Every tracked vulnerability, newest first
Unauthenticated Cross Site Scripting (XSS) in ReviewX <= 2.3.10 versions
Editor Arbitrary Code Execution in Five Star Business Profile and Schema <= 2.3.19 versions
Unauthenticated Broken Access Control in NOWPayments for WooCommerce <= 1.4.0 versions
Unauthenticated Local File Inclusion in Audrey <= 1.5 versions
Customer Path Traversal in Tax Exempt for WooCommerce <= 1.9.3 versions
Unauthenticated Cross Site Scripting (XSS) in eCommerce Product Catalog <= 3.5.4 versions
Unauthenticated Cross Site Scripting (XSS) in Survey Maker <= 5.2.2.5 versions
Unauthenticated Cross Site Scripting (XSS) in ChatBot <= 8.3.2 versions
Unauthenticated Cross Site Scripting (XSS) in WPAdverts <= 2.3.1 versions
Unauthenticated Cross Site Scripting (XSS) in Modula - PRO <= 2.10.8 versions
Unauthenticated PHP Object Injection in Booktics <= 1.0.21 versions
Unauthenticated Arbitrary Code Execution in W3 Total Cache <= 2.9.4 versions
Unauthenticated Remote Code Execution (RCE) in Blocksy Companion Pro <= 2.1.46 versions
Unauthenticated Cross Site Scripting (XSS) in Admin and Site Enhancements (ASE) Pro <= 8.8.5 versions
Subscriber Broken Access Control in Advanced Contact form 7 DB <= 2.0.9 versions
Unauthenticated Cross Site Scripting (XSS) in Google Maps CP <= 1.2.5 versions
Unauthenticated Cross Site Scripting (XSS) in perfmatters <= 2.6.4 versions
Unauthenticated Cross Site Scripting (XSS) in wpDataTables <= 6.5.1.1 versions
Unauthenticated Cross Site Scripting (XSS) in Optimole <= 4.2.7 versions
Unauthenticated Cross Site Scripting (XSS) in Timetics <= 1.0.58 versions