Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Web Application Vulnerabilities

This page lists 23441 vulnerabilities in 68 categories.

Critical: 1499 High: 12791 Medium: 8230 Low: 857 Information: 64
Vulnerability Name
CVE
CWE
Severity
WordPress Plugin WordPress Connect Cross-Site Scripting (2.0.3)
-
CWE-79
High
WordPress Plugin WordPress Console Security Bypass (0.3.9)
CVE-2023-28168
CWE-862
High
WordPress Plugin WordPress Contact Forms by Cimatti Cross-Site Scripting (1.4.11)
CVE-2021-24744
CWE-79
High
WordPress Plugin WordPress Content Slide Multiple Vulnerabilities (1.4.2)
CVE-2013-2708
CWE-352
High
WordPress Plugin Wordpress Countdown Widget Cross-Site Scripting (3.1.9.2)
CVE-2022-2944
CWE-79
High
WordPress Plugin WordPress Custom Global Variable Unspecified Vulnerability (3.0.0)
-
-
High
WordPress Plugin WordPress Custom Settings Cross-Site Scripting (1.0)
CVE-2023-23806
CWE-79
High
WordPress Plugin WordPress Download Manager 'cid' Parameter Cross-Site Scripting (2.2.2)
-
CWE-79
High
WordPress Plugin WordPress Download Manager Arbitrary File Upload (2.8.97)
-
CWE-434
High
WordPress Plugin WordPress Download Manager Cross-Site Request Forgery (2.8.99)
-
CWE-352
High
WordPress Plugin WordPress Download Manager Cross-Site Request Forgery (2.9.60)
-
CWE-352
High
WordPress Plugin WordPress Download Manager Cross-Site Request Forgery (3.2.12)
-
CWE-352
High
WordPress Plugin WordPress Download Manager Cross-Site Scripting (2.5.8)
CVE-2013-7319
CWE-79
High
WordPress Plugin WordPress Download Manager Cross-Site Scripting (2.7.94)
-
CWE-79
High
WordPress Plugin WordPress Download Manager Cross-Site Scripting (2.9.51)
CVE-2017-18032
CWE-79
High
WordPress Plugin WordPress Download Manager Cross-Site Scripting (2.9.86)
-
CWE-79
High
WordPress Plugin WordPress Download Manager Cross-Site Scripting (2.9.93)
CVE-2019-15889
CWE-79
High
WordPress Plugin WordPress Download Manager Cross-Site Scripting (3.2.15)
CVE-2021-24773
CWE-79
High
WordPress Plugin WordPress Download Manager Cross-Site Scripting (3.2.21)
CVE-2021-24969
CWE-79
High
WordPress Plugin WordPress Download Manager Directory Traversal (2.6.95)
CVE-2014-8585
CWE-22
High
WordPress Plugin WordPress Download Manager Multiple Security Bypass Vulnerabilities (2.6.92)
-
CWE-284
High
WordPress Plugin WordPress Download Manager Multiple Vulnerabilities (2.8.7)
-
CWE-538
High
WordPress Plugin WordPress Download Manager Multiple Vulnerabilities (2.9.49)
CVE-2017-2217
CWE-601
High
WordPress Plugin WordPress Download Manager Multiple Vulnerabilities (3.1.24)
CVE-2021-34639
CWE-434
High
WordPress Plugin WordPress Download Manager Open Redirect (2.9.50)
CVE-2017-2217
CWE-601
High
WordPress Plugin WordPress Download Manager Remote Code Execution (2.7.4)
-
CWE-94
High
WordPress Plugin WordPress Download Manager Security Bypass (2.7.2)
CVE-2014-9260
CWE-264
High
WordPress Plugin WordPress Download Manager Unspecified Vulnerability (2.9.96)
-
-
High
WordPress Plugin WordPress Download Manager Unspecified Vulnerability (3.1.18)
-
-
High
WordPress Plugin WordPress Easy Custom Js And Css Cross-Site Scripting (1.1.2)
-
CWE-79
High
WordPress Plugin WordPress Email Marketing-WP Email Capture Multiple Vulnerabilities (3.9.3)
CVE-2023-23724
CWE-352
High
WordPress Plugin WordPress Email Template Designer-WP HTML Mail Cross-Site Request Forgery (3.0.6)
CVE-2021-20779
CWE-352
High
WordPress Plugin WordPress Email Template Designer-WP HTML Mail Cross-Site Scripting (3.0.9)
CVE-2022-0218
CWE-79
High
WordPress Plugin WordPress Email Template Designer-WP HTML Mail HTML Injection (2.9.0.3)
-
CWE-79
High
WordPress Plugin WordPress Facebook Multiple Cross-Site Scripting Vulnerabilities (1.0.10)
CVE-2015-1582
CWE-79
High
WordPress Plugin WordPress Facebook SQL Injection (1.0.13)
-
CWE-89
High
WordPress Plugin WordPress Facebook SQL Injection (1.0.8)
-
CWE-89
High
WordPress Plugin WordPress fancyBox Lightbox Cross-Site Scripting (1.0.1)
-
CWE-79
High
WordPress Plugin WordPress File Monitor Cross-Site Scripting (2.3.3)
-
CWE-79
High
WordPress Plugin WordPress File Upload Arbitrary File Upload (3.4.0)
-
CWE-434
High
WordPress Plugin WordPress File Upload Arbitrary File Upload (3.8.5)
-
CWE-434
High
WordPress Plugin WordPress File Upload Cross-Site Request Forgery (2.4.1)
CVE-2014-5199
CWE-352
High
WordPress Plugin WordPress File Upload Cross-Site Scripting (4.3.2)
CVE-2018-9172
CWE-79
High
WordPress Plugin WordPress File Upload Cross-Site Scripting (4.3.3)
CVE-2018-9844
CWE-79
High
WordPress Plugin WordPress File Upload Directory Traversal (4.12.2)
CVE-2020-10564
CWE-22
High
WordPress Plugin WordPress File Upload Multiple Unspecified Vulnerabilities (3.10.0)
-
-
High
WordPress Plugin WordPress File Upload Multiple Vulnerabilities (2.7.6)
-
CWE-434
High
WordPress Plugin WordPress Filter Gallery Cross-Site Scripting (0.1.5)
CVE-2022-4142
CWE-79
High
WordPress Plugin WordPress Filter Gallery Security Bypass (0.0.6)
-
CWE-284
High
WordPress Plugin WordPress Firewall 2 Multiple Vulnerabilities (1.3)
-
CWE-352
High
WordPress Plugin WordPress Form Customizer-CF7 Customizer Cross-Site Scripting (1.6.1)
CVE-2021-24435
CWE-79
High
WordPress Plugin Wordpress Forms Multiple Vulnerabilities (0.2.7.1)
-
CWE-915
High
WordPress Plugin WordPress Framework Possible Backdoor (1.0)
-
CWE-95
High
WordPress Plugin WordPress Gallery Cross-Site Scripting (1.0)
-
CWE-79
High
WordPress Plugin WordPress Gallery MaxGalleria Unspecified Vulnerability (6.0.8)
-
-
High
WordPress Plugin WordPress Gallery-NextGEN Gallery Cross-Site Request Forgery (3.28)
CVE-2022-38468
CWE-352
High
WordPress Plugin WordPress Geo-CF Geo Cross-Site Scripting (7.13.11)
-
CWE-79
High
WordPress Plugin WordPress Infinite Scroll-Ajax Load More Arbitrary File Upload (2.8.1.1)
-
CWE-434
High
WordPress Plugin WordPress Infinite Scroll-Ajax Load More Cross-Site Scripting (5.6.0.2)
CVE-2022-4466
CWE-79
High
WordPress Plugin WordPress Infinite Scroll-Ajax Load More Directory Traversal (5.5.4)
-
CWE-22
High
WordPress Plugin WordPress Infinite Scroll-Ajax Load More Local File Inclusion (2.11.1)
-
CWE-22
High
WordPress Plugin WordPress Infinite Scroll-Ajax Load More Multiple Vulnerabilities (5.5.3)
CVE-2022-2945
CWE-538
High
WordPress Plugin WordPress Infinite Scroll-Ajax Load More SQL Injection (5.3.1)
CVE-2021-24140
CWE-89
High
WordPress Plugin WordPress Infinite Scroll-Ajax Load More Unspecified Vulnerability (2.11.0)
-
-
High
WordPress Plugin WordPress InviteBox for viral Refer-a-Friend Promotions Cross-Site Scripting (1.4.1)
CVE-2021-38359
CWE-79
High
WordPress Plugin WordPress Landing Page-Squeeze Page-Responsive Landing Page Builder Free-WP Lead Plus X Multiple Vulnerabilities (0.98)
CVE-2020-11509
CWE-352
High
WordPress Plugin WordPress Landing Pages Cross-Site Scripting (1.8.5)
-
CWE-79
High
WordPress Plugin WordPress Landing Pages Cross-Site Scripting (1.8.7)
-
CWE-79
High
WordPress Plugin WordPress Landing Pages Cross-Site Scripting (2.2.4)
-
CWE-79
High
WordPress Plugin WordPress Landing Pages Multiple Unspecified Vulnerabilities (1.7.8)
-
-
High
WordPress Plugin WordPress Landing Pages Multiple Vulnerabilities (1.8.4)
CVE-2015-4065
CWE-89
High
WordPress Plugin WordPress Landing Pages Remote Code Execution (1.9.0)
CVE-2015-5227
CWE-94
High
WordPress Plugin WordPress Landing Pages SQL Injection (1.2.1)
CVE-2013-6243
CWE-89
High
WordPress Plugin WordPress Landing Pages Unspecified Vulnerability (1.8.1)
-
-
High
WordPress Plugin WordPress Landing Pages Unspecified Vulnerability (2.0.2)
-
-
High