Total
36660 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2016-10967 | 1 Creativeinteractivemedia | 1 Real3d Flipbook | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The real3d-flipbook-lite plugin 1.0 for WordPress has XSS via the wp-content/plugins/real3d-flipbook/includes/flipbooks.php bookId parameter. | |||||
| CVE-2016-10964 | 1 Findshorty | 1 Dwnldr | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The dwnldr plugin before 1.01 for WordPress has XSS via the User-Agent HTTP header. | |||||
| CVE-2016-10963 | 1 Icegram | 1 Icegram Engage | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The icegram plugin before 1.9.19 for WordPress has XSS. | |||||
| CVE-2016-10961 | 1 Inkthemes | 1 Colorway | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The colorway theme before 3.4.2 for WordPress has XSS via the contactName parameter. | |||||
| CVE-2016-10957 | 1 Akal Project | 1 Akal | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The Akal theme through 2016-08-22 for WordPress has XSS via the framework/brad-shortcodes/tinymce/preview.php sc parameter. | |||||
| CVE-2016-10953 | 1 Headwaythemes | 1 Headway | 2024-11-21 | 3.5 LOW | 5.4 MEDIUM |
| The Headway theme before 3.8.9 for WordPress has XSS via the license key field. | |||||
| CVE-2016-10952 | 1 Quotes Collection Project | 1 Quotes Collection | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The quotes-collection plugin before 2.0.6 for WordPress has XSS via the wp-admin/admin.php?page=quotes-collection page parameter. | |||||
| CVE-2016-10941 | 1 Podlove | 1 Podlove Podcast Publisher | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The podlove-podcasting-plugin-for-wordpress plugin before 2.3.16 for WordPress has XSS exploitable via CSRF. | |||||
| CVE-2016-10936 | 1 Wp-polls Project | 1 Wp-polls | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The wp-polls plugin before 2.73.1 for WordPress has XSS via the Poll bar option. | |||||
| CVE-2016-10934 | 1 Check Email Project | 1 Check Email | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The check-email plugin before 0.5.2 for WordPress has XSS. | |||||
| CVE-2016-10925 | 1 Profilepress | 1 Loginwp | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The peters-login-redirect plugin before 2.9.1 for WordPress has XSS during the editing of redirect URLs. | |||||
| CVE-2016-10920 | 1 Sir | 1 Gnucommerce | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The gnucommerce plugin before 0.5.7-BETA for WordPress has XSS. | |||||
| CVE-2016-10919 | 1 Wassup Real Time Analytics Project | 1 Wassup Real Time Analytics | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The wassup plugin before 1.9.1 for WordPress has XSS via the Top stats widget or the wassupURI::add_siteurl method, a different vulnerability than CVE-2012-2633. | |||||
| CVE-2016-10913 | 1 Joomunited | 1 Wp Latest Posts | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The wp-latest-posts plugin before 3.7.5 for WordPress has XSS. | |||||
| CVE-2016-10912 | 1 Matchboxdesigngroup | 1 Universal Analytics | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The universal-analytics plugin before 1.3.1 for WordPress has XSS. | |||||
| CVE-2016-10911 | 1 Cozmoslabs | 1 Profile Builder | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The profile-builder plugin before 2.4.2 for WordPress has multiple XSS issues. | |||||
| CVE-2016-10910 | 1 Formbuilder Project | 1 Formbuilder | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The formbuilder plugin before 1.06 for WordPress has multiple XSS issues. | |||||
| CVE-2016-10908 | 1 Codepeople | 1 Booking Calendar Contact Form | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The booking-calendar-contact-form plugin before 1.0.24 for WordPress has XSS. | |||||
| CVE-2016-10901 | 1 Gowebsolutions | 1 Wp Customer Reviews | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The wp-customer-reviews plugin before 3.0.9 for WordPress has XSS in the admin tools. | |||||
| CVE-2016-10900 | 1 Wpmanage | 1 Uji Countdown | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The uji-countdown plugin before 2.0.7 for WordPress has XSS. | |||||