WordPress Latest High & Critical Vulnerabilities
Latest High & Critical vulnerabilities published by wordpress
Vulnerability Published:
🗓️ Published
- Anytime
Sort By:
🗓️ Published Date
- Descending
Cross-Site Request Forgery Vulnerability in Theme Editor for WordPress
CVE-2025-9890WordPressTheme Editor8.8HIGHSQL Injection Vulnerability in PPOM – Product Addons & Custom Fields for WooCommerce Plugin
CVE-2025-11691WordPressPpom – Product Addons ...7.5HIGHArbitrary File Upload Vulnerability in WooCommerce Plugin by WordPress
CVE-2025-11391WordPressPpom – Product Addons ...9.8CRITICALPayment Bypass Vulnerability in Event Tickets and Registration Plugin for WordPress
CVE-2025-11517WordPressEvent Tickets And Regi...7.5HIGHPHP Object Injection Vulnerability in RegistrationMagic Plugin for WordPress
CVE-2017-20208WordPressRegistrationmagic – Cu...9.8CRITICALPHP Object Injection Vulnerability in Flickr Gallery Plugin for WordPress
CVE-2017-20207WordPressFlickr Gallery9.8CRITICALPHP Object Injection Vulnerability in Appointments Plugin for WordPress
CVE-2017-20206WordPressAppointments9.8CRITICALStored Cross-Site Scripting in 10WebMapBuilder Plugin for WordPress
CVE-2020-36853WordPress10web Map Builder For ...7.2HIGHImproper Authentication in Felan Framework Plugin for WordPress
CVE-2025-10850WordPressFelan Framework9.8CRITICALArbitrary User Password Change Vulnerability in Truelysell Core Plugin for WordPress
CVE-2025-10742WordPressTruelysell Core9.8CRITICALUnauthorized Plugin Installation in Classified Pro Theme for WordPress
CVE-2025-10706WordPressClassifiedpro - Recomm...8.8HIGHStored Cross-Site Scripting Vulnerability in Find And Replace Plugin by WordPress
CVE-2025-10313WordPressFind And Replace Conte...7.2HIGHAuthentication Bypass Vulnerability in OwnID Passwordless Login Plugin for WordPress
CVE-2025-10294WordPressOwnid Passwordless Login9.8CRITICALPrivilege Escalation in Orion SMS OTP Verification Plugin for WordPress
CVE-2025-9967WordPressOrion Sms Otp Verifica...9.8CRITICALSQL Injection Vulnerability in Outdoor Plugin for WordPress
CVE-2025-10743WordPressOutdoor7.5HIGHLocal File Inclusion Vulnerability in Woocommerce Category and Products Accordion Panel for WordPress
CVE-2025-11722WordPressWooCommerce Category A...7.5HIGHPrivilege Escalation Vulnerability in WPBifröst Plugin by WordPress
CVE-2025-10299WordPressWPbifröst – Instant Pa...8.8HIGHSQL Injection Vulnerability in External Login Plugin for WordPress
CVE-2025-11177WordPressExternal Login7.5HIGHArbitrary File Upload Vulnerability in Demo Import Kit Plugin for WordPress
CVE-2025-10051WordPressDemo Import Kit7.2HIGHArbitrary File Upload Vulnerability in Flex QR Code Generator Plugin for WordPress
CVE-2025-10041WordPressFlex Qr Code Generator9.8CRITICALPrivilege Escalation in Keyy Two Factor Authentication Plugin for WordPress
CVE-2025-10293WordPressKeyy Two Factor Authen...8.8HIGHArbitrary File Upload Vulnerability in DocoDoco Store Locator Plugin for WordPress
CVE-2025-10754WordPressDocodoco Store Locator7.2HIGHSQL Injection Vulnerability in Dynamically Display Posts Plugin for WordPress
CVE-2025-11501WordPressDynamically Display Posts7.5HIGHPrivilege Escalation in Lisfinity Core Plugin for WordPress from Lisfinity
CVE-2025-6042WordPressLisfinity Core - Lisfi...7.3HIGHLocal File Inclusion Vulnerability in XStore Theme by 8Theme
CVE-2025-11746WordPressXstore8.8HIGH