WordPress EPSS Rated Vulnerabilities
Wordpress vulnerabilities from the past 365 days which have an EPSS rating.
Vulnerability Published:
๐๏ธ Published
- Anytime
Sort By:
๐๏ธ Published Date
- Descending
Unauthenticated PHP Object Injection Vulnerability in GiveWP Donation Plugin
CVE-2024-5932WordpressGiveWP โ Donation Plug...๐๐พ๐กEPSS 94%๐ฐ9.8CRITICALAuthentication Bypass Vulnerability in Two-Factor Authentication
CVE-2024-10924WordpressReally Simple Security...๐๐พ๐กEPSS 93%๐ฐ9.8CRITICALCode Injection Vulnerability Affects Bricks Builder
CVE-2024-25600WordPressBricks Builder๐พ๐กEPSS 93%๐ฐ10CRITICALUnauthenticated SQL Injection Vulnerability in Easy Listing Directories for WordPress
CVE-2024-4443WordpressBusiness Directory Plu...๐พ๐กEPSS 93%9.8CRITICALSQL Injection Vulnerability in CF7 Plugin for WordPress Could Lead to Sensitive Data Exfiltration
CVE-2024-3495WordpressCountry State City Dro...๐พ๐กEPSS 93%9.8CRITICALSQL Injection Vulnerability in Web Directory Free WordPress Plugin
CVE-2024-3552WordpressWeb Directory Free๐พ๐กEPSS 93%9.8CRITICALWordPress Plugin Vulnerable to Path Traversal Attacks
CVE-2024-9935WordpressPDF Generator Addon Fo...๐พ๐กEPSS 92%7.5HIGHSQL Injection Vulnerability in Tutor LMS Plugin for WordPress Could Leak Sensitive Data
CVE-2024-10400WordpressTutor Lms โ Elearning ...๐พ๐กEPSS 92%7.5HIGHUnauthenticated Arbitrary File Uploads Vulnerability in GutenKit Page Builder
CVE-2024-9234WordpressGutenkit โ Page Builde...๐พ๐กEPSS 92%9.8CRITICALCode Injection Vulnerability Affects WP Query Console
CVE-2024-50498WordPressWP Query Console๐พ๐กEPSS 92%9.8CRITICALAuth Bypass Vulnerability in LiteSpeed Cache
CVE-2024-44000WordPressLitespeed Cache๐พ๐กEPSS 92%9.8CRITICALUnauthenticated File Upload Vulnerability Affects WP Time Capsule Backup and Staging Plugin
CVE-2024-8856WordpressBackup And Staging By ...๐พ๐กEPSS 91%๐ฐ9.8CRITICALUnauthenticated Attackers Can Read or Delete Files via Path Traversal Flaw in WordPress File Upload Plugin
CVE-2024-9047WordpressWordPress File Upload๐พ๐กEPSS 91%9.8CRITICALAuthentication Bypass Vulnerability in WordPress Crypto Plugin
CVE-2024-9989WordpressCrypto ToolEPSS 91%9.8CRITICALWordPress Integrate Google Drive plugin <= 1.1.99 - Unauthenticated Broken Access Control vulnerability
CVE-2023-32117WordPressIntegrate Google DriveEPSS 91%9.8CRITICALArbitrary File Upload Vulnerability in Hash Form โ Drag & Drop Form Builder for WordPress
CVE-2024-5084WordpressHash Form๐พ๐กEPSS 90%9.8CRITICALSQL Injection Vulnerability in Dokan Pro Plugin Affects Sensitive Data
CVE-2024-3922WordpressDokan ProEPSS 89%9.8CRITICALArbitrary File Read Vulnerability in Error Log Viewer by WP Guru Plugin
CVE-2024-12849WordpressError Log Viewer By WP...๐พ๐กEPSS 88%7.5HIGHUnauthorized File Uploads through Async Upload Functionality
CVE-2024-6366WordpressUser Profile Builder๐พ๐กEPSS 88%Unauthenticated SQL Injection Vulnerability in PayPlus Payment Gateway WordPress Plugin
CVE-2024-6205WordpressPayplus Payment Gateway๐พ๐กEPSS 86%9.8CRITICALLocal File Inclusion Vulnerability in HUSKY Products Filter for WooCommerce by WordPress
CVE-2025-1661WordPressHusky โ Products Filte...๐๐พ๐กEPSS 86%9.8CRITICALSevere SSRF Vulnerability in SoftLab Radio Player Affects Multiple Versions
CVE-2024-54385WordPressRadio Player๐พ๐กEPSS 86%7.2HIGHLocal File Inclusion Vulnerability in WP Umbrella Plugin for WordPress
CVE-2024-12209WordpressWP Umbrella: Update Ba...๐พ๐กEPSS 84%9.8CRITICALPrivilege Escalation in User Registration & Membership Plugin by WordPress
CVE-2025-2563WordPressUser Registration & Me...๐๐พ๐กEPSS 83%๐ฐ8.1HIGHUnauthenticated Arbitrary File Upload Vulnerability Affects Wux Blog Editor Plugin
CVE-2024-9932Wordpress๐พ๐กEPSS 83%9.8CRITICAL