Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo

CMS

WordPress

WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system referred to within WordPress as Themes.

Official Site:

https://wordpress.org

Severity Summary:

Critical: 136 High: 508 Medium: 1729 Low: 18
Reference
Title
Severity
CVE-2017-5488
WordPress Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2017-5490
WordPress Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2017-5491
WordPress Insecure Default Initialization of Resource Vulnerability
Medium
CVE-2016-10148
WordPress 7PK - Security Features Vulnerability
Medium
CVE-2016-6897
WordPress Cross-Site Request Forgery (CSRF) Vulnerability
Medium
CVE-2017-5610
WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2017-5612
WordPress Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2011-3128
WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2011-3126
WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2008-4107
WordPress 2.6.1 Lost Password SQL Column Truncation Unauthorized Access Vulnerability
Medium
CVE-2005-2107
WordPress Other Vulnerability
Medium
CVE-2019-20042
WordPress Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2020-11025
WordPress Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2020-11030
WordPress Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2020-25286
WordPress Vulnerability
Medium
CVE-2021-29447
WordPress Improper Restriction of XML External Entity Reference Vulnerability
Medium
CVE-2021-29450
WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2004-1584
WordPress Other Vulnerability
Medium
CVE-2004-1559
WordPress Other Vulnerability
Medium
CVE-2005-1102
WordPress Other Vulnerability
Medium
CVE-2005-2110
WordPress Other Vulnerability
Medium
CVE-2005-2109
WordPress Other Vulnerability
Medium
CVE-2005-4463
WordPress Other Vulnerability
Medium
CVE-2019-17674
WordPress Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2006-0986
WordPress Other Vulnerability
Medium
CVE-2006-0985
WordPress Other Vulnerability
Medium
CVE-2006-1263
WordPress Other Vulnerability
Medium
CVE-2006-1796
WordPress Other Vulnerability
Medium
CVE-2006-2702
WordPress Other Vulnerability
Medium
CVE-2006-3390
WordPress Other Vulnerability
Medium