WordPress Latest High & Critical Vulnerabilities
Latest High & Critical vulnerabilities published by wordpress
Vulnerability Published:
đď¸ Published
- Anytime
Sort By:
đď¸ Published Date
- Descending
SQL Injection Vulnerability in wpForo Forum Plugin for WordPress
CVE-2025-13126WordPressWPforo Forum7.5HIGHSQL Injection Vulnerability in URL Shortener Plugin for WordPress
CVE-2025-10738WordPressUrl Shortener Plugin F...9.8CRITICALSensitive Information Exposure in Export WP Page to Static HTML & PDF Plugin for WordPress
CVE-2025-11693WordPressExport WP Pages To Htm...9.8CRITICALAuthentication Bypass in JAY Login & Register Plugin for WordPress
CVE-2025-14440WordPressJay Login & Register9.8CRITICALTime-Based Blind SQL Injection in Payamito SMS WooCommerce Plugin for WordPress
CVE-2025-13077WordPressاŮزŮŮŮ ŮžŰا٠ڊ ŮŮڊا٠عس Ů...7.5HIGHPHP Object Injection in Doubly â Cross Domain Copy Paste for WordPress Plugin
CVE-2025-14476WordPressDoubly â Cross Domain ...8.8HIGHLocal File Inclusion in Extensive VC Addons for WPBakery Page Builder by WordPress
CVE-2025-14475WordPressExtensive Vc Addons Fo...8.1HIGHArbitrary File Upload Vulnerability in WP3D Model Import Viewer Plugin for WordPress
CVE-2025-13094WordPressWP3d Model Import Viewer8.8HIGHPrivilege Escalation Vulnerability in Postem Ipsum Plugin for WordPress
CVE-2025-14397WordPressPostem Ipsum8.8HIGHSQL Injection Vulnerability in WP Directory Kit by WordPress
CVE-2025-13089WordPressWP Directory Kit7.5HIGHFile Deletion Vulnerability in WooMulti WordPress Plugin by WooMulti
CVE-2025-12835WordPressWoomultiđžđĄ7.3HIGHTime-Based Blind SQL Injection in FunnelKit Plugin for WooCommerce
CVE-2025-14169WordPressFunnelkit â Funnel Bui...7.5HIGHTime-Based SQL Injection Vulnerability in WPNakama Plugin for WordPress
CVE-2025-14068WordPressWPnakama â Team And Mu...7.5HIGHStored Cross-Site Scripting Vulnerability in Fancy Product Designer for WordPress
CVE-2025-12570WordPressFancy Product Designer7.2HIGHUnauthorized Database Reset Vulnerability in Blaze Demo Importer Plugin for WordPress
CVE-2025-13334WordPressBlaze Demo Importer8.1HIGHPrivilege Escalation Vulnerability in LazyTasks Project Management Plugin for WordPress
CVE-2025-12963WordPressLazytasks â Project & ...9.8CRITICALPHP Object Injection in Visitor Logic Lite Plugin for WordPress
CVE-2025-14044WordPressVisitor Logic Lite8.1HIGHArbitrary File Upload Vulnerability in Infility Global Plugin for WordPress
CVE-2025-12968WordPressInfility Global8.8HIGHLocal File Inclusion Vulnerability in Player Leaderboard Plugin for WordPress
CVE-2025-12824WordPressPlayer Leaderboard8.8HIGHArbitrary File Deletion Vulnerability in Gravity Forms Multi Uploader Plugin for WordPress
CVE-2025-14344WordPressMulti Uploader For Gra...9.8CRITICALLocal File Inclusion Vulnerability in LT Unleashed Plugin for WordPress
CVE-2025-13886WordPressLt Unleashed7.5HIGHPrivilege Escalation Vulnerability in WP CarDealer Plugin by WordPress
CVE-2025-13764WordPressWP Cardealer9.8CRITICALCross-Site Request Forgery in Video Merchant Plugin for WordPress
CVE-2025-14390WordPressVideo Merchant8.8HIGHReflected Cross-Site Scripting in HandL UTM Grabber / Tracker Plugin by WordPress
CVE-2025-13073WordPressHandl Utm Grabber / Tr...đžđĄ7.1HIGHReflected Cross-Site Scripting Vulnerability in HandL UTM Grabber / Tracker Plugin
CVE-2025-13072WordPressHandl Utm Grabber / Tr...đžđĄ7.1HIGH