Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

Missing Update

This page lists 22224 vulnerabilities in this category.

Critical: 1394 High: 12186 Medium: 7891 Low: 749 Information: 4
Vulnerability Name
CVE
CWE
Severity
WordPress Plugin SFBrowser 'sfbrowser.php' Arbitrary File Upload (1.4.5)
-
CWE-434
High
WordPress Plugin Theme My Login 'instance' Parameter Cross-Site Scripting (6.1.4)
-
CWE-79
High
WordPress Plugin Schreikasten 'name' or 'contact' Field Cross-Site Scripting (0.14.13)
-
CWE-79
High
WordPress Plugin Royal Gallery 'upload.php' Arbitrary File Upload (2.1)
-
CWE-434
High
WordPress Plugin RBX Gallery 'uploader.php' Arbitrary File Upload (2.1)
CVE-2012-3575
CWE-434
High
WordPress Plugin Powerplay Gallery 'upload.php' Arbitrary File Upload (3.2)
-
CWE-434
High
WordPress Plugin Edwiser Bridge-WordPress Moodle LMS Integration Unspecified Vulnerability (2.0.7)
-
-
High
WordPress Plugin Plugin:Newsletter 'data' Parameter Information Disclosure (1.5)
CVE-2012-3588
CWE-22
High
WordPress Plugin TheCartPress eCommerce Shopping Cart Order Information Security Bypass (1.1.9.2)
-
CWE-264
High
WordPress Plugin Thinkun Remind 'dirPath' Parameter Information Disclosure (1.1.3)
-
CWE-22
High
WordPress Plugin PICA Photo Gallery 'picaPhotosResize.php' Arbitrary File Upload (1.0)
-
CWE-434
High
WordPress Plugin WP Easy Gallery 'add-gallery.php' Arbitrary File Upload (1.8)
-
CWE-434
High
WordPress Plugin wp superb Slideshow 'upload.php' Arbitrary File Upload (2.2)
-
CWE-434
High
WordPress Plugin WP-Property-WordPress Powered Real Estate and Property Management Arbitrary File Upload (1.35.0)
-
CWE-434
High
WordPress Plugin WP Mass Mail Open Email Relay (2.45)
-
CWE-264
High
WordPress Plugin WP Marketplace-Complete Shopping Cart/eCommerce Solution 'uploadify.php' Arbitrary File Upload (1.6.1)
-
CWE-434
High
WordPress Plugin Wp-ImageZoom 'file' Parameter Information Disclosure (1.0.3)
-
CWE-22
High
WordPress Plugin WP GPX Maps 'wp-gpx-maps_admin_tracks.php' Arbitrary File Upload (1.1.22)
CVE-2012-6649
CWE-434
High
WordPress Plugin wp Dreamwork Gallery 'upload.php' Arbitrary File Upload (2.1)
-
CWE-434
High
WordPress Plugin Tinymce Thumbnail Gallery 'href' Parameter Information Disclosure (1.0.7)
-
CWE-22
High
WordPress Plugin Website FAQ 'website-faq-widget.php' SQL Injection (1.0)
-
CWE-89
High
WordPress Plugin VideoWhisper Video Presentation 'vw_upload.php' Arbitrary File Upload (3.17)
-
CWE-434
High
WordPress Plugin VideoWhisper Video Conference Integration 'vw_upload.php' Arbitrary File Upload (4.51)
-
CWE-434
High
WordPress Plugin VIDEO GALLERY 'upload1.php' Arbitrary File Upload (1.3)
-
CWE-434
High
WordPress Plugin Vertical SlideShow 'upload.php' Arbitrary File Upload (2.1)
-
CWE-434
High
WordPress Plugin User Meta 'uploader.php' Arbitrary File Upload (1.1.1)
-
CWE-434
High
WordPress Plugin Top Quark Architecture 'script.php' Arbitrary File Upload (2.1.0)
-
CWE-434
High
WordPress Plugin Picturesurf Gallery 'upload.php' Arbitrary File Upload (1.2)
-
CWE-434
High
WordPress Plugin PICA Photo Gallery 'imgname' Parameter Information Disclosure (1.0)
-
CWE-22
High
WordPress Plugin Zingiri Web Shop 'uploadfilexd.php' Arbitrary File Upload (2.4.3)
-
CWE-434
High
WordPress Plugin FCChat Widget 'Upload.php' Arbitrary File Upload (2.2.13.1)
CVE-2012-3578
CWE-264
High
WordPress Plugin Frontend File Manager Arbitrary File Upload (1.8)
-
CWE-434
High
WordPress Plugin Front File Manager 'upload.php' Arbitrary File Upload (0.1)
-
CWE-434
High
WordPress Plugin Front End Upload 'upload.php' Arbitrary File Upload (0.5.3)
-
CWE-434
High
WordPress Plugin FoxyPress 'uploadify.php' Arbitrary File Upload (0.4.2.1)
-
CWE-434
High
WordPress Plugin Font Uploader 'font-upload.php' Arbitrary File Upload (1.2.4)
CVE-2012-3814
CWE-434
High
WordPress Plugin Flip Book 'php.php' Arbitrary File Upload (1.0)
-
CWE-434
High
WordPress Plugin Fancy Gallery 'image-upload.php' Arbitrary File Upload (1.2.4)
-
CWE-434
High
WordPress Plugin Homepage SlideShow 'upload.php' Arbitrary File Upload (2.0)
-
CWE-434
High
WordPress Plugin Evarisk 'uploadPhotoApres.php' Arbitrary File Upload (5.1.5.4)
-
CWE-434
High
WordPress Plugin Email newsletter 'option' Parameter Information Disclosure (8.0)
-
CWE-200
High
WordPress Plugin Easy Contact Forms Export 'file' Parameter Information Disclosure (1.1.0)
-
CWE-22
High
WordPress Plugin Drag & Drop File Uploader 'dnd-upload.php' Arbitrary File Upload (0.1)
-
CWE-434
High
WordPress Plugin Custom Content Type Manager 'upload_form.php' Arbitrary File Upload (0.9.5.13)
-
CWE-434
High
WordPress Plugin Custom Background 'uploadify.php' Arbitrary File Upload (1.01)
-
CWE-434
High
WordPress Plugin Gallery by BestWebSoft 'php.php' Arbitrary File Upload (3.06)
-
CWE-434
High
WordPress Plugin HTML5 AV Manager for WordPress 'custom.php' Arbitrary File Upload (0.2.7)
-
CWE-434
High
WordPress Plugin PDW Media File Browser 'upload.php' Arbitrary File Upload (1.1)
-
CWE-434
High
WordPress Plugin MAC PHOTO GALLERY 'upload-file.php' Arbitrary File Upload (2.7)
-
CWE-434
High
WordPress Plugin Paid Business Listings Blind SQL Injection (1.0.2)
-
CWE-89
High
WordPress Plugin Omni Secure Files 'upload.php' Arbitrary File Upload (0.1.13)
-
CWE-434
High
WordPress Plugin Nmedia WordPress Member Conversation 'doupload.php' Arbitrary File Upload (1.3)
CVE-2012-3577
CWE-264
High
WordPress Plugin Nmedia MailChimp Widget 'abs_path' Parameter Remote File Include (3.1)
-
CWE-94
High
WordPress Plugin MM Forms Community 'doajaxfileupload.php' Arbitrary File Upload (2.2.6)
CVE-2012-3574
CWE-434
High
WordPress Plugin Matrix Gallery 'upload.php' Arbitrary File Upload (2.1)
-
CWE-434
High
WordPress Plugin MAC PHOTO GALLERY 'albid' Parameter Arbitrary File Disclosure (2.8)
-
CWE-22
High
WordPress Plugin Hungred Post Thumbnail 'hpt_file_upload.php' Arbitrary File Upload (2.1.9)
-
CWE-434
High
WordPress Plugin Lim4wp 'upload.php' Arbitrary File Upload (1.1.1)
-
CWE-434
High
WordPress Plugin LB Mixed Slideshow 'upload.php' Arbitrary File Upload (1.0)
-
CWE-434
High
WordPress Plugin kk Star Ratings 'root' Parameter Remote File Include (1.7)
-
CWE-94
High
WordPress Plugin Katalyst TimThumb 'timthumb.php' Arbitrary File Upload (1.0)
-
CWE-434
High
WordPress Plugin Invit0r 'ofc_upload_image.php' Arbitrary File Upload (0.22)
-
CWE-434
High
WordPress Plugin ImageDrop 'ImageDrop.php' Blind SQL Injection (1.1.2)
-
CWE-89
High
WordPress Plugin Image News slider 'upload.php' Arbitrary File Upload (3.3)
CVE-2012-4327
CWE-434
High
WordPress Plugin wpStoreCart 'upload.php' Arbitrary File Upload (2.5.29)
CVE-2012-3576
CWE-434
High
WordPress Plugin A Page Flip Book 'pageflipbook_language' Parameter Local File Include (2.3)
CVE-2012-6652
CWE-22
High
WordPress Plugin Advanced Custom Fields (ACF) 'acf_abspath' Parameter Remote File Include (3.5.1)
-
CWE-94
High
WordPress Plugin ABC Test 'id' Parameter Cross-Site Scripting (0.1)
-
CWE-79
High
WordPress Plugin NextGEN Gallery-WordPress Gallery 'Gallery Path' Field Cross-Site Scripting (1.9.5)
-
CWE-79
High
WordPress Plugin MF Gig Calendar 'page_id' Parameter Cross-Site Scripting (0.9.4.1)
CVE-2012-4242
CWE-79
High
WordPress Plugin iThemes Security (formerly Better WP Security) Multiple Cross-Site Scripting Vulnerabilities (3.4.3)
-
CWE-79
High
WordPress Plugin Google Analytics Dashboard Plugin for WordPress by MonsterInsights Multiple Cross-Site Scripting Vulnerabilities (4.2.4)
-
CWE-79
High
WordPress Plugin Answer My Question Multiple Cross-Site Scripting Vulnerabilities (1.1)
-
CWE-79
High
WordPress Plugin AdRotate-Ad manager & AdSense Ads 'title' Parameter Multiple Cross-Site Scripting Vulnerabilities (3.7.3.5)
-
CWE-79
High
WordPress Plugin Zingiri Web Shop Cookie Multiple SQL Injection Vulnerabilities (2.4.7)
-
CWE-89
High