WordPress Exploited Vulnerabilities
Wordpress vulnerabilities known to be exploited. Over the past 365 days, sorted by exploit discovery date.
Vulnerability Published:
🗓️ Published
- Anytime
Sort By:
🗓️ Published Date
- Descending
Sensitive Data Exposure in Sensei LMS WordPress Plugin
CVE-2025-0466WordPressSensei Lms👾🟡5.3MEDIUMReflected Cross-Site Scripting in Banner Garden Plugin for WordPress
CVE-2025-0368WordPressBanner Garden Plugin F...👾🟡6.1MEDIUMReflected Cross-Site Scripting Vulnerability in WP Dream Carousel Plugin
CVE-2024-13331WordPressWP Dream Carousel👾🟡6.1MEDIUMReflected Cross-Site Scripting in TransFinanz WordPress Plugin
CVE-2024-13332WordPressTransfinanz👾🟡6.1MEDIUMReflected Cross-Site Scripting in JustRows Plugin for WordPress
CVE-2024-13330WordPressJustrows Free👾🟡7.1HIGHReflected Cross-Site Scripting Vulnerability in Solidres WordPress Plugin
CVE-2024-13329WordPressSolidres👾🟡7.1HIGHReflected Cross-Site Scripting in Giga Messenger WordPress Plugin
CVE-2024-13328WordPressGiga Messenger👾🟡6.1MEDIUMCross-Site Request Forgery and XSS Vulnerabilities in WP Projects Portfolio Plugin
CVE-2024-13115WordPressWP Projects Portfolio ...👾🟡6.1MEDIUMReflected Cross-Site Scripting in Glossy WordPress Plugin
CVE-2024-13325WordPressGlossy👾🟡6.1MEDIUMReflected Cross-Site Scripting Vulnerability in WP Projects Portfolio Plugin by WordPress
CVE-2024-13114WordPressWP Projects Portfolio ...👾🟡6.1MEDIUMReflected Cross-Site Scripting in Essential WP Real Estate Plugin for WordPress
CVE-2024-13347WordPressEssential WP Real Estate👾🟡6.8MEDIUMReflected Cross-Site Scripting Vulnerability in WordPress Email Newsletter Plugin
CVE-2024-13098WordPressWordPress Email Newsle...👾🟡5.4MEDIUMReflected Cross-Site Scripting in WP Finance Plugin by WordPress
CVE-2024-13097WordPressWP Finance👾🟡5.4MEDIUMReflected Cross-Site Scripting Vulnerability in Widget4Call Plugin for WordPress
CVE-2024-13099WordPressWidget4call👾🟡5.4MEDIUMCSRF Threat in WP Finance Plugin from WordPress
CVE-2024-13096WordPressWP Finance👾🟡4.6MEDIUMStored Cross-Site Scripting Vulnerability in Responsive iframe Plugin for WordPress
CVE-2024-12768WordPressResponsive Iframe👾🟡5.4MEDIUMSQL Injection Vulnerability in WordPress Download Manager Premium Packages
CVE-2025-24659WordpressPremium Packages👾🟡7.6HIGHReflected Cross-Site Scripting in A5 Custom Login Page Plugin for WordPress
CVE-2024-13226WordPressA5 Custom Login Page👾🟡6.1MEDIUMReflected XSS Vulnerability in SlideDeck 1 Lite Content Slider Plugin by WordPress
CVE-2024-13224WordPressSlidedeck 1 Lite Conte...👾🟡6.1MEDIUMReflected Cross-Site Scripting Vulnerability in Tabulate WordPress Plugin
CVE-2024-13223WordPressTabulate👾🟡6.1MEDIUMReflected Cross-Site Scripting Vulnerability in ECT Home Page Products Plugin for WordPress
CVE-2024-13225WordPressEct Home Page Products👾🟡6.1MEDIUMReflected Cross-Site Scripting Vulnerability in Google Map Professional Plugin by WordPress
CVE-2024-13220WordPressWordPress Google Map P...👾🟡6.1MEDIUMReflected Cross-Site Scripting Vulnerability in Fantastic ElasticSearch Plugin for WordPress
CVE-2024-13221WordPressFantastic Elastic👾🟡6.1MEDIUMReflected Cross-Site Scripting Vulnerability in Fast Tube WordPress Plugin
CVE-2024-13218WordPressFast Tube👾🟡6.1MEDIUMReflected Cross-Site Scripting in Privacy Policy Genius WordPress Plugin
CVE-2024-13219WordPressPrivacy Policy Genius👾🟡6.1MEDIUM