WordPress 4.1 is an outdated version that poses significant security risks to your website. Our security analysis has identified 312 known vulnerabilities, including 13 critical-severity flaws that could allow attackers to gain complete control of your site. If you're still running WordPress 4.1, your website is likely exposed to active exploits being used by malicious actors right now.
This comprehensive guide will help you understand the risks, check if your site is vulnerable, and implement the necessary security updates. We've analyzed the most dangerous vulnerabilities affecting WordPress 4.1 and created step-by-step instructions to protect your business, customer data, and online reputation.
WordPress 4.1 is an older version of the popular WordPress content management system released in February 2015. It was designed to help website owners easily create, manage, and publish content without technical knowledge. Millions of websites worldwide have relied on WordPress to power their online presence, from small blogs to major news outlets and e-commerce stores.
However, WordPress 4.1 reached end-of-life support years ago, meaning WordPress developers no longer provide security patches or updates for newly discovered vulnerabilities. This means any security flaw discovered after its release—and there are 312 of them—remains unpatched on your site. Running outdated software is like leaving your front door unlocked; attackers actively scan for websites using vulnerable versions and exploit them for profit.
312 CVEs found. The most critical are explained below.
The Icegram Email Subscribers plugin has a weakness that lets hackers send specially crafted requests to access your website's database directly. They can view, modify, or delete any information stored in your database without permission.
Impact: Attackers could steal customer emails, passwords, and personal information, or corrupt your entire database making your website non-functional.
↗ View on NVDThe File Upload plugin allows attackers to upload malicious files that can execute code on your server. This gives hackers complete control over your website as if they were sitting at your computer.
Impact: Hackers could take full control of your website, steal all data, inject malware for your visitors, or use your server to attack other websites.
↗ View on NVDThe Plus Addons for Elementor plugin has a critical flaw where anyone can log in as an administrator without knowing the password. Attackers only need a username to gain complete access.
Impact: Criminals could log in as your admin account, modify your website, steal data, add malware, or lock you out of your own website.
↗ View on NVDThe LearnPress plugin has a database vulnerability similar to SQL injection where attackers can manipulate course duplication requests to access or modify your database. This happens because the plugin doesn't properly validate user inputs.
Impact: Hackers could steal course data, student information, grades, and payment details, or corrupt your learning platform entirely.
↗ View on NVDThe Popup Builder plugin fails to properly check popup subscription IDs, allowing hackers to inject harmful code into your database or steal information from your site visitors' browsers.
Impact: Attackers could steal visitor data, inject malware into your site, or launch attacks against your customers' computers through your website.
↗ View on NVDThe Simple Membership plugin allows users to change their membership level during signup without proper verification. Users can upgrade to premium or admin status without paying or being authorized.
Impact: You could lose revenue from membership fees, and unauthorized users could gain access to premium content or administrative features they shouldn't have.
↗ View on NVDShowing first 10 of 306. View all on NVD ↗
| CVE ID | Severity | Score | Published | Description |
|---|---|---|---|---|
| CVE-2023-3277 | CRITICAL | 9.8 | 2023-11-03 | The MStore API plugin for WordPress is vulnerable to Unauthorized Account Access and Privilege Escalation in versions up to, and including, 4.10.7 due to improper implementation o… |
| CVE-2023-6049 | CRITICAL | 9.8 | 2024-01-15 | The Estatik Real Estate Plugin WordPress plugin before 4.1.1 unserializes user input via some of its cookies, which could allow unauthenticated users to perform PHP Object Injecti… |
| CVE-2024-4413 | CRITICAL | 9.8 | 2024-05-14 | The Hotel Booking Lite plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 4.11.1 via deserialization of untrusted input. This makes i… |
| CVE-2024-6328 | CRITICAL | 9.8 | 2024-07-12 | The MStore API – Create Native Android & iOS Apps On The Cloud plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 4.14.7. This is du… |
| CVE-2024-13824 | CRITICAL | 9.8 | 2025-03-14 | The CiyaShop - Multipurpose WooCommerce Theme theme for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 4.19.0 via deserialization of untrust… |
| CVE-2022-47615 | CRITICAL | 9.3 | 2023-01-26 | Local File Inclusion vulnerability in LearnPress – WordPress LMS Plugin <= 4.1.7.3.2 versions. |
| CVE-2024-8671 | CRITICAL | 9.1 | 2024-09-24 | The WooEvents - Calendar and Event Booking plugin for WordPress is vulnerable to arbitrary file overwrite due to insufficient file path validation in the inc/barcode.php file in a… |
| CVE-2019-16120 | HIGH | 8.8 | 2019-09-08 | CSV injection in the event-tickets (Event Tickets) plugin before 4.10.7.2 for WordPress exists via the "All Post> Ticketed > Attendees" Export Attendees feature. |
| CVE-2017-18597 | HIGH | 8.8 | 2019-09-10 | The jtrt-responsive-tables plugin before 4.1.2 for WordPress has SQL Injection via the admin/class-jtrt-responsive-tables-admin.php tableId parameter. |
| CVE-2021-24307 | HIGH | 8.8 | 2021-05-24 | The All in One SEO – Best WordPress SEO Plugin – Easily Improve Your SEO Rankings before 4.1.0.2 enables authenticated users with "aioseo_tools_settings" privilege (most of the ti… |
| CVE-2021-25036 | HIGH | 8.8 | 2022-01-17 | The All in One SEO WordPress plugin before 4.1.5.3 is affected by a Privilege Escalation issue, which was discovered during an internal audit by the Jetpack Scan team, and may gra… |
| CVE-2021-24803 | HIGH | 8.8 | 2022-02-28 | The Core Tweaks WP Setup WordPress plugin through 4.1 allows to bulk-set many settings in WordPress, including the admin email, as well as creating a new admin account. There is n… |
| CVE-2021-24962 | HIGH | 8.8 | 2022-03-28 | The WordPress File Upload Free and Pro WordPress plugins before 4.16.3 allow users with a role as low as Contributor to perform path traversal via a shortcode argument, which can … |
| CVE-2022-2273 | HIGH | 8.8 | 2022-08-01 | The Simple Membership WordPress plugin before 4.1.3 does not properly validate the membership_level parameter when editing a profile, allowing members to escalate to a higher memb… |
| CVE-2022-2557 | HIGH | 8.8 | 2022-08-22 | The Team WordPress plugin before 4.1.2 contains a file which could allow any authenticated users to download arbitrary files from the server via a path traversal vector. Furthermo… |
| CVE-2021-4331 | HIGH | 8.8 | 2023-03-07 | The Plus Addons for Elementor plugin for WordPress is vulnerable to privilege escalation in versions up to, and including 4.1.9 (pro) and 2.0.6 (free). The plugin adds a registrat… |
| CVE-2023-4643 | HIGH | 8.8 | 2023-10-16 | The Enable Media Replace WordPress plugin before 4.1.3 unserializes user input via the Remove Background feature, which could allow Author+ users to perform PHP Object Injection w… |
| CVE-2024-5326 | HIGH | 8.8 | 2024-05-30 | The Post Grid Gutenberg Blocks and WordPress Blog Plugin – PostX plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the '… |
| CVE-2024-6316 | HIGH | 8.8 | 2024-07-09 | The Generate PDF using Contact Form 7 plugin for WordPress is vulnerable to Cross-Site Request Forgery to Arbitrary File Upload in versions up to, and including, 4.1.2. This is du… |
| CVE-2024-6317 | HIGH | 8.8 | 2024-07-09 | The Generate PDF using Contact Form 7 plugin for WordPress is vulnerable to Cross-Site Request Forgery to Arbitrary File Upload in versions up to, and including, 4.1.2. This is du… |
| CVE-2024-10728 | HIGH | 8.8 | 2024-11-16 | The Post Grid Gutenberg Blocks and WordPress Blog Plugin – PostX plugin for WordPress is vulnerable to unauthorized plugin installation/activation due to a missing capability chec… |
| CVE-2024-13232 | HIGH | 8.8 | 2025-03-05 | The WordPress Awesome Import & Export Plugin - Import & Export WordPress Data plugin for WordPress is vulnerable arbitrary SQL Execution and privilege escalation due to a missing … |
| CVE-2025-2319 | HIGH | 8.8 | 2025-03-25 | The EZ SQL Reports Shortcode Widget and DB Backup plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions 4.11.13 to 5.25.08. This is due to missing or incorr… |
| CVE-2024-13146 | HIGH | 8.8 | 2025-03-26 | The Booknetic WordPress plugin before 4.1.5 does not have CSRF check when creating Staff accounts, which could allow attackers to make logged in admin add arbitrary Staff members … |
| CVE-2025-3054 | HIGH | 8.8 | 2025-06-05 | The WP User Frontend Pro plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the upload_files() function in all versions up to, and… |
| CVE-2025-48101 | HIGH | 8.8 | 2025-09-09 | Deserialization of Untrusted Data vulnerability in webdevstudios Constant Contact for WordPress allows Object Injection. This issue affects Constant Contact for WordPress: from n/… |
| CVE-2026-3533 | HIGH | 8.8 | 2026-03-24 | The Jupiter X Core plugin for WordPress is vulnerable to limited file uploads due to missing authorization on import_popup_templates() function as well as insufficient file type v… |
| CVE-2026-6518 | HIGH | 8.8 | 2026-04-18 | The CMP – Coming Soon & Maintenance Plugin by NiteoThemes plugin for WordPress is vulnerable to arbitrary file upload and remote code execution in all versions up to, and includin… |
| CVE-2026-7522 | HIGH | 8.8 | 2026-05-20 | The Advanced Database Cleaner – Premium plugin for WordPress is vulnerable to Local File Inclusion in versions up to, and including, 4.1.0 via the 'template' parameter. This makes… |
| CVE-2020-11026 | HIGH | 8.7 | 2020-04-30 | In affected versions of WordPress, files with a specially crafted name when uploaded to the Media section can lead to script execution upon accessing the file. This requires an au… |
| CVE-2022-25602 | HIGH | 8.3 | 2022-03-18 | Nonce token leak vulnerability leading to arbitrary file upload, theme deletion, plugin settings change discovered in Responsive Menu WordPress plugin (versions <= 4.1.7). |
| CVE-2024-24796 | HIGH | 8.2 | 2024-02-12 | Deserialization of Untrusted Data vulnerability in MagePeople Team Event Manager and Tickets Selling Plugin for WooCommerce – WpEvently – WordPress Plugin.This issue affects Event… |
| CVE-2026-2992 | HIGH | 8.2 | 2026-03-18 | The KiviCare – Clinic & Patient Management System (EHR) plugin for WordPress is vulnerable to Privilege Escalation due to missing authorization on the `/wp-json/kivicare/v1/setup-… |
| CVE-2021-24465 | HIGH | 8.1 | 2021-10-04 | The Meow Gallery WordPress plugin before 4.1.9 does not sanitise, validate or escape the ids attribute of its gallery shortcode (available for users as low as Contributor) before … |
| CVE-2022-3360 | HIGH | 8.1 | 2022-10-31 | The LearnPress WordPress plugin before 4.1.7.2 unserialises user input in a REST API endpoint available to unauthenticated users, which could lead to PHP Object Injection when a s… |
| CVE-2024-7628 | HIGH | 8.1 | 2024-08-15 | The MStore API – Create Native Android & iOS Apps On The Cloud plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 4.15.2. This is due to… |
| CVE-2024-9947 | HIGH | 8.1 | 2024-10-23 | The ProfilePress Pro plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 4.11.1. This is due to insufficient verification on the user… |
| CVE-2025-2563 | HIGH | 8.1 | 2025-04-14 | The User Registration & Membership WordPress plugin before 4.1.2 does not prevent users to set their account role when the Membership Addon is enabled, leading to a privilege esc… |
| CVE-2025-2594 | HIGH | 8.1 | 2025-04-22 | The User Registration & Membership WordPress plugin before 4.1.3 does not properly validate data in an AJAX action when the Membership Addon is enabled, allowing attackers to auth… |
| CVE-2025-3055 | HIGH | 8.1 | 2025-06-05 | The WP User Frontend Pro plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the delete_avatar_ajax() function in all version… |
| CVE-2026-3453 | HIGH | 8.1 | 2026-03-11 | The ProfilePress plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 4.16.11. This is due to missing ownership validation … |
| CVE-2023-3447 | HIGH | 7.6 | 2023-06-29 | The Active Directory Integration / LDAP Integration plugin for WordPress is vulnerable to LDAP Injection in versions up to, and including, 4.1.5. This is due to insufficient escap… |
| CVE-2024-31210 | HIGH | 7.6 | 2024-04-04 | WordPress is an open publishing platform for the Web. It's possible for a file of a type other than a zip file to be submitted as a new plugin by an administrative user on the Plu… |
| CVE-2024-5429 | HIGH | 7.6 | 2024-10-17 | The Logo Slider WordPress plugin before 4.1.0 does not validate and escape some of its Slider Settings before outputting them back in attributes, which could allow users with the… |
| CVE-2018-9118 | HIGH | 7.5 | 2018-04-12 | exports/download.php in the 99 Robots WP Background Takeover Advertisements plugin before 4.1.5 for WordPress has Directory Traversal via a .. in the filename parameter. |
| CVE-2019-14794 | HIGH | 7.5 | 2019-08-09 | The Meta Box plugin before 4.16.2 for WordPress mishandles the uploading of files to custom folders. |
| CVE-2022-2083 | HIGH | 7.5 | 2022-09-05 | The Simple Single Sign On WordPress plugin through 4.1.0 leaks its OAuth client_secret, which could be used by attackers to gain unauthorized access to the site. |
| CVE-2023-0812 | HIGH | 7.5 | 2023-05-15 | The Active Directory Integration / LDAP Integration WordPress plugin before 4.1.1 does not have proper authorization or nonce values for some POST requests, leading to unauthentic… |
| CVE-2023-5003 | HIGH | 7.5 | 2023-10-16 | The Active Directory Integration / LDAP Integration WordPress plugin before 4.1.10 stores sensitive LDAP logs in a buffer file when an administrator wants to export said logs. Unf… |
| CVE-2024-8352 | HIGH | 7.5 | 2024-10-03 | The Social Web Suite – Social Media Auto Post, Social Media Auto Publish plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 4.1.11 via… |
| CVE-2024-13671 | HIGH | 7.5 | 2025-01-30 | The Music Sheet Viewer plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 4.1 via the read_score_file() function. This makes it possib… |
| CVE-2025-11754 | HIGH | 7.5 | 2026-02-19 | The GDPR Cookie Consent plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'gdpr/v1/settings' REST API endpoint in all vers… |
| CVE-2022-21664 | HIGH | 7.4 | 2022-01-06 | WordPress is a free and open-source content management system written in PHP and paired with a MariaDB database. Due to lack of proper sanitization in one of the classes, there's … |
| CVE-2024-8269 | HIGH | 7.3 | 2024-09-13 | The MStore API – Create Native Android & iOS Apps On The Cloud plugin for WordPress is vulnerable to unauthorized user registration in all versions up to, and including, 4.15.3. T… |
| CVE-2026-2991 | HIGH | 7.3 | 2026-03-18 | The KiviCare – Clinic & Patient Management System (EHR) plugin for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 4.1.2. This is due to the… |
| CVE-2021-24130 | HIGH | 7.2 | 2021-03-18 | Unvalidated input in the WP Google Map Plugin WordPress plugin, versions before 4.1.5, in the Manage Locations page within the plugin settings was vulnerable to SQL Injection thro… |
| CVE-2021-24877 | HIGH | 7.2 | 2021-11-23 | The MainWP Child WordPress plugin before 4.1.8 does not validate the orderby and order parameter before using them in a SQL statement, leading to an SQL injection exploitable by h… |
| CVE-2023-0277 | HIGH | 7.2 | 2023-04-17 | The WC Fields Factory WordPress plugin through 4.1.5 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable b… |
| CVE-2023-2484 | HIGH | 7.2 | 2023-06-09 | The Active Directory Integration plugin for WordPress is vulnerable to time-based SQL Injection via the orderby and order parameters in versions up to, and including, 4.1.4 due to… |
| CVE-2025-1294 | HIGH | 7.2 | 2025-04-24 | The eForm - WordPress Form Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 4.18.0 due to insufficient input sanitiz… |
| CVE-2025-4206 | HIGH | 7.2 | 2025-05-09 | The WordPress CRM, Email & Marketing Automation for WordPress | Award Winner — Groundhogg plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file pa… |
| CVE-2025-13206 | HIGH | 7.2 | 2025-11-19 | The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘name’ parameter in all versions up to, and includi… |
| CVE-2025-13068 | HIGH | 7.2 | 2025-11-25 | The Telegram Bot & Channel plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Telegram username in all versions up to, and including, 4.1 due to insufficien… |
| CVE-2024-13863 | HIGH | 7.1 | 2025-03-25 | The Stylish Google Sheet Reader 4.0 WordPress plugin before 4.1 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site … |
| CVE-2025-32520 | HIGH | 7.1 | 2025-04-17 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in M. Ali Saleem WordPress Health and Server Condition – Integrated with Google … |
| CVE-2025-48333 | HIGH | 7.1 | 2025-06-17 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPQuark eForm - WordPress Form Builder wp-fsqm-pro allows Reflected XSS.This … |
| CVE-2026-3445 | HIGH | 7.1 | 2026-04-04 | The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress plugin for WordPress is vulnerable to unauthorized member… |
| CVE-2020-4047 | MEDIUM | 6.8 | 2020-06-12 | In affected versions of WordPress, authenticated users with upload permissions (like authors) are able to inject JavaScript into some media file attachment pages in a certain way.… |
| CVE-2021-24490 | MEDIUM | 6.8 | 2021-09-13 | The Email Artillery (MASS EMAIL) WordPress plugin through 4.1 does not properly check the uploaded files from the Import Emails feature, allowing arbitrary files to be uploaded. F… |
| CVE-2024-4305 | MEDIUM | 6.8 | 2024-06-17 | The Post Grid Gutenberg Blocks and WordPress Blog Plugin WordPress plugin before 4.1.0 does not validate and escape some of its block options before outputting them back in a pag… |
| CVE-2026-7566 | MEDIUM | 6.6 | 2026-06-06 | The LearnPress – Backup & Migration Tool plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 4.1.4 via deserialization of untrusted in… |
| CVE-2014-5183 | MEDIUM | 6.5 | 2014-08-06 | SQL injection vulnerability in includes/mode-edit.php in the Simple Retail Menus (simple-retail-menus) plugin before 4.1 for WordPress allows remote authenticated editors to execu… |
| CVE-2019-14793 | MEDIUM | 6.5 | 2019-08-09 | The Meta Box plugin before 4.16.3 for WordPress allows file deletion via ajax, with the wp-admin/admin-ajax.php?action=rwmb_delete_file attachment_id parameter. |
| CVE-2016-11011 | MEDIUM | 6.5 | 2019-09-20 | The wp-invoice plugin before 4.1.1 for WordPress has wpi_update_user_option privilege escalation. |
| CVE-2021-25037 | MEDIUM | 6.5 | 2022-01-17 | The All in One SEO WordPress plugin before 4.1.5.3 is affected by an authenticated SQL injection issue, which was discovered during an internal audit by the Jetpack Scan team, and… |
| CVE-2022-0681 | MEDIUM | 6.5 | 2022-03-21 | The Simple Membership WordPress plugin before 4.1.0 does not have CSRF check in place when deleting Transactions, which could allow attackers to make a logged in admin delete arbi… |
| CVE-2022-4555 | MEDIUM | 6.5 | 2022-12-16 | The WP Shamsi plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on the deactivate() function hooked via init() in versions up to, and in… |
| CVE-2021-4332 | MEDIUM | 6.5 | 2023-03-07 | The Plus Addons for Elementor plugin for WordPress is vulnerable to arbitrary file reads in versions up to, and including 4.1.9 (pro) and 2.0.6 (free). The plugin has a feature to… |
| CVE-2023-4013 | MEDIUM | 6.5 | 2023-08-30 | The GDPR Cookie Compliance (CCPA, DSGVO, Cookie Consent) WordPress plugin before 4.12.5 does not have proper CSRF checks when managing its license, which could allow attackers to … |
| CVE-2023-6048 | MEDIUM | 6.5 | 2024-01-15 | The Estatik Real Estate Plugin WordPress plugin before 4.1.1 does not prevent user with low privileges on the site, like subscribers, from setting any of the site's options to 1, … |
| CVE-2024-1519 | MEDIUM | 6.5 | 2024-02-29 | The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress plugin for WordPress is vulnerable to Stored Cross-Site S… |
| CVE-2024-11179 | MEDIUM | 6.5 | 2024-11-20 | The MStore API – Create Native Android & iOS Apps On The Cloud plugin for WordPress is vulnerable to SQL Injection via the 'status_type' parameter in all versions up to, and inclu… |
| CVE-2024-13341 | MEDIUM | 6.5 | 2025-02-01 | The MultiLoca - WooCommerce Multi Locations Inventory Management plugin for WordPress is vulnerable to SQL Injection via the 'data-id' parameter in all versions up to, and includi… |
| CVE-2025-3438 | MEDIUM | 6.5 | 2025-05-02 | The MStore API – Create Native Android & iOS Apps On The Cloud plugin for WordPress is vulnerable to limited privilege escalation in all versions up to, and including, 4.17.4. Thi… |
| CVE-2025-8878 | MEDIUM | 6.5 | 2025-08-16 | The The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress plugin for WordPress is vulnerable to arbitrary short… |
| CVE-2025-11227 | MEDIUM | 6.5 | 2025-10-04 | The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 4.10.0 via the 'registerGetF… |
| CVE-2026-1781 | MEDIUM | 6.5 | 2026-03-11 | The MC4WP: Mailchimp for WordPress plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 4.11.1. This is due to the plugin trusting the… |
| CVE-2026-3309 | MEDIUM | 6.5 | 2026-04-04 | The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress plugin for WordPress is vulnerable to arbitrary shortcode… |
| CVE-2026-4432 | MEDIUM | 6.5 | 2026-04-10 | The YITH WooCommerce Wishlist WordPress plugin before 4.13.0 does not properly validate wishlist ownership in the save_title() AJAX handler before allowing wishlist renaming opera… |
| CVE-2020-11030 | MEDIUM | 6.4 | 2020-04-30 | In affected versions of WordPress, a special payload can be crafted that can lead to scripts getting executed within the search block of the block editor. This requires an authent… |
| CVE-2021-34668 | MEDIUM | 6.4 | 2021-08-30 | The WordPress Real Media Library WordPress plugin is vulnerable to Stored Cross-Site Scripting via the name parameter in the ~/inc/overrides/lite/rest/Folder.php file which allows… |
| CVE-2024-1046 | MEDIUM | 6.4 | 2024-02-05 | The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress plugin for WordPress is vulnerable to Stored Cross-Site S… |
| CVE-2024-1242 | MEDIUM | 6.4 | 2024-02-29 | The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the button onclick attribute in all versions up to, and including, 4.10.18 d… |
| CVE-2024-1408 | MEDIUM | 6.4 | 2024-02-29 | The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress plugin for WordPress is vulnerable to Stored Cross-Site S… |
| CVE-2024-1570 | MEDIUM | 6.4 | 2024-02-29 | The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress plugin for WordPress is vulnerable to Stored Cross-Site S… |
| CVE-2024-0326 | MEDIUM | 6.4 | 2024-03-13 | The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Link Wrapper functionality in all versions up to, and including… |
| CVE-2024-1409 | MEDIUM | 6.4 | 2024-03-13 | The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress plugin for WordPress is vulnerable to Stored Cross-Site S… |
| CVE-2024-1535 | MEDIUM | 6.4 | 2024-03-13 | The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress plugin for WordPress is vulnerable to Stored Cross-Site S… |
| CVE-2024-1680 | MEDIUM | 6.4 | 2024-03-13 | The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Image Settings URL of the Banner, Team Members, and Image Scroll widgets… |
| CVE-2024-1806 | MEDIUM | 6.4 | 2024-03-13 | The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress plugin for WordPress is vulnerable to Stored Cross-Site S… |
| CVE-2024-2256 | MEDIUM | 6.4 | 2024-03-14 | The oik plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcodes such as bw_contact_button and bw_button shortcodes in all versions up to, and… |
| CVE-2024-2399 | MEDIUM | 6.4 | 2024-03-15 | The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's widgets in all versions up to, and including, 4.10.23 due to in… |
| CVE-2024-0376 | MEDIUM | 6.4 | 2024-04-09 | The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Wrapper Link Widget in all versions up to, and including, 4.10.… |
| CVE-2024-2664 | MEDIUM | 6.4 | 2024-04-10 | The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Countdown Widget in all versions up to, and including, 4.10.24 … |
| CVE-2024-2665 | MEDIUM | 6.4 | 2024-04-10 | The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's button in all versions up to, and including, 4.10.27 due to ins… |
| CVE-2024-3210 | MEDIUM | 6.4 | 2024-04-10 | The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress plugin for WordPress is vulnerable to Stored Cross-Site S… |
| CVE-2024-2867 | MEDIUM | 6.4 | 2024-05-02 | The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress plugin for WordPress is vulnerable to Stored Cross-Site S… |
| CVE-2024-3647 | MEDIUM | 6.4 | 2024-05-02 | The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's post ticker widget in all versions up to, and including, 4.10.2… |
| CVE-2024-3885 | MEDIUM | 6.4 | 2024-05-02 | The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the subcontainer value parameter in all versions up to, and including, 4.10.… |
| CVE-2024-2861 | MEDIUM | 6.4 | 2024-05-23 | The ProfilePress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ProfilePress User Panel widget in all versions up to, and including, 4.15.8 due to insuf… |
| CVE-2024-4378 | MEDIUM | 6.4 | 2024-05-23 | The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's menu and shape widgets in all versions up to, and including, 4.… |
| CVE-2024-5223 | MEDIUM | 6.4 | 2024-05-30 | The Post Grid Gutenberg Blocks and WordPress Blog Plugin – PostX plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's file uploading feature in all v… |
| CVE-2024-4376 | MEDIUM | 6.4 | 2024-05-31 | The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Fancy Text widget in all versions up to, and including, 4.10.31… |
| CVE-2023-7073 | MEDIUM | 6.4 | 2024-05-31 | The Auto Featured Image (Auto Post Thumbnail) plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 4.1.7 via the upload_to_libra… |
| CVE-2024-5259 | MEDIUM | 6.4 | 2024-06-06 | The MultiVendorX Marketplace – WooCommerce MultiVendor Marketplace Solution plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘hover_animation’ parameter i… |
| CVE-2024-6340 | MEDIUM | 6.4 | 2024-07-03 | The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Countdown widget in all versions up to, and including, 4.10.36 … |
| CVE-2024-6391 | MEDIUM | 6.4 | 2024-07-09 | The oik plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's bw_button shortcode in all versions up to, and including, 4.10.3 due to insufficient inp… |
| CVE-2024-6495 | MEDIUM | 6.4 | 2024-07-12 | The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Animated Text widget in all versions up to, and including, 4.10… |
| CVE-2024-8681 | MEDIUM | 6.4 | 2024-09-27 | The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Media Grid widget in all versions up to, and including, 4.10.52… |
| CVE-2024-10266 | MEDIUM | 6.4 | 2024-10-29 | The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Video Box widget in all versions up to, and including, 4.10.60 … |
| CVE-2024-11203 | MEDIUM | 6.4 | 2024-11-28 | The EmbedPress – Embed PDF, 3D Flipbook, Social Feeds, Google Docs, Vimeo, Wistia, YouTube Videos, Audios, Google Maps in Gutenberg Block & Elementor plugin for WordPress is vulne… |
| CVE-2024-10056 | MEDIUM | 6.4 | 2024-12-05 | The Contact Form Builder by vcita plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's livesite-pay shortcode in all versions up to, and including, 4… |
| CVE-2024-12506 | MEDIUM | 6.4 | 2024-12-20 | The NACC WordPress Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'nacc' shortcode in all versions up to, and including, 4.1.0 due to in… |
| CVE-2025-0353 | MEDIUM | 6.4 | 2025-01-29 | The Divi Torque Lite – Best Divi Addon, Extensions, Modules & Social Modules plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several widgets in all versions … |
| CVE-2024-13670 | MEDIUM | 6.4 | 2025-01-30 | The Music Sheet Viewer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'pn_msv' shortcode in all versions up to, and including, 4.1 due to insuf… |
| CVE-2025-4774 | MEDIUM | 6.4 | 2025-06-10 | The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the data-countdown attribute of Countdown widget in all versions up to, and … |
| CVE-2025-5540 | MEDIUM | 6.4 | 2025-06-26 | The Event RSVP and Simple Event Management Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'emd_mb_meta' shortcode in all versions up to,… |
| CVE-2024-11937 | MEDIUM | 6.4 | 2025-07-04 | The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's linkURL in the Mobile Menu element in all versions up to, and i… |
| CVE-2025-8722 | MEDIUM | 6.4 | 2025-09-06 | The Content Views plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Grid and List widgets in all versions up to, and including, 4.1 due to insuffi… |
| CVE-2025-9851 | MEDIUM | 6.4 | 2025-09-17 | The Appointmind plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'appointmind_calendar' shortcode in all versions up to, and including, 4.1.0 due… |
| CVE-2025-9496 | MEDIUM | 6.4 | 2025-10-11 | The Enable Media Replace plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's file_modified shortcode in all versions up to, and including, 4.1.6 due… |
| CVE-2025-10580 | MEDIUM | 6.4 | 2025-10-25 | The Widget Options – The #1 WordPress Widget & Block Control Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple functions in all versions up to,… |
| CVE-2025-13852 | MEDIUM | 6.4 | 2026-01-09 | The Debt.com Business in a Box plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'configuration' parameter of the lead_form shortcode in all versions up to… |
| CVE-2026-3534 | MEDIUM | 6.4 | 2026-03-11 | The Astra theme for WordPress is vulnerable to Stored Cross-Site Scripting via the `ast-page-background-meta` and `ast-content-background-meta` post meta fields in all versions up… |
| CVE-2026-4341 | MEDIUM | 6.4 | 2026-04-08 | The Prime Slider – Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'follow_us_text' setting of the Mount widget in all versions up t… |
| CVE-2026-5451 | MEDIUM | 6.4 | 2026-04-08 | The Extensions for Leaflet Map plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'elevation-track' shortcode in all versions up to, and including, 4.14. Th… |
| CVE-2026-6962 | MEDIUM | 6.4 | 2026-05-13 | The Cost of Goods: Product Cost & Profit Calculator for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'alg_wc_cog_product_cost' an… |
| CVE-2019-25742 | MEDIUM | 6.4 | 2026-06-04 | WordPress Theme Zoner Real Estate 4.1.1 contains a persistent cross-site scripting vulnerability that allows authenticated agents to inject malicious scripts through the Address i… |
| CVE-2025-9191 | MEDIUM | 6.3 | 2025-11-26 | The Houzez theme for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 4.1.6 via deserialization of untrusted input in saved-search-item.php. T… |
| CVE-2014-9310 | MEDIUM | 6.1 | 2017-06-07 | Cross-site scripting (XSS) vulnerability in the WordPress Backup to Dropbox plugin before 4.1 for WordPress. |
| CVE-2015-9273 | MEDIUM | 6.1 | 2018-10-07 | The wp-slimstat (aka Slimstat Analytics) plugin before 4.1.6.1 for WordPress has XSS via an HTTP Referer header, or via a field associated with JavaScript-based Referer tracking. |
| CVE-2019-14364 | MEDIUM | 6.1 | 2019-07-28 | An XSS vulnerability in the "Email Subscribers & Newsletters" plugin 4.1.6 for WordPress allows an attacker to inject malicious JavaScript code through a publicly available subscr… |
| CVE-2017-18577 | MEDIUM | 6.1 | 2019-08-22 | The mailchimp-for-wp plugin before 4.1.8 for WordPress has XSS via the return value of add_query_arg. |
| CVE-2014-10391 | MEDIUM | 6.1 | 2019-08-22 | The wp-support-plus-responsive-ticket-system plugin before 4.1 for WordPress has JavaScript injection. |
| CVE-2014-10386 | MEDIUM | 6.1 | 2019-08-22 | The wp-live-chat-support plugin before 4.1.0 for WordPress has JavaScript injections. |
| CVE-2020-11027 | MEDIUM | 6.1 | 2020-04-30 | In affected versions of WordPress, a password reset link emailed to a user does not expire upon changing the user password. Access would be needed to the email account of the user… |
| CVE-2021-24351 | MEDIUM | 6.1 | 2021-06-14 | The theplus_more_post AJAX action of The Plus Addons for Elementor Page Builder WordPress plugin before 4.1.12 did not properly sanitise some of its fields, leading to a reflected… |
| CVE-2021-24358 | MEDIUM | 6.1 | 2021-06-14 | The Plus Addons for Elementor Page Builder WordPress plugin before 4.1.10 did not validate a redirect parameter on a specifically crafted URL before redirecting the user to it, le… |
| CVE-2020-26153 | MEDIUM | 6.1 | 2021-07-13 | A cross-site scripting (XSS) vulnerability in wp-content/plugins/event-espresso-core-reg/admin_pages/messages/templates/ee_msg_admin_overview.template.php in the Event Espresso Co… |
| CVE-2021-24466 | MEDIUM | 6.1 | 2021-08-16 | The Verse-O-Matic WordPress plugin through 4.1.1 does not have any CSRF checks in place, allowing attackers to make logged in administrators do unwanted actions, such as add/edit/… |
| CVE-2022-0818 | MEDIUM | 6.1 | 2022-03-28 | The WooCommerce Affiliate Plugin WordPress plugin before 4.16.4.5 does not have authorization and CSRF checks on a specific action handler, as well as does not sanitize its settin… |
| CVE-2022-0271 | MEDIUM | 6.1 | 2022-04-11 | The LearnPress WordPress plugin before 4.1.6 does not sanitise and escape the lp-dismiss-notice before outputting it back via the lp_background_single_email AJAX action, leading t… |
| CVE-2022-1724 | MEDIUM | 6.1 | 2022-06-13 | The Simple Membership WordPress plugin before 4.1.1 does not properly sanitise and escape parameters before outputting them back in AJAX actions, leading to Reflected Cross-Site S… |
| CVE-2022-1906 | MEDIUM | 6.1 | 2022-08-01 | The Copyright Proof WordPress plugin through 4.16 does not sanitise and escape a parameter before outputting it back via an AJAX action available to both unauthenticated and authe… |
| CVE-2022-1932 | MEDIUM | 6.1 | 2022-08-22 | The Rezgo Online Booking WordPress plugin before 4.1.8 does not sanitise and escape some parameters before outputting them back in a page, leading to a Reflected Cross-Site Script… |
| CVE-2023-1420 | MEDIUM | 6.1 | 2023-04-24 | The Ajax Search Lite WordPress plugin before 4.11.1, Ajax Search Pro WordPress plugin before 4.26.2 does not sanitise and escape a parameter before outputting it back in a respons… |
| CVE-2023-2301 | MEDIUM | 6.1 | 2023-06-03 | The Contact Form Builder by vcita plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 4.10.3. This is due to missing nonce validatio… |
| CVE-2023-2303 | MEDIUM | 6.1 | 2023-06-03 | The Contact Form and Calls To Action by vcita plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 4.10.5. This is due to missing non… |
| CVE-2023-1465 | MEDIUM | 6.1 | 2023-08-16 | The WP EasyPay WordPress plugin before 4.1 does not escape some generated URLs before outputting them back in pages, leading to Reflected Cross-Site Scripting issues which could b… |
| CVE-2023-6050 | MEDIUM | 6.1 | 2024-01-15 | The Estatik Real Estate Plugin WordPress plugin before 4.1.1 does not sanitise and escape various parameters and generated URLs before outputting them back in attributes, leading … |
| CVE-2023-6923 | MEDIUM | 6.1 | 2024-02-29 | The Matomo Analytics – Ethical Stats. Powerful Insights. plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the idsite parameter in all versions up to, and i… |
| CVE-2024-9382 | MEDIUM | 6.1 | 2024-10-18 | The Gantry 4 Framework plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'override_id' parameter in all versions up to, and including, 4.1.21 due to ins… |
| CVE-2024-11329 | MEDIUM | 6.1 | 2024-12-07 | The Comfino Payment Gateway plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg & remove_query_arg without appropriate escaping on… |
| CVE-2024-11367 | MEDIUM | 6.1 | 2024-12-07 | The Smoove connector for Elementor forms plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the U… |
| CVE-2024-13112 | MEDIUM | 6.1 | 2025-01-31 | The WP MediaTagger WordPress plugin through 4.1.1 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which… |
| CVE-2024-13221 | MEDIUM | 6.1 | 2025-01-31 | The Fantastic ElasticSearch WordPress plugin through 4.1.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Script… |
| CVE-2024-6667 | MEDIUM | 6.1 | 2025-05-15 | The KBucket: Your Curated Content in WordPress plugin before 4.1.5 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Sit… |
| CVE-2025-9163 | MEDIUM | 6.1 | 2025-11-26 | The Houzez theme for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 4.1.6 due to insufficient input sanitization… |
| CVE-2020-11025 | MEDIUM | 5.8 | 2020-04-30 | In affected versions of WordPress, a cross-site scripting (XSS) vulnerability in the navigation section of Customizer allows JavaScript code to be executed. Exploitation requires … |
| CVE-2020-11028 | MEDIUM | 5.8 | 2020-04-30 | In affected versions of WordPress, some private posts, which were previously public, can result in unauthenticated disclosure under a specific set of conditions. This has been pat… |
| CVE-2020-11029 | MEDIUM | 5.8 | 2020-04-30 | In affected versions of WordPress, a vulnerability in the stats() method of class-wp-object-cache.php can be exploited to execute cross-site scripting (XSS) attacks. This has been… |
| CVE-2020-4048 | MEDIUM | 5.7 | 2020-06-12 | In affected versions of WordPress, due to an issue in wp_validate_redirect() and URL sanitization, an arbitrary external link can be crafted leading to unintended/open redirect wh… |
| CVE-2021-39348 | MEDIUM | 5.5 | 2021-10-21 | The LearnPress WordPress plugin is vulnerable to Stored Cross-Site Scripting due to insufficient escaping on the $custom_profile parameter found in the ~/inc/admin/views/backend-u… |
| CVE-2021-39357 | MEDIUM | 5.5 | 2021-10-21 | The Leaky Paywall WordPress plugin is vulnerable to Stored Cross-Site Scripting due to insufficient input validation and sanitization via the ~/class.php file which allowed attack… |
| CVE-2026-5247 | MEDIUM | 5.5 | 2026-05-05 | The Schedule Post Changes With PublishPress Future plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'wrapper' attribute of the [futureaction] shortcode in… |
| CVE-2020-4046 | MEDIUM | 5.4 | 2020-06-12 | In affected versions of WordPress, users with low privileges (like contributors and authors) can use the embed block in a certain way to inject unfiltered HTML in the block editor… |
| CVE-2021-24988 | MEDIUM | 5.4 | 2021-12-27 | The WP RSS Aggregator WordPress plugin before 4.19.3 does not sanitise and escape data before outputting it in the System Info admin dashboard, which could lead to a Stored XSS is… |
| CVE-2021-25065 | MEDIUM | 5.4 | 2022-01-17 | The Smash Balloon Social Post Feed WordPress plugin before 4.1.1 was affected by a reflected XSS in custom-facebook-feed in cff-top admin page. |
| CVE-2021-24960 | MEDIUM | 5.4 | 2022-03-07 | The WordPress File Upload WordPress plugin before 4.16.3, wordpress-file-upload-pro WordPress plugin before 4.16.3 allows users with a role as low as Contributor to configure the … |
| CVE-2021-24961 | MEDIUM | 5.4 | 2022-03-07 | The WordPress File Upload WordPress plugin before 4.16.3, wordpress-file-upload-pro WordPress plugin before 4.16.3 does not escape some of its shortcode argument, which could allo… |
| CVE-2022-32289 | MEDIUM | 5.4 | 2022-07-21 | Cross-Site Request Forgery (CSRF) vulnerability in Sygnoos Popup Builder plugin <= 4.1.0 at WordPress leading to popup status change. |
| CVE-2022-29495 | MEDIUM | 5.4 | 2022-07-22 | Cross-Site Request Forgery (CSRF) vulnerability in Sygnoos Popup Builder plugin <= 4.1.11 at WordPress allows an attacker to update plugin settings. |
| CVE-2022-38095 | MEDIUM | 5.4 | 2022-09-23 | Cross-Site Request Forgery (CSRF) vulnerability in AlgolPlus Advanced Dynamic Pricing for WooCommerce plugin <= 4.1.3 at WordPress. |
| CVE-2022-43491 | MEDIUM | 5.4 | 2022-11-08 | Cross-Site Request Forgery (CSRF) vulnerability in Advanced Dynamic Pricing for WooCommerce plugin <= 4.1.5 on WordPress leading to plugin settings import. |
| CVE-2022-43488 | MEDIUM | 5.4 | 2022-11-09 | Cross-Site Request Forgery (CSRF) vulnerability in Advanced Dynamic Pricing for WooCommerce plugin <= 4.1.5 on WordPress leading to rule type migration. |
| CVE-2022-4477 | MEDIUM | 5.4 | 2023-01-16 | The Smash Balloon Social Post Feed WordPress plugin before 4.1.6 does not validate and escapes some of its shortcode attributes before outputting them back in the page, which coul… |
| CVE-2022-4751 | MEDIUM | 5.4 | 2023-01-23 | The Word Balloon WordPress plugin before 4.19.3 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with… |
| CVE-2022-4667 | MEDIUM | 5.4 | 2023-01-30 | The RSS Aggregator by Feedzy WordPress plugin before 4.1.1 does not validate and escape some of its block options before outputting them back in the page, which could allow users … |
| CVE-2023-0147 | MEDIUM | 5.4 | 2023-02-06 | The Flexible Captcha WordPress plugin through 4.1 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is e… |
| CVE-2022-4754 | MEDIUM | 5.4 | 2023-02-21 | The Easy Social Box / Page Plugin WordPress plugin through 4.1.2 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the… |
| CVE-2023-0285 | MEDIUM | 5.4 | 2023-02-21 | The Real Media Library WordPress plugin before 4.18.29 does not sanitise and escape the created folder names, which could allow users with the role of author and above to perform … |
| CVE-2024-2666 | MEDIUM | 5.4 | 2024-04-10 | The Premium Addons for Elementor plugin for WordPress is vulnerable to DOM-Based Stored Cross-Site Scripting via the plugin's Bullet List Widget in all versions up to, and includi… |
| CVE-2024-32097 | MEDIUM | 5.4 | 2024-04-15 | Cross-Site Request Forgery (CSRF) vulnerability in Eyal Fitoussi GEO my WordPress.This issue affects GEO my WordPress: from n/a through 4.1. |
| CVE-2024-4203 | MEDIUM | 5.4 | 2024-05-02 | The Premium Addons Pro for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the maps widget in all versions up to, and including, 4.10.30 due to ins… |
| CVE-2024-4379 | MEDIUM | 5.4 | 2024-05-31 | The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Global Tooltip widget in all versions up to, and including, 4.1… |
| CVE-2024-12042 | MEDIUM | 5.4 | 2024-12-13 | The MStore API – Create Native Android & iOS Apps On The Cloud plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the profile picture upload functionality in al… |
| CVE-2024-13101 | MEDIUM | 5.4 | 2025-01-31 | The WP MediaTagger WordPress plugin through 4.1.1 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is e… |
| CVE-2025-13642 | MEDIUM | 5.4 | 2025-12-09 | The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress plugin for WordPress is vulnerable to arbitrary shortcode… |
| CVE-2026-2732 | MEDIUM | 5.4 | 2026-03-04 | The Enable Media Replace plugin for WordPress is vulnerable to unauthorized modification of data due to an improper capability check on the 'RemoveBackGroundViewController::load' … |
| CVE-2026-4790 | MEDIUM | 5.4 | 2026-05-02 | The Premium Addons for Elementor – Powerful Elementor Templates & Widgets plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'custom_svg' parameter in versi… |
| CVE-2016-11006 | MEDIUM | 5.3 | 2019-09-20 | The wp-invoice plugin before 4.1.1 for WordPress has incorrect access control for admin_init settings changes. |
| CVE-2016-11007 | MEDIUM | 5.3 | 2019-09-20 | The wp-invoice plugin before 4.1.1 for WordPress has incorrect access control over wpi_user_id for invoice retrieval. |
| CVE-2016-11008 | MEDIUM | 5.3 | 2019-09-20 | The wp-invoice plugin before 4.1.1 for WordPress has incorrect access control over wpi_paypal payer metadata updates. |
| CVE-2016-11009 | MEDIUM | 5.3 | 2019-09-20 | The wp-invoice plugin before 4.1.1 for WordPress has incorrect access control over wpi_interkassa payer metadata updates. |
| CVE-2016-11010 | MEDIUM | 5.3 | 2019-09-20 | The wp-invoice plugin before 4.1.1 for WordPress has incorrect access control over wpi_twocheckout payer metadata updates. |
| CVE-2021-24359 | MEDIUM | 5.3 | 2021-06-14 | The Plus Addons for Elementor Page Builder WordPress plugin before 4.1.11 did not properly check that a user requesting a password reset was the legitimate user, allowing an attac… |
| CVE-2022-33901 | MEDIUM | 5.3 | 2022-07-22 | Unauthenticated Arbitrary File Read vulnerability in MultiSafepay plugin for WooCommerce plugin <= 4.13.1 at WordPress. |
| CVE-2023-1263 | MEDIUM | 5.3 | 2023-03-07 | The CMP – Coming Soon & Maintenance plugin for WordPress is vulnerable to Information Exposure in versions up to, and including, 4.1.6 via the cmp_get_post_detail function. This … |
| CVE-2023-2159 | MEDIUM | 5.3 | 2023-06-09 | The CMP – Coming Soon & Maintenance plugin for WordPress is vulnerable to Maintenance Mode Bypass in versions up to, and including, 4.1.7. A correct cmp_bypass GET parameter in th… |
| CVE-2023-5089 | MEDIUM | 5.3 | 2023-10-16 | The Defender Security WordPress plugin before 4.1.0 does not prevent redirects to the login page via the auth_redirect WordPress function, allowing an unauthenticated visitor to a… |
| CVE-2024-0617 | MEDIUM | 5.3 | 2024-01-25 | The Category Discount Woocommerce plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the wpcd_save_discount() function in… |
| CVE-2024-1208 | MEDIUM | 5.3 | 2024-02-05 | The LearnDash LMS plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.10.2 via API. This makes it possible for unauthentic… |
| CVE-2024-1209 | MEDIUM | 5.3 | 2024-02-05 | The LearnDash LMS plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.10.1 via direct file access due to insufficient prot… |
| CVE-2024-1210 | MEDIUM | 5.3 | 2024-02-05 | The LearnDash LMS plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.10.1 via API. This makes it possible for unauthentic… |
| CVE-2024-0870 | MEDIUM | 5.3 | 2024-05-14 | The YITH WooCommerce Gift Cards plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'save_mail_status' and 'save_email… |
| CVE-2024-8678 | MEDIUM | 5.3 | 2024-09-25 | The Revolut Gateway for WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the /wc/v3/revolut REST API endpoi… |
| CVE-2024-8513 | MEDIUM | 5.3 | 2024-10-10 | The QA Analytics – Web Analytics Tool with Heatmaps & Session Replay Across All Pages plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capa… |
| CVE-2024-11083 | MEDIUM | 5.3 | 2024-11-27 | The ProfilePress plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.15.18 via the WordPress core search feature. This mak… |
| CVE-2025-3282 | MEDIUM | 5.3 | 2025-04-12 | The User Registration & Membership – Custom Registration Form, Login Form, and User Profile plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions … |
| CVE-2024-0970 | MEDIUM | 5.3 | 2025-05-15 | This User Activity Tracking and Log WordPress plugin before 4.1.4 retrieves client IP addresses from potentially untrusted headers, allowing an attacker to manipulate its value. |
| CVE-2025-7499 | MEDIUM | 5.3 | 2025-08-16 | The BetterDocs – Advanced AI-Driven Documentation, FAQ & Knowledge Base Tool for Elementor & Gutenberg with Encyclopedia, AI Support, Instant Answers plugin for WordPress is vulne… |
| CVE-2025-7956 | MEDIUM | 5.3 | 2025-08-28 | The Ajax Search Lite plugin for WordPress is vulnerable to Basic Information Exposure due to missing authorization in its AJAX search handler in all versions up to, and including,… |
| CVE-2025-11228 | MEDIUM | 5.3 | 2025-10-04 | The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the `registerAss… |
| CVE-2025-12427 | MEDIUM | 5.3 | 2025-11-19 | The YITH WooCommerce Wishlist plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 4.10.0 via the REST API endpoint and AJA… |
| CVE-2025-12777 | MEDIUM | 5.3 | 2025-11-19 | The YITH WooCommerce Wishlist plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 4.10.0. This is due to the plugin not properly verif… |
| CVE-2025-12809 | MEDIUM | 5.3 | 2025-12-16 | The Dokan Pro plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the `/dokan/v1/wholesale/register` REST API endpoint in all ve… |
| CVE-2025-14155 | MEDIUM | 5.3 | 2025-12-23 | The Premium Addons for Elementor – Powerful Elementor Templates & Widgets plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on th… |
| CVE-2025-14880 | MEDIUM | 5.3 | 2026-01-14 | The Netcash WooCommerce Payment Gateway plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the handle_return_url function… |
| CVE-2026-3567 | MEDIUM | 5.3 | 2026-03-21 | The RepairBuddy – Repair Shop CRM & Booking Plugin for WordPress is vulnerable to unauthorized access in all versions up to, and including, 4.1132. The plugin exposes two AJAX han… |
| CVE-2024-32111 | MEDIUM | 5.0 | 2024-06-25 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Automattic WordPress allows Relative Path Traversal.This issue affects WordPress: f… |
| CVE-2021-25020 | MEDIUM | 4.9 | 2022-01-03 | The CAOS | Host Google Analytics Locally WordPress plugin before 4.1.9 does not validate the cache directory setting, allowing high privilege users to use a path traversal vector … |
| CVE-2023-2688 | MEDIUM | 4.9 | 2023-06-09 | The WordPress File Upload and WordPress File Upload Pro plugins for WordPress are vulnerable to Path Traversal in versions up to, and including, 4.19.1 via the vulnerable paramete… |
| CVE-2026-7565 | MEDIUM | 4.9 | 2026-06-06 | The LearnPress – Backup & Migration Tool plugin for WordPress is vulnerable to Arbitrary File Read via Directory Traversal in all versions up to, and including, 4.1.4 via the 'imp… |
| CVE-2021-24702 | MEDIUM | 4.8 | 2021-10-18 | The LearnPress WordPress plugin before 4.1.3.1 does not properly sanitize or escape various inputs within course settings, which could allow high privilege users to perform Cross-… |
| CVE-2021-24768 | MEDIUM | 4.8 | 2021-11-29 | The WP RSS Aggregator WordPress plugin before 4.19.2 does not properly sanitise and escape the URL to Blacklist field, allowing malicious HTML to be inserted by high privilege use… |
| CVE-2022-0210 | MEDIUM | 4.8 | 2022-01-18 | The Random Banner WordPress plugin is vulnerable to Stored Cross-Site Scripting due to insufficient escaping via the category parameter found in the ~/include/models/model.php fil… |
| CVE-2021-24900 | MEDIUM | 4.8 | 2022-02-01 | The Ninja Tables WordPress plugin before 4.1.8 does not sanitise and escape some of its table fields, which could allow high privilege users to perform Cross-Site Scripting attack… |
| CVE-2021-25088 | MEDIUM | 4.8 | 2022-06-20 | The XML Sitemaps WordPress plugin before 4.1.3 does not sanitise and escape a settings before outputting it in the Debug page, which could allow high privilege users to perform Cr… |
| CVE-2022-1894 | MEDIUM | 4.8 | 2022-07-11 | The Popup Builder WordPress plugin before 4.1.11 does not escape and sanitize some settings, which could allow high privilege users to perform Stored Cross-Site Scripting attacks … |
| CVE-2022-2398 | MEDIUM | 4.8 | 2022-08-08 | The WordPress Comments Fields WordPress plugin before 4.1 does not escape Field Error Message, which could allow high-privileged users to perform Cross-Site Scripting attacks even… |
| CVE-2024-7084 | MEDIUM | 4.8 | 2024-08-06 | The Ajax Search Lite WordPress plugin before 4.12.1 does not sanitise and escape some parameters, which could allow users with a role as low as Admin+ to perform Cross-Site Script… |
| CVE-2024-6888 | MEDIUM | 4.8 | 2024-09-04 | The Secure Copy Content Protection and Content Locking WordPress plugin before 4.1.7 does not sanitise and escape some of its settings, which could allow high privilege users such… |
| CVE-2024-6889 | MEDIUM | 4.8 | 2024-09-04 | The Secure Copy Content Protection and Content Locking WordPress plugin before 4.1.7 does not sanitise and escape some of its settings, which could allow high privilege users such… |
| CVE-2024-10517 | MEDIUM | 4.8 | 2024-12-12 | The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content WordPress plugin before 4.15.15 does not sanitise and escape some of it… |
| CVE-2024-10518 | MEDIUM | 4.8 | 2024-12-12 | The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content WordPress plugin before 4.15.15 does not sanitise and escape some of it… |
| CVE-2024-13119 | MEDIUM | 4.8 | 2025-02-13 | The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content WordPress plugin before 4.15.20 does not sanitise and escape some of it… |
| CVE-2024-13120 | MEDIUM | 4.8 | 2025-02-13 | The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content WordPress plugin before 4.15.20 does not sanitise and escape some of it… |
| CVE-2025-1619 | MEDIUM | 4.8 | 2025-03-16 | The GDPR Cookie Compliance WordPress plugin before 4.15.7 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Store… |
| CVE-2025-1620 | MEDIUM | 4.8 | 2025-03-16 | The GDPR Cookie Compliance WordPress plugin before 4.15.7 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Store… |
| CVE-2025-1621 | MEDIUM | 4.8 | 2025-03-16 | The GDPR Cookie Compliance WordPress plugin before 4.15.7 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Store… |
| CVE-2024-11190 | MEDIUM | 4.8 | 2025-05-15 | The jwp-a11y WordPress plugin through 4.1.7 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Sc… |
| CVE-2024-13729 | MEDIUM | 4.8 | 2025-05-15 | The Podlove Podcast Publisher WordPress plugin before 4.1.24 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Sto… |
| CVE-2024-6665 | MEDIUM | 4.8 | 2025-05-15 | The KBucket: Your Curated Content in WordPress plugin before 4.1.6 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perfo… |
| CVE-2024-8619 | MEDIUM | 4.8 | 2025-05-15 | The Ajax Search Lite WordPress plugin before 4.12.3 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cros… |
| CVE-2026-1787 | MEDIUM | 4.8 | 2026-02-21 | The LearnPress Export Import – WordPress extension for LearnPress plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'delete_… |
| CVE-2023-6737 | MEDIUM | 4.7 | 2024-01-11 | The Enable Media Replace plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the SHORTPIXEL_DEBUG parameter in all versions up to, and including, 4.1.4 due to… |
| CVE-2024-10568 | MEDIUM | 4.7 | 2024-12-12 | The Ajax Search Lite WordPress plugin before 4.12.4 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cros… |
| CVE-2023-2767 | MEDIUM | 4.4 | 2023-06-09 | The WordPress File Upload and WordPress File Upload Pro plugins for WordPress are vulnerable to Stored Cross-Site Scripting via admin settings in versions up to, and including, 4.… |
| CVE-2024-5553 | MEDIUM | 4.4 | 2024-06-12 | The Premium Addons for Elementor plugin for WordPress is vulnerable to DOM-Based Stored Cross-Site Scripting via several parameters in all versions up to, and including, 4.10.33 d… |
| CVE-2025-0554 | MEDIUM | 4.4 | 2025-01-18 | The Podlove Podcast Publisher plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Feed Name value in version <= 4.1.25 due to insufficient input sanitization… |
| CVE-2025-2205 | MEDIUM | 4.4 | 2025-03-12 | The GDPR Cookie Compliance – Cookie Banner, Cookie Consent, Cookie Notice – CCPA, DSGVO, RGPD plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings … |
| CVE-2010-4277 | MEDIUM | 4.3 | 2010-12-22 | Cross-site scripting (XSS) vulnerability in lembedded-video.php in the Embedded Video plugin 4.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via t… |
| CVE-2015-3438 | MEDIUM | 4.3 | 2015-08-05 | Multiple cross-site scripting (XSS) vulnerabilities in WordPress before 4.1.2, when MySQL is used without strict mode, allow remote attackers to inject arbitrary web script or HTM… |
| CVE-2015-3439 | MEDIUM | 4.3 | 2015-08-05 | Cross-site scripting (XSS) vulnerability in the Ephox (formerly Moxiecode) plupload.flash.swf shim 2.1.2 in Plupload, as used in WordPress 3.9.x, 4.0.x, and 4.1.x before 4.1.2 and… |
| CVE-2022-0377 | MEDIUM | 4.3 | 2022-02-28 | Users of the LearnPress WordPress plugin before 4.1.5 can upload an image as a profile avatar after the registration. After this process the user crops and saves the image. Then … |
| CVE-2022-38058 | MEDIUM | 4.3 | 2022-09-09 | Authenticated (subscriber+) Plugin Setting change vulnerability in WP Shamsi plugin <= 4.1.1 at WordPress. |
| CVE-2021-4404 | MEDIUM | 4.3 | 2023-07-01 | The Event Espresso 4 Decaf plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 4.10.11. This is due to missing or incorrect nonce va… |
| CVE-2023-39999 | MEDIUM | 4.3 | 2023-10-13 | Exposure of Sensitive Information to an Unauthorized Actor in WordPress from 6.3 through 6.3.1, from 6.2 through 6.2.2, from 6.1 through 6.13, from 6.0 through 6.0.5, from 5.9 thr… |
| CVE-2023-6630 | MEDIUM | 4.3 | 2024-01-11 | The Contact Form 7 – Dynamic Text Extension plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 4.1.0 via the CF7_get_cust… |
| CVE-2024-24837 | MEDIUM | 4.3 | 2024-02-21 | Cross-Site Request Forgery (CSRF) vulnerability in Frédéric GILLES FG PrestaShop to WooCommerce, Frédéric GILLES FG Drupal to WordPress, Frédéric GILLES FG Joomla to WordPress.Thi… |
| CVE-2024-1337 | MEDIUM | 4.3 | 2024-02-29 | The SKT Page Builder plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'saveSktbuilderPageData' function in all vers… |
| CVE-2024-1467 | MEDIUM | 4.3 | 2024-05-14 | The Starter Templates — Elementor, WordPress & Beaver Builder Templates plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 4.1… |
| CVE-2024-4205 | MEDIUM | 4.3 | 2024-05-31 | The Premium Addons for Elementor plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the get_template_content() function in all … |
| CVE-2024-4543 | MEDIUM | 4.3 | 2024-07-03 | The Snippet Shortcodes plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 4.1.4. This is due to missing or incorrect nonce vali… |
| CVE-2024-6824 | MEDIUM | 4.3 | 2024-08-08 | The Premium Addons for Elementor plugin for WordPress is vulnerable to unauthorized modification and loss of data due to a missing capability check on the 'check_temp_validity' an… |
| CVE-2024-6883 | MEDIUM | 4.3 | 2024-08-21 | The Event Espresso 4 Decaf – Event Registration Event Ticketing plugin for WordPress is vulnerable to limited unauthorized plugin settings modification due to a missing capability… |
| CVE-2024-8242 | MEDIUM | 4.3 | 2024-09-13 | The MStore API – Create Native Android & iOS Apps On The Cloud plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the update_user_… |
| CVE-2024-12018 | MEDIUM | 4.3 | 2024-12-12 | The Snippet Shortcodes plugin for WordPress is vulnerable to unauthorized Shortcode Deletion due to missing authorization in all versions up to, and including, 4.1.6. Note that a … |
| CVE-2024-13374 | MEDIUM | 4.3 | 2025-02-12 | The WP Table Manager plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on thewptm_getFolders AJAX action in all versions up to, and inclu… |
| CVE-2025-3292 | MEDIUM | 4.3 | 2025-04-12 | The User Registration & Membership – Custom Registration Form, Login Form, and User Profile plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions … |
| CVE-2025-1284 | MEDIUM | 4.3 | 2025-04-24 | The Woocommerce Automatic Order Printing | ( Formerly WooCommerce Google Cloud Print) plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to,… |
| CVE-2025-4683 | MEDIUM | 4.3 | 2025-05-27 | The MStore API – Create Native Android & iOS Apps On The Cloud plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the cre… |
| CVE-2025-49435 | MEDIUM | 4.3 | 2025-06-06 | Cross-Site Request Forgery (CSRF) vulnerability in Hasina77 Wp Easy Allopass wordpress-easy-allopass allows Cross Site Request Forgery.This issue affects Wp Easy Allopass: from n/… |
| CVE-2025-8595 | MEDIUM | 4.3 | 2025-08-06 | The Zakra theme for WordPress is vulnerable to unauthorized data modification due to a missing capability check on the welcome_notice_import_handler() function in all versions up … |
| CVE-2025-8891 | MEDIUM | 4.3 | 2025-08-13 | The OceanWP theme for WordPress is vulnerable to Cross-Site Request Forgery in versions 4.0.9 to 4.1.1. This is due to missing or incorrect nonce validation on the oceanwp_notice_… |
| CVE-2025-8944 | MEDIUM | 4.3 | 2025-09-05 | The OceanWP WordPress theme before 4.1.2 is vulnerable to an option update due to a missing capability check on one of its AJAX request handler, allowing any authenticated users, … |
| CVE-2025-11519 | MEDIUM | 4.3 | 2025-10-18 | The Optimole – Optimize Images | Convert WebP & AVIF | CDN & Lazy Load | Image Optimization plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions … |
| CVE-2025-14163 | MEDIUM | 4.3 | 2025-12-23 | The Premium Addons for Elementor plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 4.11.53. This is due to missing nonce valid… |
| CVE-2026-0820 | MEDIUM | 4.3 | 2026-01-17 | The RepairBuddy – Repair Shop CRM & Booking Plugin for WordPress plugin for WordPress is vulnerable to Insecure Direct Object Reference due to missing capability checks on the wc_… |
| CVE-2025-15516 | MEDIUM | 4.3 | 2026-01-24 | The All-in-One Video Gallery plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the ajax_callback_store_user_meta() funct… |
| CVE-2026-1883 | MEDIUM | 4.3 | 2026-03-16 | The Wicked Folders – Folder Organizer for Pages, Posts, and Custom Post Types plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and inc… |
| CVE-2026-3568 | MEDIUM | 4.3 | 2026-04-09 | The MStore API plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 4.18.3. This is due to the update_user_profile() funct… |
| CVE-2026-4109 | MEDIUM | 4.3 | 2026-04-14 | The Eventin – Events Calendar, Event Booking, Ticket & Registration (AI Powered) plugin for WordPress is vulnerable to unauthorized access of data due to a improper capability che… |
| CVE-2026-4949 | MEDIUM | 4.3 | 2026-04-15 | The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress plugin for WordPress is vulnerable to Missing Authorizati… |
| CVE-2026-0633 | LOW | 3.7 | 2026-01-24 | The MetForm – Contact Form, Survey, Quiz, & Custom Form Builder for Elementor plugin for WordPress is vulnerable to Sensitive Information Exposure in versions up to, and including… |
| CVE-2020-4050 | LOW | 3.5 | 2020-06-12 | In affected versions of WordPress, misuse of the `set-screen-option` filter's return value allows arbitrary user meta fields to be saved. It does require an admin to install a plu… |
| CVE-2024-13121 | LOW | 3.5 | 2025-02-13 | The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content WordPress plugin before 4.15.20 does not sanitise and escape some of it… |
| CVE-2024-13585 | LOW | 3.5 | 2025-02-21 | The Ajax Search Lite WordPress plugin before 4.12.5 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cros… |
| CVE-2025-1622 | LOW | 3.5 | 2025-03-16 | The GDPR Cookie Compliance WordPress plugin before 4.15.7 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Store… |
| CVE-2025-1623 | LOW | 3.5 | 2025-03-16 | The GDPR Cookie Compliance WordPress plugin before 4.15.9 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Store… |
| CVE-2025-1624 | LOW | 3.5 | 2025-03-16 | The GDPR Cookie Compliance WordPress plugin before 4.15.9 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Store… |
| CVE-2022-29452 | LOW | 3.4 | 2022-06-15 | Authenticated (editor or higher user role) Stored Cross-Site Scripting (XSS) vulnerability in Export All URLs plugin <= 4.1 at WordPress. |
| CVE-2023-2599 | LOW | 3.1 | 2023-06-09 | The Active Directory Integration plugin for WordPress is vulnerable to Cross-Site Request Forgery leading to time-based SQL Injection via the orderby and order parameters in versi… |
| CVE-2024-6434 | LOW | 3.1 | 2024-07-04 | The Premium Addons for Elementor plugin for WordPress is vulnerable to Regular Expression Denial of Service (ReDoS) in all versions up to, and including, 4.10.35. This is due to p… |
| CVE-2020-4049 | LOW | 2.4 | 2020-06-12 | In affected versions of WordPress, when uploading themes, the name of the theme folder can be crafted in a way that could lead to JavaScript execution in /wp-admin on the themes p… |
| CVE-2023-4506 | LOW | 2.2 | 2023-09-27 | The Active Directory Integration / LDAP Integration plugin for WordPress is vulnerable to LDAP Passback in versions up to, and including, 4.1.10. This is due to insufficient valid… |
Plain English · Fix recommendations · Instant PDF & HTML download
Scan your site in 30 seconds. Used by 500+ web agencies.
WordPress 4.1 contains 13 critical vulnerabilities that are actively being exploited by cybercriminals. The most dangerous flaws include SQL injection attacks that give attackers direct database access, authentication bypass vulnerabilities that let them log in as administrators, and remote code execution exploits that provide complete site control. Waiting to update your site puts your business at extreme risk of data breaches, malware infections, and customer trust violations.
Don't leave your website's security to chance. Use SiteRecipe.com's advanced vulnerability scanner to detect all security issues on your site, prioritize critical fixes, and track your progress as you implement updates. Our platform provides detailed remediation guidance and continuous monitoring to ensure your WordPress installation stays secure long after the initial upgrade. Protect your business today—scan your site with SiteRecipe.com now.
Web agencies use SiteRecipe to produce branded PDF security reports in 30 seconds.