WordPress Wordpress Plugin Vulnerabilities
Wordpress Wordpress Plugin vulnerabilities.
Vulnerability Published:
🗓️ Published
- Anytime
Sort By:
🗓️ Published Date
- Descending
LearnPress <= 4.3.6 - Unauthenticated Sensitive Information Exposure via 'c_status' and 'return_type' Parameters
CVE-2026-8502WordPressLearnpress – WordPress...5.3MEDIUMCharitable <= 1.8.11.1 - Authenticated (Subscriber+) Insecure Direct Object Reference to Arbitrary Attachment Deletion via 'avatar' Parameter
CVE-2026-10038WordPressCharitable – Donation ...4.3MEDIUMServer-Side Request Forgery Vulnerability in Independent Analytics Plugin for WordPress
CVE-2026-5737WordPressIndependent Analytics ...6.5MEDIUMCross-Site Request Forgery Vulnerability in Zoho Mail Plugin for WordPress
CVE-2026-8174WordPressZoho Mail WordPress Pl...5.7MEDIUMMissing Authorization in AcyMailing Plugin for WordPress
CVE-2026-5200WordPressAcymailing – An Ultima...8.8HIGHSQL Injection Vulnerability in NEX-Forms – Ultimate Forms Plugin for WordPress
CVE-2026-7046WordPressNex-forms – Ultimate F...4.9MEDIUMPayment Bypass Vulnerability in LearnPress LMS Plugin for WordPress
CVE-2026-7648WordPressLearnpress – WordPress...4.3MEDIUMSQL Injection Vulnerability in Charitable Donation Plugin for WordPress
CVE-2026-7619WordPressCharitable – Donation ...6.5MEDIUMReflected Cross-Site Scripting Vulnerability in AAWP WordPress Plugin
CVE-2022-50970WordPressWordPress Plugin AaWP👾🟡5.1MEDIUMInformation Disclosure in Backup Migration Plugin for WordPress
CVE-2023-54346WordPressWordPress Plugin Backu...👾🟡8.7HIGHStored Cross-Site Scripting Vulnerability in NEX-Forms Plugin for WordPress
CVE-2026-5063WordPressNex-forms – Ultimate F...7.2HIGHAuthorization Bypass in FundPress Donation Plugin for WordPress
CVE-2026-4650WordPressFundpress – WordPress ...5.3MEDIUMSensitive Information Exposure in My Social Feeds Plugin for WordPress
CVE-2026-6446WordPressMy Social Feeds – Soci...5.4MEDIUMUnauthorized Data Modification in Total Upkeep Plugin by BoldGrid
CVE-2026-3143WordPressTotal Upkeep – WordPre...👾🟡5.3MEDIUMReflected Cross-Site Scripting in Multiple WordPress Plugins
CVE-2024-13362WordPressGo Fetch Jobs (for WP ...6.1MEDIUMPayment Bypass in Five Star Restaurant Reservations Plugin for WordPress
CVE-2026-6498WordPressFive Star Restaurant R...5.3MEDIUMMissing Authorization Vulnerability in ExactMetrics Google Analytics Dashboard for WordPress
CVE-2026-5488WordPressExactmetrics – Google ...5.3MEDIUMUnauthorized Plugin Installation in Google Analytics Dashboard for WordPress
CVE-2026-5464WordPressExactmetrics – Google ...7.2HIGHStored Cross-Site Scripting Vulnerability in wpDataTables Plugin for WordPress
CVE-2026-5721WordPressWPdatatables – WordPre...4.7MEDIUMStored Cross-Site Scripting in Youzify Plugin for WordPress
CVE-2026-1559WordPressYouzify – Buddypress C...6.4MEDIUMTime-based Blind SQL Injection in MasterStudy LMS WordPress Plugin
CVE-2026-4817WordPressMasterstudy Lms WordPr...6.5MEDIUMPrivilege Escalation Vulnerability in AcyMailing Plugin for WordPress
CVE-2026-3614WordPressAcymailing – An Ultima...8.8HIGHLocal File Inclusion Vulnerability in BackWPup Plugin for WordPress by BackWPup
CVE-2026-6227WordPressBackWPup – WordPress B...7.2HIGHUnauthorized Data Deletion in LearnPress Plugin for WordPress
CVE-2026-4365WordPressLearnpress – WordPress...9.1CRITICALStored Cross-Site Scripting Vulnerability in BlockArt Blocks Plugin for WordPress
CVE-2026-3498WordPressBlockart Blocks – Gute...6.4MEDIUM