Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo

CMS

WordPress

WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Features include a plugin architecture and a template system referred to within WordPress as Themes.

Official Site:

https://wordpress.org

Severity Summary:

Critical: 136 High: 508 Medium: 1729 Low: 18
Reference
Title
Severity
CVE-2017-14724
WordPress 3.9.x Multiple Vulnerabilities
Medium
CVE-2017-14718
WordPress 3.8.x Multiple Vulnerabilities
Medium
CVE-2017-14726
WordPress 3.9.x Multiple Vulnerabilities
Medium
CVE-2006-0733
WordPress Other Vulnerability
Low
CVE-2011-0700
WordPress Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Low
CVE-2009-3891
WordPress Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Low
CVE-2015-5622
WordPress Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Low
CVE-2010-0682
WordPress 2.9.1 Trashed Posts Security Bypass Vulnerability
Low
CVE-2007-1732
WordPress Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Low
CVE-2012-0287
WordPress Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Low
CVE-2014-5240
WordPress Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Low
CVE-2013-4340
WordPress Permissions Privileges and Access Controls Vulnerability
Low
CVE-2010-5297
WordPress Permissions Privileges and Access Controls Vulnerability
Low
CVE-2013-5739
WordPress Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Low
CVE-2007-4153
WordPress Other Vulnerability
Low
CVE-2020-4050
WordPress Authentication Bypass Using an Alternate Path or Channel Vulnerability
Low
CVE-2012-5868
WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Low
CVE-2007-5710
WordPress Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Low
CVE-2012-3383
WordPress Permissions Privileges and Access Controls Vulnerability
Low
CVE-2012-4422
WordPress Permissions Privileges and Access Controls Vulnerability
Low
CVE-2020-4049
WordPress Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) Vulnerability
Low