.2

Direct static code injection vulnerability in WordPress 2.0.2 and earlier allows remote attackers to execute arbitrary commands by

CVE-2006-1796

<= 2.0

Cross-site scripting (XSS) vulnerability in the paging links functionality in template-functions-links.php in Wordpress 1.5.2, and

CVE-2006-1263

all versions

Multiple "unannounced" cross-site scripting (XSS) vulnerabilities in WordPress before 2.0.2 allow remote attackers to inject arbit

CVE-2006-1012

all versions

SQL injection vulnerability in WordPress 1.5.2, and possibly other versions before 2.0, allows remote attackers to execute arbitra

CVE-2006-0986

all versions

WordPress 2.0.1 and earlier allows remote attackers to obtain sensitive information via a direct request to (1) default-filters.ph

CVE-2006-0985

all versions

Multiple cross-site scripting (XSS) vulnerabilities in the "post comment" functionality of WordPress 2.0.1 and earlier allow remot

CVE-2006-0733

all versions

Cross-site scripting (XSS) vulnerability in WordPress 2.0.0 allows remote attackers to inject arbitrary web script or HTML via scr

CVE-2005-4463

all versions

WordPress before 1.5.2 allows remote attackers to obtain sensitive information via a direct request to (1) wp-includes/vars.php, (

CVE-2005-2612

all versions

Direct code injection vulnerability in WordPress 1.5.1.3 and earlier allows remote attackers to execute arbitrary PHP code via the

CVE-2005-2110

all versions

WordPress 1.5.1.2 and earlier allows remote attackers to obtain sensitive information via (1) a direct request to menu-header.php

CVE-2005-2109

all versions

wp-login.php in WordPress 1.5.1.2 and earlier allows remote attackers to change the content of the forgotten password e-mail messa

CVE-2005-2108

all versions

SQL injection vulnerability in XMLRPC server in WordPress 1.5.1.2 and earlier allows remote attackers to execute arbitrary SQL com

CVE-2005-2107

all versions

Multiple cross-site scripting (XSS) vulnerabilities in post.php in WordPress 1.5.1.2 and earlier allow remote attackers to inject

CVE-2005-1810

all versions

SQL injection vulnerability in template-functions-category.php in WordPress 1.5.1 allows remote attackers to execute arbitrary SQL

CVE-2005-1688

<= 1.5

Wordpress 1.5 and earlier allows remote attackers to obtain sensitive information via a direct request to files in (1) wp-content/

5.3MEDIUM

CVE-2005-1687

all versions

SQL injection vulnerability in wp-trackback.php in Wordpress 1.5 and earlier allows remote attackers to execute arbitrary SQL comm

CVE-2005-1102

<= 1.5

Multiple cross-site scripting (XSS) vulnerabilities in template-functions-post.php in WordPress 1.5 and earlier allow remote attac

CVE-2004-1584

all versions

CRLF injection vulnerability in wp-login.php in WordPress 1.2 allows remote attackers to perform HTTP Response Splitting attacks t

CVE-2004-1559

all versions

Multiple cross-site scripting (XSS) vulnerabilities in Wordpress 1.2 allow remote attackers to inject arbitrary web script or HTML