WordPress To Top Vulnerabilities

Wordpress To Top vulnerabilities.

3 March 2025

Cross-site Scripting Vulnerability in NotFound Top Bar – PopUps by WPOptin
CVE-2025-25118
WordPressTop Bar – Popups – By ...7.1HIGH

14 February 2025

Cross-site Scripting Vulnerability in NotFound Scroll Top Plugin
CVE-2025-23651
WordPressScroll Top7.1HIGH

16 January 2025

Cross-Site Scripting in Top Flash Embed by Nikos M. Top
CVE-2025-23841
WordPressTop Flash Embed6.5MEDIUM
Stored Cross-site Scripting Vulnerability in Scroll Top Advanced Plugin by Nasir
CVE-2025-23444
WordPressScroll Top Advanced6.5MEDIUM

12 December 2024

9 December 2024

WebberZone Top 10 Vulnerable to Missing Authorization
CVE-2023-25993
WordPressTop 104.3MEDIUM

2 December 2024

9 November 2024

Unauthorized Plugin Installation Vulnerability Affects Top Store WordPress Theme
CVE-2024-10673
WordpressTop StoreEPSS 38%8.8HIGH

16 October 2024

Freemius SDK Vulnerabilities Affect Hundreds of WordPress Plugins and Themes
CVE-2022-4974
WordpressYasr – Yet Another Sta...6.3MEDIUM

2 October 2024

Mailchimp Top Bar Plugin Vulnerable to Reflected Cross-Site Scripting
CVE-2024-9210
WordpressMc4WP: Mailchimp Top Bar6.1MEDIUM

9 July 2024

ScrollTo Top <= 1.2.2 - Cross-Site Request Forgery to Arbitrary File Upload
CVE-2024-6320
WordpressScrollto Top8.8HIGH

14 May 2024

Stored XSS Vulnerability in Brozzme Scroll Top
CVE-2024-34426
WordPressBrozzme Scroll Top5.9MEDIUM

15 April 2024

Unfiltered HTML Setting Vulnerability in Top Bar WordPress Plugin Allows Stored Cross-Site Scripting Attacks
CVE-2024-1660
WordpressTop Bar👾🟡

11 April 2024

Stored XSS Vulnerability in WP Darko Top Bar
CVE-2024-31928
WordPressTop Bar5.9MEDIUM

9 November 2023

WordPress Top 10 Plugin <= 3.3.2 is vulnerable to Cross Site Request Forgery (CSRF)
CVE-2023-47238
WordPressTop 10 – WordPress Pop...8.8HIGH

8 November 2023

WordPress Download Top 25 Social Icons Plugin <= 3.1 is vulnerable to Cross Site Scripting (XSS)
CVE-2023-47229
WordPressTop 25 Social Icons5.4MEDIUM

2 October 2023

WordPress Back To The Top Button Plugin <= 2.1.5 is vulnerable to Cross Site Scripting (XSS)
CVE-2023-41733
WordPressBack To The Top Button5.9MEDIUM

12 July 2023

Cross-Site Request Forgery in Top 10 WordPress Plugin by WordPress
CVE-2020-36761
WordpressTop 10 – Popular Post...4.3MEDIUM

15 April 2023

Google Analytics Top Content Widget Plugin class-tgm-plugin-activation.php cross site scripting
CVE-2015-10101
WordpressGoogle Analytics Top C...3.5LOW

23 March 2023

WordPress Top 10 Plugin <= 3.2.4 is vulnerable to Cross Site Scripting (XSS)
CVE-2023-26008
WordPressTop 10 – Popular Posts...5.9MEDIUM

23 January 2023

Top 10 < 3.2.3 - Contributor+ Stored XSS
CVE-2022-4570
WordpressTop 10👾🟡5.4MEDIUM

10 October 2022

Top Bar < 3.0.4 - Admin+ Stored Cross-Site Scripting
CVE-2022-2629
WordpressTop Bar4.8MEDIUM

19 September 2022

Scroll To Top < 1.4.1 - Admin+ Stored Cross-Site Scripting
CVE-2022-2710
WordpressScroll To Top4.8MEDIUM