Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo

CMS

WordPress

WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system referred to within WordPress as Themes.

Official Site:

https://wordpress.org

Severity Summary:

Critical: 136 High: 508 Medium: 1729 Low: 18
Reference
Title
Severity
CVE-2014-9035
WordPress Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2014-9036
WordPress Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2014-9037
WordPress Cryptographic Issues Vulnerability
Medium
CVE-2014-9038
WordPress Improper Input Validation Vulnerability
Medium
CVE-2014-9039
WordPress 7PK - Security Features Vulnerability
Medium
CVE-2015-3440
WordPress Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2015-5623
WordPress Improper Access Control Vulnerability
Medium
CVE-2013-7233
WordPress Cross-Site Request Forgery (CSRF) Vulnerability
Medium
CVE-2012-3414
WordPress Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2015-3439
WordPress Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2012-3385
WordPress Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2011-3818
WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2011-4898
WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2012-0782
WordPress Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2012-0937
WordPress Vulnerability
Medium
CVE-2012-2401
WordPress Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2012-2402
WordPress Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2012-2403
WordPress Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2012-2404
WordPress Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2012-1936
WordPress Cross-Site Request Forgery (CSRF) Vulnerability
Medium
CVE-2011-4956
WordPress Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2011-4957
WordPress Improper Input Validation Vulnerability
Medium
CVE-2012-3384
WordPress Cross-Site Request Forgery (CSRF) Vulnerability
Medium
CVE-2010-5106
WordPress Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2013-2205
WordPress Configuration Vulnerability
Medium
CVE-2012-4421
WordPress Permissions Privileges and Access Controls Vulnerability
Medium
CVE-2012-4448
WordPress Cross-Site Request Forgery (CSRF) Vulnerability
Medium
CVE-2013-2173
WordPress Cryptographic Issues Vulnerability
Medium
CVE-2013-0235
WordPress Other Vulnerability
Medium
CVE-2013-0236
WordPress Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium