Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wordpress wordpress 1.2.5 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2024-0842
The Backuply – Backup, Restore, Migrate and Clone plugin for WordPress is vulnerable to Denial of Service in all versions up to, and including, 1.2.5. This is due to direct access of the backuply/restore_ins.php file and. This makes it possible for unauthenticated malicious...
Softaculous Backuply
NA
CVE-2013-3720
Cross-site scripting (XSS) vulnerability in widget_remove.php in the Feedweb plugin prior to 1.9 for WordPress allows remote authenticated administrators to inject arbitrary web script or HTML via the wp_post_id parameter.
Feedweb Feedweb
Feedweb Feedweb 1.0.4
Feedweb Feedweb 1.0.5
Feedweb Feedweb 1.0.6
Feedweb Feedweb 1.0.7
Feedweb Feedweb 1.0.8
Feedweb Feedweb 1.1.1
Feedweb Feedweb 1.1.4
Feedweb Feedweb 1.1.5
Feedweb Feedweb 1.1.6
Feedweb Feedweb 1.1.7
Feedweb Feedweb 1.1.9
Feedweb Feedweb 1.2
Feedweb Feedweb 1.2.1
Feedweb Feedweb 1.2.2
Feedweb Feedweb 1.2.3
Feedweb Feedweb 1.2.4
Feedweb Feedweb 1.2.5
Feedweb Feedweb 1.2.6
Feedweb Feedweb 1.2.7
Feedweb Feedweb 1.2.8
Feedweb Feedweb 1.2.9
NA
CVE-2024-2116
The Christmas Greetings plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the code parameter in all versions up to, and including, 1.2.5 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated malicious users t...
4.8
CVSSv3
CVE-2023-1869
The YourChannel plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in versions up to, and including, 1.2.5 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrative-level p...
Plugin Yourchannel
6.5
CVSSv3
CVE-2023-1471
The WP Popup Banners plugin for WordPress is vulnerable to SQL Injection via the 'banner_id' parameter in versions up to, and including, 1.2.5 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This ...
Wp Popup Banners Project Wp Popup Banners
NA
CVE-2012-4033
Multiple unspecified vulnerabilities in the Zingiri Web Shop plugin prior to 2.4.0 for WordPress have unknown impact and attack vectors.
Zingiri Zingiri Web Shop
Zingiri Zingiri Web Shop 1.0.0
Zingiri Zingiri Web Shop 1.0.1
Zingiri Zingiri Web Shop 1.0.2
Zingiri Zingiri Web Shop 1.0.3
Zingiri Zingiri Web Shop 1.0.4
Zingiri Zingiri Web Shop 1.1.0
Zingiri Zingiri Web Shop 1.1.1
Zingiri Zingiri Web Shop 1.2.0
Zingiri Zingiri Web Shop 1.2.1
Zingiri Zingiri Web Shop 1.2.2
Zingiri Zingiri Web Shop 1.2.3
Zingiri Zingiri Web Shop 1.2.4
Zingiri Zingiri Web Shop 1.2.5
Zingiri Zingiri Web Shop 1.2.6
Zingiri Zingiri Web Shop 1.2.7
Zingiri Zingiri Web Shop 1.2.8
Zingiri Zingiri Web Shop 1.2.9
Zingiri Zingiri Web Shop 1.3.0
Zingiri Zingiri Web Shop 1.3.0.1
Zingiri Zingiri Web Shop 1.3.1
Zingiri Zingiri Web Shop 1.3.2
8.8
CVSSv3
CVE-2015-2673
The ec_ajax_update_option and ec_ajax_clear_all_taxrates functions in inc/admin/admin_ajax_functions.php in the WP EasyCart plugin 1.1.30 up to and including 3.0.20 for WordPress allow remote malicious users to gain administrator privileges and execute arbitrary code via the opti...
Wpeasycart Wp Easycart 2.0.1
Wpeasycart Wp Easycart 1.2.16
Wpeasycart Wp Easycart 1.2.15
Wpeasycart Wp Easycart 1.2.14
Wpeasycart Wp Easycart 1.2.13
Wpeasycart Wp Easycart 1.2.12
Wpeasycart Wp Easycart 1.2.11
Wpeasycart Wp Easycart 1.2.10
Wpeasycart Wp Easycart 1.2.9
Wpeasycart Wp Easycart 1.2.8
Wpeasycart Wp Easycart 1.2.7
Wpeasycart Wp Easycart 1.2.6
Wpeasycart Wp Easycart 1.2.5
Wpeasycart Wp Easycart 1.2.4
Wpeasycart Wp Easycart 1.2.3
Wpeasycart Wp Easycart 1.2.2
Wpeasycart Wp Easycart 1.2.1
Wpeasycart Wp Easycart 1.2.0
Wpeasycart Wp Easycart 1.1.36
Wpeasycart Wp Easycart 1.1.35
Wpeasycart Wp Easycart 1.1.34
Wpeasycart Wp Easycart 1.1.33
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
server-side request forgery
CVE-2024-30067
CVE-2024-5553
CVE-2024-30095
IDOR
CVE-2024-35252
CVE-2024-23692
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7