WordPress Exploited Vulnerabilities
Wordpress vulnerabilities known to be exploited. Over the past 365 days, sorted by exploit discovery date.
Vulnerability Published:
๐๏ธ Published
- Anytime
Sort By:
๐๏ธ Published Date
- Descending
Arbitrary File Read Vulnerability in Propovoice Client Management System for WordPress
CVE-2025-8422WordPressPropovoice: All-in-one...๐พ๐ก7.5HIGHSQL Injection Vulnerability in JS Archive List by Miguel Useche
CVE-2025-54726WordPressJs Archive List๐พ๐ก9.3CRITICALCross-Site Scripting Vulnerability in SureForms WordPress Plugin
CVE-2025-8282WordPressSureforms๐พ๐ก6.1MEDIUMStored Cross-Site Scripting Vulnerability in Markup Markdown Plugin by WordPress
CVE-2025-9541WordPressMarkup Markdown๐พ๐ก4.7MEDIUMXSS Vulnerability in Admin and Site Enhancements Plugin for WordPress
CVE-2025-9487WordPressAdmin And Site Enhance...๐พ๐ก4.7MEDIUMStored Cross-Site Scripting Vulnerability in Markup Markdown Plugin
CVE-2025-9540WordPressMarkup Markdown๐พ๐ก4.7MEDIUMReflected Cross-Site Scripting Vulnerability in Etsy Shop WordPress Plugin
CVE-2025-9115WordPressEtsy Shop๐พ๐ก5.6MEDIUMPHP Object Injection Vulnerability in Ninja Forms Plugin by Ninja Squad
CVE-2025-9083WordPressNinja Forms๐พ๐ก9.8CRITICALServer-side Validation Flaw in WP Hotel Booking Plugin by WordPress
CVE-2025-8942WordPressWP Hotel Booking๐พ๐ก9.1CRITICALWeak OTP Code Generation in Password Reset Plugin for WordPress
CVE-2025-5305WordPressPassword Reset With Co...๐พ๐ก9.8CRITICALSQL Injection Vulnerability in CatFolders Plugin for WordPress
CVE-2025-9776WordPressCatfolders โ Tame Your...๐พ๐ก6.5MEDIUMReflected Cross-Site Scripting in Contact Form 7 reCAPTCHA Plugin for WordPress
CVE-2025-8280WordPressContact Form 7 Recaptcha๐พ๐ก5.8MEDIUMCross-Site Scripting Vulnerability in jQuery Colorbox Plugin for WordPress
CVE-2025-3650WordPressJquery Colorbox๐พ๐ก3.5LOWOpen Redirect Vulnerability in Wp Edit Password Protected Plugin by WordPress
CVE-2025-9034WordPressWP Edit Password Prote...๐พ๐ก6.1MEDIUMStored Cross-Site Scripting in AI ChatBot for WordPress Plugin by WordPress
CVE-2025-9111WordPressAi Chatbot For WordPress๐พ๐ก6.1MEDIUMImproper File Validation in Compress & Upload Plugin for WordPress
CVE-2025-8889WordPressCompress & Upload๐พ๐ก6.5MEDIUMAuthorization Flaw in Ditty Plugin for WordPress
CVE-2025-8085WordPressDitty๐พ๐ก8.6HIGHSQL Injection Vulnerability in ELEX WooCommerce Google Shopping Plugin for WordPress
CVE-2025-10046WordPressElex WooCommerce Googl...๐พ๐ก4.9MEDIUMOption Update Vulnerability in OceanWP WordPress Theme
CVE-2025-8944WordPressOceanWP๐พ๐ก4.3MEDIUMUnauthorized File Upload Vulnerability in N-Media File Manager
CVE-2016-15042WordpressN-media Post Front-end...๐พ๐กEPSS 72%9.8CRITICALStored Cross-Site Scripting in Sticky Side Buttons WordPress Plugin
CVE-2023-3666WordPressSticky Side Buttons๐พ๐ก3.3LOWReflected Cross-Site Scripting Vulnerability in WP Talroo Plugin for WordPress
CVE-2025-8281WordPressWP Talroo๐พ๐ก7.1HIGHRemote Code Execution Vulnerability in Cloudflare Image Resizing Plugin for WordPress
CVE-2025-8723WordPressCloudflare Image Resiz...๐พ๐ก9.8CRITICALReflected Cross-Site Scripting Vulnerability in Ebook Store WordPress Plugin
CVE-2025-8113WordPressEbook Store๐พ๐ก6.1MEDIUMJavaScript Backdoor Vulnerability in Pixterme Plugins for WordPress
CVE-2025-8047WordPressDisable-right-click-po...๐พ๐ก9.8CRITICAL