WordPress Platform Vulnerabilities
Wordpress Platform vulnerabilities.
Vulnerability Published:
๐๏ธ Published
- Anytime
Sort By:
๐๏ธ Published Date
- Descending
Unauthorized Data Modification in WordPress Platform Theme
CVE-2015-10143WordPressPlatform9.8CRITICALInsufficient Capability Check in GiveWP Donation Plugin for Unauthorized Access
CVE-2025-4571WordPressGiveWP โ Donation Plug...5.4MEDIUMPrivilege Escalation Vulnerability in REST API Custom API Generator for WordPress
CVE-2025-5288WordPressRest Api | Custom Api ...9.8CRITICALAccess Control Flaw in BuddyBoss Platform WordPress Plugin Affects User Privacy
CVE-2024-12767WordPressBuddyboss-platform๐พ๐ก7.5HIGHCross-Site Request Forgery in XpeedStudio's WP Fundraising Donation Platform
CVE-2025-47459WordPressWP Fundraising Donatio...4.3MEDIUMStored Cross-Site Scripting in Buddyboss Platform Plugin for WordPress
CVE-2024-13859WordPressBuddyboss Platform5.4MEDIUMStored Cross-Site Scripting in Buddyboss Platform for WordPress
CVE-2024-13860WordPressBuddyboss Platform5.4MEDIUMStored Cross-Site Scripting in Buddyboss Platform for WordPress
CVE-2024-13858WordPressBuddyboss Theme5.4MEDIUMAuthentication Bypass Vulnerability in SureTriggers Automation Platform Plugin for WordPress
CVE-2025-3102WordPressOttokit: All-in-one Au...๐พEPSS 85%๐ฐ8.1HIGHSensitive Information Exposure in GiveWP Plugin for WordPress
CVE-2025-2331WordPressGiveWP โ Donation Plug...5.3MEDIUMUnauthorized Data Access Vulnerability in GiveWP Donation Plugin for WordPress
CVE-2025-2025WordPressGiveWP โ Donation Plug...7.5HIGHPHP Object Injection Vulnerability in Donations Widget Plugin for WordPress
CVE-2025-0912WordPressGiveWP โ Donation Plug...๐พ๐ฐ9.8CRITICALStored Cross-Site Scripting in Buddyboss Platform Plugin for WordPress
CVE-2024-13402WordPressBuddyboss Platform5.4MEDIUMPHP Object Injection Vulnerability in GiveWP Donation Plugin for WordPress
CVE-2024-12877WordpressGiveWP โ Donation Plug...EPSS 17%9.8CRITICALReflected Cross-Site Scripting Vulnerability in CLUEVO LMS E-Learning Platform Plugin for WordPress
CVE-2024-11328WordpressCluevo Lms, E-learning...6.1MEDIUMCLUEVO LMS Vulnerable to Cross-Site Request Forgery
CVE-2024-11444WordpressCluevo Lms, E-learning...4.3MEDIUMStored Cross-Site Scripting Vulnerability in myCred Plugin for WordPress and WooCommerce
CVE-2024-11201WordpressMycred โ Exclusive Pla...๐พ๐ก6.4MEDIUMArbitrary Web Script Injection via Reflected Cross-Site Scripting in Sugar Calendar Plugin
CVE-2024-10878WordpressSugar Calendar โ Event...6.1MEDIUMCross-site Scripting Vulnerability in Ilias Gomatos Affiliate Platform by WordPress
CVE-2024-49645WordPressAffiliate Platform6.1MEDIUMUntrusted Input Vulnerability in GiveWP Donation Plugin Allows PHP Object Injection and Remote Code Execution
CVE-2024-9634WordpressGiveWP โ Donation Plug...EPSS 17%9.8CRITICALSQL Injection Vulnerability in GiveWP's Donation Plugin
CVE-2024-9130WordpressGiveWP โ Donation Plug...7.2HIGHUnauthenticated Attackers Can Retrieve Full Path of Web Application: GiveWP Plugin Vulnerable to Full Path Disclosure
CVE-2024-6551WordpressGiveWP โ Donation Plug...5.3MEDIUMUnauthorized Data Modification Vulnerability in GiveWP Donation Plugin
CVE-2024-5940WordpressGiveWP โ Donation Plug...5.3MEDIUMUnauthorized Access to Setup Wizard Administrative Pages
CVE-2024-5939WordpressGiveWP โ Donation Plug...5.3MEDIUMUnauthenticated PHP Object Injection Vulnerability in GiveWP Donation Plugin
CVE-2024-5932WordpressGiveWP โ Donation Plug...๐๐พ๐กEPSS 94%๐ฐ9.8CRITICAL