Web Application Vulnerabilities

This page lists 23441 vulnerabilities in 68 categories.

Critical: 1499 High: 12791 Medium: 8230 Low: 857 Information: 64

Vulnerability Name

CVE

CWE

Severity

WordPress Clickjacking Vulnerability (0.7 - 3.1.2)

CVE-2011-3127

CWE-693

High

WordPress Comment Post Cross-Site Scripting Vulnerability (2.0)

CVE-2006-0733

CWE-79

High

WordPress configuration file weak file permissions

-

CWE-16

Medium

WordPress Configuration Vulnerability (CVE-2009-2335)

CVE-2009-2335

-

Medium

WordPress Configuration Vulnerability (CVE-2009-2336)

CVE-2009-2336

-

Medium

WordPress Configuration Vulnerability (CVE-2013-2205)

CVE-2013-2205

-

Medium

WordPress Cookie Data PHP Code Injection Vulnerability (1.5 - 1.5.1.3)

CVE-2005-2612

CWE-94

High

WordPress Cookies Security Bypass Weakness (1.5 - 2.3.1)

CVE-2007-6013

CWE-287

High

WordPress Credentials Management Errors Vulnerability (CVE-2009-2762)

CVE-2009-2762

-

High

WordPress Credentials Management Errors Vulnerability (CVE-2016-5838)

CVE-2016-5838

-

High

WordPress Cross-Domain Flash Injection Vulnerability (0.70 - 3.6.1)

CVE-2018-5776

CWE-269

High

WordPress Cross-Site Request Forgery (0.70 - 3.6.1)

CVE-2019-9787

CWE-352

High

WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2007-4893)

CVE-2007-4893

CWE-352

Medium

WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-0198)

CVE-2008-0198

CWE-352

Medium

WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-5113)

CVE-2008-5113

CWE-352

Medium

WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2012-1936)

CVE-2012-1936

CWE-352

Medium

WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2012-3384)

CVE-2012-3384

CWE-352

Medium

WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2012-4448)

CVE-2012-4448

CWE-352

Medium

WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2013-7233)

CVE-2013-7233

CWE-352

Medium

WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-5204)

CVE-2014-5204

CWE-352

Medium

WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-5205)

CVE-2014-5205

CWE-352

Medium

WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-9033)

CVE-2014-9033

CWE-352

Medium

WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2015-5731)

CVE-2015-5731

CWE-352

Medium

WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2016-6635)

CVE-2016-6635

CWE-352

High

WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2016-6897)

CVE-2016-6897

CWE-352

Medium

WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-5489)

CVE-2017-5489

CWE-352

High

WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-5492)

CVE-2017-5492

CWE-352

High

WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-6819)

CVE-2017-6819

CWE-352

Medium

WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-9064)

CVE-2017-9064

CWE-352

High

WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-9787)

CVE-2019-9787

CWE-352

High

WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-28040)

CVE-2020-28040

CWE-352

Medium

WordPress Cross-Site Scripting Vulnerability (0.70 - 3.7.11)

CVE-2016-1564

CWE-79

High

WordPress Cross-Site Scripting Vulnerability (0.70 - 4.1.1)

CVE-2015-3438

CWE-79

High

WordPress Cross-Site Scripting Vulnerability (3.0 - 3.6.1)

CVE-2014-9031

CWE-79

High

WordPress Cross-Site Scripting Vulnerability (3.9 - 4.1.1)

CVE-2015-3439

CWE-79

High

WordPress Cross-Site Scripting Vulnerability (3.9.3 - 4.2)

CVE-2015-3440

CWE-79

High

WordPress Cryptographic Issues Vulnerability (CVE-2009-3622)

CVE-2009-3622

-

Medium

WordPress Cryptographic Issues Vulnerability (CVE-2013-2173)

CVE-2013-2173

-

Medium

WordPress Cryptographic Issues Vulnerability (CVE-2014-9037)

CVE-2014-9037

-

Medium

WordPress CVE-2006-4028 Vulnerability (CVE-2006-4028)

CVE-2006-4028

-

Critical

WordPress CVE-2008-6767 Vulnerability (CVE-2008-6767)

CVE-2008-6767

-

Critical

WordPress CVE-2011-3122 Vulnerability (CVE-2011-3122)

CVE-2011-3122

-

Critical

WordPress CVE-2011-3125 Vulnerability (CVE-2011-3125)

CVE-2011-3125

-

Critical

WordPress CVE-2011-4899 Vulnerability (CVE-2011-4899)

CVE-2011-4899

-

High

WordPress CVE-2012-0937 Vulnerability (CVE-2012-0937)

CVE-2012-0937

-

Medium

WordPress CVE-2012-2399 Vulnerability (CVE-2012-2399)

CVE-2012-2399

-

Critical

WordPress CVE-2012-2400 Vulnerability (CVE-2012-2400)

CVE-2012-2400

-

Critical

WordPress CVE-2014-5203 Vulnerability (CVE-2014-5203)

CVE-2014-5203

-

High

WordPress CVE-2016-5832 Vulnerability (CVE-2016-5832)

CVE-2016-5832

-

High

WordPress CVE-2016-5836 Vulnerability (CVE-2016-5836)

CVE-2016-5836

-

High

WordPress CVE-2016-5837 Vulnerability (CVE-2016-5837)

CVE-2016-5837

-

High

WordPress CVE-2016-5839 Vulnerability (CVE-2016-5839)

CVE-2016-5839

-

High

WordPress CVE-2017-1001000 Vulnerability (CVE-2017-1001000)

CVE-2017-1001000

-

High

WordPress CVE-2019-17673 Vulnerability (CVE-2019-17673)

CVE-2019-17673

-

High

WordPress CVE-2020-25286 Vulnerability (CVE-2020-25286)

CVE-2020-25286

-

Medium

WordPress CVE-2020-28033 Vulnerability (CVE-2020-28033)

CVE-2020-28033

-

High

WordPress CVE-2020-28039 Vulnerability (CVE-2020-28039)

CVE-2020-28039

-

Critical

WordPress CVE-2023-39999 Vulnerability (CVE-2023-39999)

CVE-2023-39999

-

Medium

WordPress CVE-2023-5561 Vulnerability (CVE-2023-5561)

CVE-2023-5561

-

Medium

WordPress Data Processing Errors Vulnerability (CVE-2014-9034)

CVE-2014-9034

-

Medium

WordPress database credentials disclosure

-

CWE-538

Medium

WordPress debug mode

-

CWE-200

High

WordPress default administrator account

-

CWE-16

Low

WordPress Denial of Service Vulnerability (0.70 - 3.6.1)

CVE-2018-6389

CWE-400

High

WordPress Denial of Service Vulnerability (3.5 - 3.6.1)

CVE-2014-5265

CWE-399

High

WordPress Deserialization of Untrusted Data Vulnerability (CVE-2018-19296)

CVE-2018-19296

CWE-502

High

WordPress Deserialization of Untrusted Data Vulnerability (CVE-2018-20148)

CVE-2018-20148

CWE-502

Critical

WordPress Deserialization of Untrusted Data Vulnerability (CVE-2020-28032)

CVE-2020-28032

CWE-502

Critical

WordPress Deserialization of Untrusted Data Vulnerability (CVE-2020-36326)

CVE-2020-36326

CWE-502

Critical

WordPress Deserialization of Untrusted Data Vulnerability (CVE-2022-21663)

CVE-2022-21663

CWE-502

High

WordPress Direct Request ('Forced Browsing') Vulnerability (CVE-2005-1688)

CVE-2005-1688

CWE-425

Medium

WordPress Directory Traversal (3.7 - 5.0.3)

CVE-2019-8943

CWE-22

High

WordPress Duplicator plugin Unauthenticated Arbitrary File Download

-

CWE-22

High

WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-0191)

CVE-2008-0191

CWE-200

Medium

WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2008-0195)

CVE-2008-0195

CWE-200

Medium

«
1
...
198
199
200
...
313
»