WordPress Exploited Vulnerabilities
Wordpress vulnerabilities known to be exploited. Over the past 365 days, sorted by exploit discovery date.
Vulnerability Published:
๐๏ธ Published
- Anytime
Sort By:
๐๏ธ Published Date
- Descending
Arbitrary File Upload Vulnerability in WooCommerce Designer Pro Plugin for WordPress
CVE-2025-6440WordPressWooCommerce Designer Pro๐พ๐ก9.8CRITICALFile Path Vulnerability in MelAbu WP Download Counter Button Plugin by WordPress
CVE-2025-11072WordPressMelabu WP Download Cou...๐พ๐ก5.3MEDIUMPassword Reset Vulnerability in Ace User Management WordPress Plugin
CVE-2025-6027WordPressAce User Management๐พ๐ก6.3MEDIUMElementInvader Addons for Elementor WordPress Plugin Exposes Email Functionality
CVE-2025-10873WordPressElementinvader Addons ...๐พ๐ก5.3MEDIUMReflected XSS Vulnerability in FunnelKit WordPress Plugin
CVE-2025-10567WordPressFunnelkit๐พ๐ก6.3MEDIUMUnauthorized Data Access in Post SMTP Plugin for WordPress
CVE-2025-11833WordPressPost Smtp โ Complete S...๐พ๐ฐ9.8CRITICALArbitrary File Upload Vulnerability in Webkul Medical Prescription Attachment Plugin for WooCommerce
CVE-2025-29009WordPressMedical Prescription A...๐พ๐ก10CRITICALAuthentication Bypass Vulnerability in Noo JobMonster Theme by WordPress
CVE-2025-5397WordPressNoo Jobmonster๐พ๐ฐ9.8CRITICALImproper Permission Checks in RealPress WordPress Plugin
CVE-2025-11191WordPressRealpress๐พ๐ก5.3MEDIUMStored Cross-Site Scripting Vulnerability in NS Maintenance Mode Plugin for WordPress
CVE-2025-10636WordPressNs Maintenance Mode Fo...๐พ๐ก3.5LOWArbitrary File Read Vulnerability in Anti-Malware Security and Brute-Force Firewall Plugin for WordPress
CVE-2025-11705WordPressAnti-malware Security ...๐พ๐ฐ6.5MEDIUMUnauthorized AJAX Action in Doppler Forms Plugin for WordPress
CVE-2025-9544WordPressDoppler Forms๐พ๐ก6.5MEDIUMAuthorization Bypass in IDonate WordPress Plugin by WPDev
CVE-2025-11154WordPressIdonate๐พ๐ก5.4MEDIUMServer-Side Request Forgery in Orbit Fox Plugin for WordPress
CVE-2025-10874WordPressOrbit Fox: Duplicate P...๐พ๐ก5.5MEDIUMCross-Site Scripting Vulnerability in Jeg Kit for Elementor by WordPress
CVE-2025-9978WordPressJeg Kit For Elementor๐พ๐ก6.8MEDIUMLocal File Inclusion Vulnerability in PixelYourSite WordPress Plugin
CVE-2025-10723WordPressPixelyoursite๐พ๐ก2.7LOWImproper Role Management in Meta Tag Manager Plugin for WordPress
CVE-2025-5983WordPressMeta Tag Manager๐พ๐ก6.5MEDIUMAuthorization Flaw in NS Maintenance Mode for WP Plugin by WordPress
CVE-2025-10638WordPressNs Maintenance Mode Fo...๐พ๐ก5.3MEDIUMArbitrary File Upload Vulnerability in WooCommerce Plugin by WordPress
CVE-2025-11391WordPressPpom โ Product Addons ...๐พ๐ก9.8CRITICALArbitrary File Deletion Vulnerability in FormGent WordPress Plugin
CVE-2025-10916WordPressFormgent๐พ๐ก9.1CRITICALSecurity Flaw in BlindMatrix e-Commerce Plugin for WordPress
CVE-2025-10406WordPressBlindmatrix E-commerce๐พ๐ก5.5MEDIUMEval Injection Vulnerability in is-human Plugin for WordPress by an Unknown Vendor
CVE-2011-10033WordPressIs-human WordPress Plugin๐พ๐ก9.3CRITICALServer-Side Request Forgery in Pz-LinkCard WordPress Plugin
CVE-2025-8594WordPressPz-linkcard๐พ๐ก3.8LOWCross-Site Scripting Vulnerability in Simple SEO Plugin for WordPress
CVE-2025-10357WordPressSimple Seo๐พ๐ก6.1MEDIUMMissing Authentication Vulnerability in Chartify Plugin for WordPress
CVE-2025-11171WordPressChartify โ WordPress C...๐พ๐ก5.3MEDIUM