Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
v.26.4.2314

High Severity Vulnerabilities

Found 13196 vulnerabilities at High severity.

Vulnerability Name
CVE
CWE
Severity
WordPress Plugin WordPress Popular Posts Cross-Site Scripting (5.3.3)
CVE-2021-36872
CWE-79
High
WordPress Plugin WP DoNotTrack Cross-Site Scripting (0.8.8)
-
CWE-79
High
WordPress Plugin WP EasyPay-Square for WordPress Cross-Site Request Forgery (3.2.0)
-
CWE-352
High
WordPress Plugin WP Image Zoom Local File Inclusion (1.46)
CVE-2021-24447
CWE-22
High
WordPress Plugin WP Offload SES Lite Cross-Site Scripting (1.4.4)
CVE-2021-24494
CWE-79
High
WordPress Plugin WP SMS Cross-Site Scripting (5.4.9)
-
CWE-79
High
WordPress Plugin WP Upload Restriction Multiple Vulnerabilities (2.2.3)
CVE-2021-34627
CWE-264
High
WordPress Plugin WPCS-WordPress Currency Switcher Cross-Site Request Forgery (1.1.6)
CVE-2021-20780
CWE-352
High
WordPress Plugin WPFront Notification Bar Cross-Site Scripting (1.9.1.04012)
CVE-2021-24518
CWE-79
High
WordPress Plugin 10Web Map Builder for Google Maps Cross-Site Scripting (1.0.69)
-
CWE-79
High
WordPress Plugin Admin Custom Login Cross-Site Request Forgery (3.2.7)
CVE-2021-34628
CWE-352
High
WordPress Plugin Donation Forms by Charitable-Donations & Fundraising Platform for WordPress Cross-Site Scripting (1.6.50)
CVE-2021-24531
CWE-79
High
WordPress Plugin Contact Form 7 Captcha Cross-Site Request Forgery (0.0.8)
CVE-2021-24565
CWE-352
High
WordPress Plugin Cooked-Recipe Cross-Site Scripting (1.7.9)
-
CWE-79
High
WordPress Plugin Custom Login Redirect Cross-Site Request Forgery (1.0.0)
CVE-2021-24536
CWE-352
High
WordPress Plugin Elementor Addon Elements Cross-Site Request Forgery (1.11.7)
-
CWE-352
High
WordPress Plugin Giveaway SQL Injection (1.2.2)
CVE-2021-24497
CWE-89
High
WordPress Plugin GiveWP-Donation and Fundraising Platform Cross-Site Scripting (2.11.3)
CVE-2021-24524
CWE-79
High
WordPress Plugin Grid Gallery-Photo Image Grid Gallery Cross-Site Scripting (1.2.4)
CVE-2021-24529
CWE-79
High
WordPress Plugin HD Quiz Cross-Site Scripting (1.8.3)
CVE-2021-24571
CWE-79
High
WordPress Plugin HM Multiple Roles Security Bypass (1.2)
CVE-2021-24602
CWE-264
High
WordPress Plugin Light Messages Cross-Site Request Forgery (1.0)
CVE-2021-24535
CWE-352
High
WordPress Plugin LifterLMS-WP LMS for eLearning, Online Courses, & Quizzes Security Bypass (4.21.1)
CVE-2021-24562
CWE-264
High
WordPress Plugin Maintenance Cross-Site Scripting (4.02)
CVE-2021-24533
CWE-79
High
WordPress Plugin Membership & Content Restriction-Paid Member Subscriptions Multiple Vulnerabilities (2.4.1)
-
CWE-89
High
WordPress Plugin My Site Audit Cross-Site Scripting (1.2.4)
CVE-2021-24445
CWE-79
High
WordPress Plugin NewsPlugin Cross-Site Request Forgery (1.0.18)
CVE-2021-34631
CWE-352
High
WordPress Plugin NEX-Forms-The Ultimate WordPress Form Builder Security Bypass (7.8.7)
CVE-2021-34676
CWE-264
High
WordPress Plugin Nifty Newsletters (Formerly Sola Newsletters) Cross-Site Request Forgery (4.0.23)
CVE-2021-34634
CWE-352
High
WordPress Plugin Paid Membership, Ecommerce, Registration Form, Login Form, User Profile & Restrict Content-ProfilePress Cross-Site Scripting (3.1.10)
CVE-2021-24522
CWE-79
High
WordPress Plugin PhoneTrack Meu Site Manager Cross-Site Scripting (0.1)
CVE-2021-24534
CWE-79
High
WordPress Plugin Photo Gallery by 10Web-Mobile-Friendly Image Gallery Cross-Site Scripting (1.5.78)
-
CWE-79
High
WordPress Plugin Poll Maker Cross-Site Scripting (3.2.8)
CVE-2021-34635
CWE-79
High
WordPress Plugin Post Index Cross-Site Request Forgery (0.7.5)
CVE-2021-34637
CWE-352
High
WordPress Plugin User Profile Builder-Beautiful User Registration Forms, User Profiles & User Role Editor Security Bypass (3.4.8)
CVE-2021-24527
CWE-264
High
WordPress Plugin Quiz and Survey Master (QSM)-Easy Quiz and Survey Maker Cross-Site Scripting (7.1.13)
CVE-2021-20792
CWE-79
High
WordPress Plugin Qyrr-simply and modern QR-Code creation Cross-Site Scripting (0.6)
CVE-2021-24559
CWE-79
High
WordPress Plugin RestroPress-Online Food Ordering System Cross-Site Request Forgery (2.8.2)
-
CWE-352
High
WordPress Plugin RestroPress-Online Food Ordering System Security Bypass (2.8.3)
-
CWE-264
High
WordPress Plugin SendGrid Security Bypass (1.11.8)
CVE-2021-34629
CWE-264
High
WordPress Plugin SEO Backlinks Cross-Site Request Forgery (4.0.1)
CVE-2021-34632
CWE-352
High
WordPress Plugin Shantz WordPress QOTD Cross-Site Request Forgery (1.2.2)
CVE-2021-24380
CWE-352
High
WordPress Plugin Simple Banner Cross-Site Scripting (2.10.3)
CVE-2021-24574
CWE-79
High
WordPress Plugin Simple Post Cross-Site Scripting (1.1)
CVE-2021-24567
CWE-79
High
WordPress Plugin Simple Social Media Share Buttons-Social Sharing for Everyone Cross-Site Scripting (3.2.2)
CVE-2021-24486
CWE-79
High
WordPress Plugin Slider Hero with Animation, Video Background SQL Injection (8.2.6)
CVE-2021-24506
CWE-89
High
WordPress Plugin Social Tape Cross-Site Request Forgery (1.0)
CVE-2021-24411
CWE-352
High
WordPress Plugin Telugu Bible Verse Daily Cross-Site Request Forgery (1.0)
CVE-2021-24410
CWE-352
High
WordPress Plugin Translate WordPress-Google Language Translator Cross-Site Scripting (6.0.9)
-
CWE-79
High
WordPress Plugin Translate WordPress with GTranslate Cross-Site Scripting (2.8.64)
CVE-2021-34630
CWE-79
High
WordPress Plugin VDZ CallBack Cross-Site Scripting (1.14.5)
-
CWE-79
High
WordPress Plugin VDZ VERIFICATION (Custom Meta Tags) Cross-Site Scripting (1.3.12)
-
CWE-79
High
WordPress Plugin Verse-O-Matic Cross-Site Request Forgery (4.1.1)
CVE-2021-24466
CWE-352
High
WordPress Plugin VikRentCar Car Rental Management System Cross-Site Scripting (1.1.9)
CVE-2021-24519
CWE-79
High
WordPress Plugin Welcart e-Commerce Information Disclosure (2.2.7)
-
CWE-200
High
WordPress Plugin Wonder PDF Embed Cross-Site Scripting (1.6)
CVE-2021-24541
CWE-79
High
WordPress Plugin Wonder Video Embed Cross-Site Scripting (1.7)
CVE-2021-24540
CWE-79
High
WordPress Plugin WOOCS-Currency Switcher for WooCommerce Professional Local File Inclusion (1.3.6.2)
CVE-2021-24566
CWE-98
High
WordPress Plugin WP Block and Stop Bad Bots Crawlers and Spiders and Anti Spam Protection-StopBadBots SQL Injection (6.59)
-
CWE-89
High
WordPress Plugin WP Fusion Lite-Marketing Automation for WordPress Multiple Vulnerabilities (3.37.18)
CVE-2021-34661
CWE-352
High
WordPress Plugin WP Simple Booking Calendar SQL Injection (2.0.6)
-
CWE-89
High
WordPress Plugin WP SMS Cross-Site Scripting (5.4.12)
CVE-2021-24561
CWE-79
High
WordPress Plugin WPFront Scroll Top Cross-Site Scripting (2.0.5.07184)
CVE-2021-24564
CWE-79
High
WordPress Plugin WPFront Scroll Top Cross-Site Scripting (2.0.6.07225)
-
CWE-79
High
WordPress Plugin WPGraphQL Denial of Service (1.3.5)
CVE-2021-31157
CWE-400
High
WordPress Plugin YouTube Embed Cross-Site Scripting (5.2.1)
CVE-2021-24471
CWE-79
High
WordPress Plugin Youtube Feeder Cross-Site Request Forgery (2.0.1)
CVE-2021-34633
CWE-352
High
WordPress Plugin 2Way VideoCalls and Random Chat-HTML5 Webcam Videochat Cross-Site Scripting (5.2.7)
CVE-2021-34656
CWE-79
High
WordPress Plugin 3D Cover Carousel Cross-Site Scripting (1.0)
CVE-2021-38318
CWE-79
High
WordPress Plugin 3DPrint Lite Arbitrary File Upload (1.9.1.4)
-
CWE-434
High
WordPress Plugin 4k Icons for Visual Composer-Free Cross-Site Scripting (1.0)
CVE-2021-24435
CWE-79
High
WordPress Plugin Ad Blocker Notify Lite Cross-Site Scripting (2.4.0)
CVE-2021-24435
CWE-79
High
WordPress Plugin Add Product Tabs for WooCommerce Security Bypass (1.4.2)
-
CWE-264
High
WordPress Plugin AddToAny Share Buttons Cross-Site Scripting (1.7.45)
CVE-2021-24568
CWE-79
High
WordPress Plugin Advanced Search Cross-Site Scripting (1.1.2)
CVE-2021-38348
CWE-79
High