WordPress EPSS Rated Vulnerabilities
undefined vulnerabilities from the past 365 days which have an EPSS rating.
Vulnerability Published:
🗓️ Published
- Anytime
Sort By:
🗓️ Published Date
- Descending
Unauthenticated PHP Object Injection Vulnerability in GiveWP Donation Plugin
CVE-2024-5932WordpressGiveWP – Donation Plug...📈👾🟡EPSS 93%📰9.8CRITICALUnauthenticated SQL Injection Vulnerability in Easy Listing Directories for WordPress
CVE-2024-4443WordpressBusiness Directory Plu...👾🟡EPSS 92%9.8CRITICALAuthentication Bypass Vulnerability in Two-Factor Authentication
CVE-2024-10924WordpressReally Simple Security...📈👾🟡EPSS 92%📰9.8CRITICALCode Injection Vulnerability Affects Bricks Builder
CVE-2024-25600WordPressBricks Builder👾🟡EPSS 92%📰10CRITICALPath Traversal Vulnerability Affects Automatic from n/a through 3.92.0
CVE-2024-27954WordPressAutomaticEPSS 92%📰9.3CRITICALSQL Injection Vulnerability in CF7 Plugin for WordPress Could Lead to Sensitive Data Exfiltration
CVE-2024-3495WordpressCountry State City Dro...👾🟡EPSS 91%9.8CRITICALSQL Injection Vulnerability in Web Directory Free WordPress Plugin
CVE-2024-3552WordpressWeb Directory Free👾🟡EPSS 91%9.8CRITICALWordPress Plugin Vulnerable to Path Traversal Attacks
CVE-2024-9935WordpressPDF Generator Addon Fo...👾🟡EPSS 90%7.5HIGHSQL Injection Vulnerability Affects WP-Recall
CVE-2024-32709WordPressWP-recallEPSS 90%9.3CRITICALAuth Bypass Vulnerability in LiteSpeed Cache
CVE-2024-44000WordPressLitespeed Cache👾🟡EPSS 88%9.8CRITICALUnauthenticated SQL Injection Vulnerability in LearnPress LMS Plugin
CVE-2024-8522WordpressLearnpress – WordPress...👾🟡EPSS 88%7.5HIGHUnauthenticated Arbitrary File Uploads Vulnerability in GutenKit Page Builder
CVE-2024-9234WordpressGutenkit – Page Builde...👾🟡EPSS 88%9.8CRITICALEmail Subscribers Vulnerable to SQL Injection
CVE-2024-2876WordpressEmail Subscribers By I...👾🟡EPSS 87%9.8CRITICALUnauthenticated File Upload Vulnerability Affects WP Time Capsule Backup and Staging Plugin
CVE-2024-8856WordpressBackup And Staging By ...👾🟡EPSS 87%📰9.8CRITICALStored Cross-Site Scripting Vulnerability in WordPress Core
CVE-2024-4439Wordpress📈👾🟡EPSS 87%📰7.2HIGHCode Injection Vulnerability Affects WP Query Console
CVE-2024-50498WordPressWP Query Console👾🟡EPSS 86%9.8CRITICALUnsafe Deserialization Vulnerability in GiveWP Plugin Allows for PHP Object Injection and File Delete
CVE-2024-8353WordpressGiveWP👾🟡EPSS 85%9.8CRITICALTime-Based SQL Injection Vulnerability in Quiz Maker Plugin for WordPress
CVE-2024-6028WordpressQuiz Maker👾🟡EPSS 84%9.8CRITICALAuthentication Bypass Vulnerability in WordPress Crypto Plugin
CVE-2024-9989WordpressCrypto ToolEPSS 84%9.8CRITICALArbitrary File Read Vulnerability in Error Log Viewer by WP Guru Plugin
CVE-2024-12849WordpressError Log Viewer By WP...👾🟡EPSS 83%7.5HIGHLocal File Inclusion Vulnerability in WP Umbrella Plugin for WordPress
CVE-2024-12209WordpressWP Umbrella: Update Ba...👾🟡EPSS 83%9.8CRITICALSQL Injection Vulnerability in Dokan Pro Plugin Affects Sensitive Data
CVE-2024-3922WordpressDokan ProEPSS 83%9.8CRITICALUnauthenticated SQL Injection Vulnerability in PayPlus Payment Gateway WordPress Plugin
CVE-2024-6205WordpressPayplus Payment Gateway👾🟡EPSS 81%9.8CRITICALArbitrary File Upload Vulnerability in Hash Form – Drag & Drop Form Builder for WordPress
CVE-2024-5084WordpressHash Form👾🟡EPSS 80%9.8CRITICALWoo Inquiry Plugin Vulnerable to SQL Injection
CVE-2024-7854WordpressWoo Inquiry👾🟡EPSS 80%9.8CRITICAL