WordPress EPSS Rated Vulnerabilities
undefined vulnerabilities from the past 365 days which have an EPSS rating.
Vulnerability Published:
🗓️ Published
- Anytime
Sort By:
🗓️ Published Date
- Descending
Unauthenticated PHP Object Injection Vulnerability in GiveWP Donation Plugin
CVE-2024-5932WordpressGiveWP – Donation Plug...📈👾🟡EPSS 94%📰9.8CRITICALAuthentication Bypass Vulnerability in Two-Factor Authentication
CVE-2024-10924WordpressReally Simple Security...📈👾🟡EPSS 93%📰9.8CRITICALCode Injection Vulnerability Affects Bricks Builder
CVE-2024-25600WordPressBricks Builder👾🟡EPSS 93%📰10CRITICALSQL Injection Vulnerability in CF7 Plugin for WordPress Could Lead to Sensitive Data Exfiltration
CVE-2024-3495WordpressCountry State City Dro...👾🟡EPSS 93%9.8CRITICALPath Traversal Vulnerability Affects Automatic from n/a through 3.92.0
CVE-2024-27954WordPressAutomaticEPSS 93%📰9.3CRITICALUnauthenticated SQL Injection Vulnerability in Easy Listing Directories for WordPress
CVE-2024-4443WordpressBusiness Directory Plu...👾🟡EPSS 93%9.8CRITICALSQL Injection Vulnerability in Web Directory Free WordPress Plugin
CVE-2024-3552WordpressWeb Directory Free👾🟡EPSS 93%9.8CRITICALSQL Injection Vulnerability in Tutor LMS Plugin for WordPress Could Leak Sensitive Data
CVE-2024-10400WordpressTutor Lms – Elearning ...👾🟡EPSS 92%7.5HIGHWordPress Plugin Vulnerable to Path Traversal Attacks
CVE-2024-9935WordpressPDF Generator Addon Fo...👾🟡EPSS 92%7.5HIGHUnauthenticated Arbitrary File Uploads Vulnerability in GutenKit Page Builder
CVE-2024-9234WordpressGutenkit – Page Builde...👾🟡EPSS 92%9.8CRITICALCode Injection Vulnerability Affects WP Query Console
CVE-2024-50498WordPressWP Query Console👾🟡EPSS 92%9.8CRITICALEmail Subscribers Vulnerable to SQL Injection
CVE-2024-2876WordpressEmail Subscribers By I...👾🟡EPSS 92%9.8CRITICALAuth Bypass Vulnerability in LiteSpeed Cache
CVE-2024-44000WordPressLitespeed Cache👾🟡EPSS 92%9.8CRITICALUnauthenticated File Upload Vulnerability Affects WP Time Capsule Backup and Staging Plugin
CVE-2024-8856WordpressBackup And Staging By ...👾🟡EPSS 91%📰9.8CRITICALUnauthenticated Attackers Can Read or Delete Files via Path Traversal Flaw in WordPress File Upload Plugin
CVE-2024-9047WordpressWordPress File Upload👾🟡EPSS 91%9.8CRITICALAuthentication Bypass Vulnerability in WordPress Crypto Plugin
CVE-2024-9989WordpressCrypto ToolEPSS 91%9.8CRITICALStored Cross-Site Scripting Vulnerability in WordPress Core
CVE-2024-4439Wordpress📈👾🟡EPSS 90%📰7.2HIGHArbitrary File Upload Vulnerability in Hash Form – Drag & Drop Form Builder for WordPress
CVE-2024-5084WordpressHash Form👾🟡EPSS 90%9.8CRITICALSQL Injection Vulnerability in Dokan Pro Plugin Affects Sensitive Data
CVE-2024-3922WordpressDokan ProEPSS 89%9.8CRITICALWordPress Integrate Google Drive plugin <= 1.1.99 - Unauthenticated Broken Access Control vulnerability
CVE-2023-32117WordPressIntegrate Google DriveEPSS 88%9.8CRITICALUnauthorized File Uploads through Async Upload Functionality
CVE-2024-6366WordpressUser Profile Builder👾🟡EPSS 88%Arbitrary File Read Vulnerability in Error Log Viewer by WP Guru Plugin
CVE-2024-12849WordpressError Log Viewer By WP...👾🟡EPSS 88%7.5HIGHUnauthenticated SQL Injection Vulnerability in PayPlus Payment Gateway WordPress Plugin
CVE-2024-6205WordpressPayplus Payment Gateway👾🟡EPSS 86%9.8CRITICALLocal File Inclusion Vulnerability in WP Umbrella Plugin for WordPress
CVE-2024-12209WordpressWP Umbrella: Update Ba...👾🟡EPSS 84%9.8CRITICALUnauthenticated Arbitrary File Upload Vulnerability Affects Wux Blog Editor Plugin
CVE-2024-9932Wordpress👾🟡EPSS 83%9.8CRITICAL