v.26.4.2314

High Severity Vulnerabilities

Found 13196 vulnerabilities at High severity.

Vulnerability Name

CVE

CWE

Severity

WordPress Plugin YITH Product Size Charts for WooCommerce Security Bypass (1.1.11)

CVE-2019-16251

CWE-264

High

WordPress Plugin YITH WooCommerce Added to Cart Popup Security Bypass (1.3.11)

CVE-2019-16251

CWE-264

High

WordPress Plugin YITH WooCommerce Advanced Reviews Security Bypass (1.3.9)

CVE-2019-16251

CWE-264

High

WordPress Plugin YITH WooCommerce Affiliates Security Bypass (1.6.3)

CVE-2019-16251

CWE-264

High

WordPress Plugin YITH WooCommerce Ajax Search Security Bypass (1.6.9)

CVE-2019-16251

CWE-264

High

WordPress Plugin YITH WooCommerce Authorize.net Payment Gateway Security Bypass (1.1.12)

CVE-2019-16251

CWE-264

High

WordPress Plugin YITH WooCommerce Badge Management Security Bypass (1.3.19)

CVE-2019-16251

CWE-264

High

WordPress Plugin YITH WooCommerce Best Sellers Security Bypass (1.1.11)

CVE-2019-16251

CWE-264

High

WordPress Plugin YITH WooCommerce Brands Add-On Security Bypass (1.3.6)

CVE-2019-16251

CWE-264

High

WordPress Plugin YITH WooCommerce Bulk Product Editing Security Bypass (1.2.13)

CVE-2019-16251

CWE-264

High

WordPress Plugin YITH WooCommerce Cart Messages Security Bypass (1.4.3)

CVE-2019-16251

CWE-264

High

WordPress Plugin YITH WooCommerce Compare Security Bypass (2.3.13)

CVE-2019-16251

CWE-264

High

WordPress Plugin YITH WooCommerce Frequently Bought Together Security Bypass (1.2.10)

CVE-2019-16251

CWE-264

High

WordPress Plugin YITH WooCommerce Gift Cards Security Bypass (1.3.7)

CVE-2019-16251

CWE-264

High

WordPress Plugin YITH WooCommerce Mailchimp Security Bypass (2.1.3)

CVE-2019-16251

CWE-264

High

WordPress Plugin YITH WooCommerce Multi-step Checkout Security Bypass (1.7.4)

CVE-2019-16251

CWE-264

High

WordPress Plugin YITH WooCommerce Multi Vendor Security Bypass (3.4.0)

CVE-2019-16251

CWE-264

High

WordPress Plugin YITH WooCommerce Order Tracking Security Bypass (1.2.10)

CVE-2019-16251

CWE-264

High

WordPress Plugin YITH WooCommerce PDF Invoice and Shipping List Security Bypass (1.2.12)

CVE-2019-16251

CWE-264

High

WordPress Plugin YITH WooCommerce Points and Rewards Security Bypass (1.3.4)

CVE-2019-16251

CWE-264

High

WordPress Plugin YITH WooCommerce Product Add-Ons Security Bypass (1.5.21)

CVE-2019-16251

CWE-264

High

WordPress Plugin YITH WooCommerce Product Bundles Security Bypass (1.1.15)

CVE-2019-16251

CWE-264

High

WordPress Plugin YITH WooCommerce Questions and Answers Security Bypass (1.1.9)

CVE-2019-16251

CWE-264

High

WordPress Plugin YITH WooCommerce Quick View Security Bypass (1.3.13)

CVE-2019-16251

CWE-264

High

WordPress Plugin YITH WooCommerce Recover Abandoned Cart Security Bypass (1.3.2)

CVE-2019-16251

CWE-264

High

WordPress Plugin YITH WooCommerce Request A Quote Security Bypass (1.4.7)

CVE-2019-16251

CWE-264

High

WordPress Plugin YITH WooCommerce Social Login Security Bypass (1.3.4)

CVE-2019-16251

CWE-264

High

WordPress Plugin YITH WooCommerce Stripe Security Bypass (2.0.1)

CVE-2019-16251

CWE-264

High

WordPress Plugin YITH WooCommerce Subscription Security Bypass (1.3.4)

CVE-2019-16251

CWE-264

High

WordPress Plugin YITH WooCommerce Waiting List Security Bypass (1.3.9)

CVE-2019-16251

CWE-264

High

WordPress Plugin YITH WooCommerce Wishlist Security Bypass (2.2.13)

CVE-2019-16251

CWE-264

High

WordPress Plugin YITH WooCommerce Zoom Magnifier Security Bypass (1.3.11)

CVE-2019-16251

CWE-264

High

WordPress Plugin AdRoll for WooCommerce Stores Unspecified Vulnerability (2.2.5)

-

-

High

WordPress Plugin CSS Hero Cross-Site Scripting (4.03)

CVE-2019-19133

CWE-79

High

WordPress Plugin JVM WooCommerce Wishlist Unspecified Vulnerability (1.2.6)

-

-

High

WordPress Plugin Quiz and Survey Master (QSM)-Easy Quiz and Survey Maker Cross-Site Scripting (6.3.4)

CVE-2019-17599

CWE-79

High

WordPress Plugin Quiz and Survey Master (QSM)-Easy Quiz and Survey Maker Unspecified Vulnerability (6.3.5)

-

-

High

WordPress Plugin Rencontre-Dating Site Multiple Vulnerabilities (3.2.1)

-

CWE-89

High

WordPress Plugin Scoutnet Kalender Cross-Site Scripting (1.1.0)

CVE-2019-19198

CWE-79

High

WordPress Plugin Ultimate Addons for Beaver Builder Security Bypass (1.24.0)

-

CWE-287

High

WordPress Plugin Ultimate Addons for Elementor Security Bypass (1.20.0)

-

CWE-287

High

WordPress Plugin WooCommerce PayU India (PayUmoney-PayUbiz) Parameter Tampering (2.1.1)

CVE-2019-14978

CWE-472

High

WordPress Plugin WP Spell Check Cross-Site Request Forgery (7.1.9)

CVE-2019-6027

CWE-352

High

WordPress Plugin 301 Redirects-Easy Redirect Manager Security Bypass (2.40)

CVE-2019-19915

CWE-264

High

WordPress Plugin AccessAlly PHP Code Execution (3.3.1)

-

CWE-94

High

WordPress Plugin ARForms:Wordpress Form Builder Arbitrary File Deletion (3.7.1)

CVE-2019-16902

CWE-73

High

WordPress Plugin Awesome Support-WordPress HelpDesk & Support Cross-Site Scripting (5.8.0)

CVE-2019-20181

CWE-79

High

WordPress Plugin Backup and Staging by WP Time Capsule Security Bypass (1.21.15)

CVE-2020-8771

CWE-287

High

WordPress Plugin Batch-Move Posts Unspecified Vulnerability (1.5)

-

-

High

WordPress Plugin bbPress Login Register Links On Forum Topic Pages Cross-Site Request Forgery (2.7.5)

-

CWE-352

High

WordPress Plugin bbPress Members Only Cross-Site Request Forgery (1.2.1)

-

CWE-352

High

WordPress Plugin Best Image Gallery & Responsive Photo Gallery-FooGallery Cross-Site Scripting (1.8.14)

CVE-2019-20182

CWE-79

High

WordPress Plugin Calculated Fields Form Cross-Site Scripting (1.0.353)

CVE-2020-7228

CWE-79

High

WordPress Plugin Chained Quiz Cross-Site Scripting (1.1.8.1)

CVE-2020-7104

CWE-79

High

WordPress Plugin Chatbot with IBM Watson Cross-Site Scripting (0.8.20)

CVE-2020-7239

CWE-79

High

WordPress Plugin Code Snippets Cross-Site Request Forgery (2.13.3)

CVE-2020-8417

CWE-352

High

WordPress Plugin Computer Repair Shop Cross-Site Scripting (1.0)

-

CWE-79

High

WordPress Plugin Contextual Adminbar Color Cross-Site Scripting (0.2)

-

CWE-79

High

WordPress Plugin Divi Builder PHP Code Injection (4.0.9)

-

CWE-95

High

WordPress Plugin Donorbox-Free Recurring Donation Form Cross-Site Scripting (7.1.1)

-

CWE-79

High

WordPress Plugin Elementor Website Builder Cross-Site Scripting (2.7.5)

-

CWE-79

High

WordPress Plugin Elementor Website Builder Cross-Site Scripting (2.8.4)

CVE-2020-8426

CWE-79

High

WordPress Plugin Email Subscribers by Icegram Express-Email Marketing, Newsletters, Automation for WordPress & WooCommerce Unspecified Vulnerability (4.3.4)

-

-

High

WordPress Plugin Flamingo CSV Injection (2.1)

-

CWE-20

High

WordPress Plugin GDPR Cookie Compliance Security Bypass (4.0.2)

-

CWE-264

High

WordPress Plugin GistPress Cross-Site Scripting (3.0.1)

CVE-2020-8498

CWE-79

High

WordPress Plugin Image Gallery-Responsive Photo Gallery SQL Injection (1.8.9)

CVE-2016-11018

CWE-89

High

WordPress Plugin Images Slideshow by 2J-Image Slider Security Bypass (1.3.31)

-

CWE-264

High

WordPress Plugin Import and export users and customers Security Bypass (1.15)

-

CWE-264

High

WordPress Plugin InfiniteWP Client Security Bypass (1.9.4.4)

CVE-2020-8772

CWE-287

High

WordPress Plugin LearnDash LMS Cross-Site Scripting (3.1.1.1)

CVE-2020-7108

CWE-79

High

WordPress Plugin Marketo Forms and Tracking Cross-Site Request Forgery (1.0.2)

CVE-2020-6849

CWE-352

High

WordPress Plugin Minimal Coming Soon & Maintenance Mode-Coming Soon Page Cross-Site Request Forgery (2.10)

CVE-2020-6168

CWE-352

High

WordPress Plugin Minimal Coming Soon & Maintenance Mode-Coming Soon Page Security Bypass (2.15)

CVE-2020-6166

CWE-264

High

WordPress Plugin PDF Embedder Security Bypass (4.4)

CVE-2019-19589

CWE-264

High