WordPress Exploited Vulnerabilities
Wordpress vulnerabilities known to be exploited. Over the past 365 days, sorted by exploit discovery date.
Vulnerability Published:
🗓️ Published
- Anytime
Sort By:
🗓️ Published Date
- Descending
Stored Cross-Site Scripting Vulnerability in Calculated Fields Form Plugin for WordPress
CVE-2024-12273WordPressCalculated Fields Form👾🟡3.5LOWStored Cross-Site Scripting Vulnerability in WP-Recall Plugin by WordPress
CVE-2024-9771WordPressWP-recall👾🟡3.5LOWStored Cross-Site Scripting Vulnerability in WordPress Tag, Category, and Taxonomy Manager Plugin by WordPress
CVE-2025-0627WordPressWordPress Tag, Categor...👾🟡3.5LOWPassword Protection Flaw in Admin and Site Enhancements Plugin for WordPress
CVE-2024-13688WordPressAdmin And Site Enhance...👾🟡5.3MEDIUMAuthorization Bypass Vulnerability in Order Delivery Date Plugin by WordPress
CVE-2025-2907WordPressOrder Delivery Date👾🟡9.8CRITICALPath Traversal Vulnerability Affects BuddyForms from n/a to 2.8.8
CVE-2024-32830WordPressBuddyforms👾🟡8.6HIGHStored Cross-Site Scripting Vulnerability in Icegram Express Plugin by WordPress
CVE-2025-0671WordPressIcegram Express👾🟡Local File Inclusion Vulnerability in The-wound WordPress Theme by an Unknown Vendor
CVE-2025-2558WordPressThe-wound👾🟡8.6HIGHStored Cross-Site Scripting Vulnerability in Category Posts Widget for WordPress
CVE-2025-1453WordPressCategory Posts Widget👾🟡4.8MEDIUMUser Authentication Flaw in User Registration & Membership Plugin by WordPress
CVE-2025-2594WordPressUser Registration & Me...👾🟡8.1HIGHReflected Cross-Site Scripting Vulnerability in Front End Users WordPress Plugin
CVE-2024-13569WordPressFront End Users👾🟡7.1HIGHArbitrary File Upload Vulnerability in WooCommerce Ultimate Gift Card Plugin by WordPress
CVE-2024-8425WordPressWooCommerce Ultimate G...👾🟡9.8CRITICALDoS Vulnerability in WP-Syntax WordPress Plugin Affects Multiple Users
CVE-2024-13926WordPressWP-syntax👾🟡7.5HIGHRemote Code Execution Vulnerability in Pycel by Stephen Rauch
CVE-2024-53924WordPressPycel👾🟡9.8CRITICALStored Cross-Site Scripting Vulnerability in MapPress Maps for WordPress Plugin
CVE-2025-2162WordPressMappress Maps For Word...👾🟡Stored Cross-Site Scripting Vulnerability in The Ultimate Dashboard Plugin by WordPress
CVE-2025-1525WordPressUltimate Dashboard👾🟡3.5LOWStored Cross-Site Scripting Vulnerability in Ultimate Dashboard WordPress Plugin
CVE-2025-1524WordPressUltimate Dashboard👾🟡3.5LOWStored Cross-Site Scripting in Ultimate Dashboard Plugin for WordPress
CVE-2025-1523WordPressUltimate Dashboard👾🟡3.5LOWUnauthenticated WooCommerce Ajax Endpoint Vulnerability in Klarna Checkout Plugin
CVE-2024-13925WordPressKlarna Checkout For Wo...👾🟡Stored Cross-Site Scripting Vulnerability in Icegram Express WordPress Plugin
CVE-2024-11924WordPressIcegram Express Former...👾🟡3.5LOWStored Cross-Site Scripting Vulnerability in Form Maker by 10Web WordPress Plugin
CVE-2024-10680WordPressForm Maker By 10web👾🟡4.8MEDIUMStored Cross-Site Scripting Vulnerability in Simple Social Media Share Buttons Plugin by WordPress
CVE-2024-13610WordPressSimple Social Media Sh...👾🟡4.8MEDIUMStored Cross-Site Scripting in Widget for Social Page Feeds Plugin by WordPress
CVE-2024-13207WordPressWidget For Social Page...👾🟡4.8MEDIUMPrivilege Escalation in User Registration & Membership Plugin by WordPress
CVE-2025-2563WordPressUser Registration & Me...👾🟡EPSS 15%8.1HIGHStored Cross-Site Scripting Vulnerability in Blubrry PowerPress Podcasting Plugin for WordPress
CVE-2024-9230WordPressPowerpress Podcasting ...👾🟡5.9MEDIUM