WordPress EPSS Rated Vulnerabilities
Wordpress vulnerabilities from the past 365 days which have an EPSS rating.
Vulnerability Published:
๐๏ธ Published
- Anytime
Sort By:
๐๏ธ Published Date
- Descending
Unauthenticated PHP Object Injection Vulnerability in GiveWP Donation Plugin
CVE-2024-5932WordpressGiveWP โ Donation Plug...๐๐พ๐กEPSS 94%๐ฐ9.8CRITICALAuthentication Bypass Vulnerability in Two-Factor Authentication
CVE-2024-10924WordpressReally Simple Security...๐๐พ๐กEPSS 93%๐ฐ9.8CRITICALSQL Injection Vulnerability in Web Directory Free WordPress Plugin
CVE-2024-3552WordpressWeb Directory Free๐พ๐กEPSS 93%9.8CRITICALWordPress Plugin Vulnerable to Path Traversal Attacks
CVE-2024-9935WordpressPDF Generator Addon Fo...๐พ๐กEPSS 92%7.5HIGHSQL Injection Vulnerability in Tutor LMS Plugin for WordPress Could Leak Sensitive Data
CVE-2024-10400WordpressTutor Lms โ Elearning ...๐พ๐กEPSS 92%7.5HIGHCode Injection Vulnerability Affects WP Query Console
CVE-2024-50498WordPressWP Query Console๐พ๐กEPSS 92%9.8CRITICALUnauthenticated Arbitrary File Uploads Vulnerability in GutenKit Page Builder
CVE-2024-9234WordpressGutenkit โ Page Builde...๐พ๐กEPSS 92%9.8CRITICALArbitrary File Read Vulnerability in Error Log Viewer by WP Guru Plugin
CVE-2024-12849WordpressError Log Viewer By WP...๐พ๐กEPSS 92%7.5HIGHAuth Bypass Vulnerability in LiteSpeed Cache
CVE-2024-44000WordPressLitespeed Cache๐พ๐กEPSS 92%9.8CRITICALUnauthenticated File Upload Vulnerability Affects WP Time Capsule Backup and Staging Plugin
CVE-2024-8856WordpressBackup And Staging By ...๐พ๐กEPSS 91%๐ฐ9.8CRITICALWordPress Integrate Google Drive plugin <= 1.1.99 - Unauthenticated Broken Access Control vulnerability
CVE-2023-32117WordPressIntegrate Google DriveEPSS 91%9.8CRITICALUnauthenticated Attackers Can Read or Delete Files via Path Traversal Flaw in WordPress File Upload Plugin
CVE-2024-9047WordpressWordPress File Upload๐พ๐กEPSS 91%9.8CRITICALAuthentication Bypass Vulnerability in WordPress Crypto Plugin
CVE-2024-9989WordpressCrypto ToolEPSS 91%9.8CRITICALSQL Injection Vulnerability in Dokan Pro Plugin Affects Sensitive Data
CVE-2024-3922WordpressDokan ProEPSS 89%9.8CRITICALUnauthorized File Uploads through Async Upload Functionality
CVE-2024-6366WordpressUser Profile Builder๐พ๐กEPSS 89%Local File Inclusion Vulnerability in HUSKY Products Filter for WooCommerce by WordPress
CVE-2025-1661WordPressHusky โ Products Filte...๐๐พ๐กEPSS 87%9.8CRITICALUnauthorized Plugin Installation/Activation Vulnerability Affects Hunk Companion for WordPress
CVE-2024-9707WordpressHunk Companion๐พ๐กEPSS 86%9.8CRITICALUnauthenticated SQL Injection Vulnerability in PayPlus Payment Gateway WordPress Plugin
CVE-2024-6205WordpressPayplus Payment Gateway๐พ๐กEPSS 86%9.8CRITICALSevere SSRF Vulnerability in SoftLab Radio Player Affects Multiple Versions
CVE-2024-54385WordPressRadio Player๐พ๐กEPSS 86%7.2HIGHLocal File Inclusion Vulnerability in WP Umbrella Plugin for WordPress
CVE-2024-12209WordpressWP Umbrella: Update Ba...๐พ๐กEPSS 84%9.8CRITICALPrivilege Escalation in User Registration & Membership Plugin by WordPress
CVE-2025-2563WordPressUser Registration & Me...๐๐พ๐กEPSS 84%๐ฐ8.1HIGHWordPress Yet Another Related Posts Plugin (YARPP) plugin <= 5.30.10 - Broken Access Control vulnerability
CVE-2024-43919WordPressYarpp๐พ๐กEPSS 83%9.8CRITICALUnauthenticated Arbitrary File Upload Vulnerability Affects Wux Blog Editor Plugin
CVE-2024-9932Wordpress๐พ๐กEPSS 83%9.8CRITICALUnauthenticated SQL Injection Vulnerability in LearnPress LMS Plugin
CVE-2024-8522WordpressLearnpress โ WordPress...๐พ๐กEPSS 83%7.5HIGHAuthorization Flaw in Hunk Companion Plugin for WordPress
CVE-2024-11972WordpressHunk Companion๐พ๐กEPSS 82%9.8CRITICAL