Total
36605 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2015-9416 | 1 Onthegosystems | 1 Sitepress-multilingual-cms | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The sitepress-multilingual-cms (WPML) plugin 2.9.3 to 3.2.6 for WordPress has XSS via the Accept-Language HTTP header. | |||||
| CVE-2015-9414 | 1 Wpsymposiumpro | 1 Wp-symposium | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The wp-symposium plugin through 15.8.1 for WordPress has XSS via the wp-content/plugins/wp-symposium/get_album_item.php?size parameter. | |||||
| CVE-2015-9412 | 1 Royal-slider Project | 1 Royal-slider | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The Royal-Slider plugin before 3.2.7 for WordPress has XSS via the rstype parameter. | |||||
| CVE-2015-9411 | 1 Gopostmatic | 1 Replyable | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The Postmatic plugin before 1.4.6 for WordPress has XSS. | |||||
| CVE-2015-9410 | 1 Blubrry | 1 Powerpress | 2024-11-21 | 3.5 LOW | 5.4 MEDIUM |
| The Blubrry PowerPress Podcasting plugin 6.0.4 for WordPress has XSS via the tab parameter. | |||||
| CVE-2015-9407 | 1 Cyberseo | 1 Xpinner Lite | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The xpinner-lite plugin through 2.2 for WordPress has xpinner-lite.php XSS. | |||||
| CVE-2015-9405 | 1 Wp-piwik Project | 1 Wp-piwik | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The wp-piwik plugin before 1.0.5 for WordPress has XSS. | |||||
| CVE-2015-9404 | 1 Neuvoo | 1 Neuvoo-jobroll | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The neuvoo-jobroll plugin 2.0 for WordPress has neuvoo_keywords XSS. | |||||
| CVE-2015-9403 | 1 Neuvoo | 1 Neuvoo-jobroll | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The neuvoo-jobroll plugin 2.0 for WordPress has neuvoo_location XSS. | |||||
| CVE-2015-9401 | 1 Websimon-tables Project | 1 Websimon-tables | 2024-11-21 | 3.5 LOW | 4.8 MEDIUM |
| The websimon-tables plugin through 1.3.4 for WordPress has wp-admin/tools.php edit_style id XSS. | |||||
| CVE-2015-9397 | 1 Webmaster-source | 1 Gocodes | 2024-11-21 | 3.5 LOW | 5.4 MEDIUM |
| The gocodes plugin through 1.3.5 for WordPress has wp-admin/tools.php deletegc XSS. | |||||
| CVE-2015-9396 | 1 Attosoft | 1 Auto Thickbox Plus | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The auto-thickbox-plus plugin through 1.9 for WordPress has wp-content/plugins/auto-thickbox-plus/download.min.php?file= XSS. | |||||
| CVE-2015-9393 | 1 Usersultra | 1 Users Ultra Membership | 2024-11-21 | 3.5 LOW | 5.4 MEDIUM |
| The users-ultra plugin before 1.5.63 for WordPress has XSS via the p_desc parameter. | |||||
| CVE-2015-9392 | 1 Usersultra | 1 Users Ultra Membership | 2024-11-21 | 3.5 LOW | 5.4 MEDIUM |
| The users-ultra plugin before 1.5.63 for WordPress has XSS via the p_name parameter. | |||||
| CVE-2015-9391 | 1 Ostenta | 1 Yawpp | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The yawpp plugin through 1.2.2 for WordPress has XSS via the field1 parameter. | |||||
| CVE-2015-9389 | 1 Mtouch Quiz Project | 1 Mtouch Quiz | 2024-11-21 | 3.5 LOW | 5.4 MEDIUM |
| The mtouch-quiz plugin before 3.1.3 for WordPress has XSS via a quiz name. | |||||
| CVE-2015-9386 | 1 Mtouch Quiz Project | 1 Mtouch Quiz | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The mtouch-quiz plugin before 3.1.3 for WordPress has XSS via the quiz parameter during a Quiz Manage operation. | |||||
| CVE-2015-9385 | 1 Bestwebsoft | 1 Quotes And Tips | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The quotes-and-tips plugin before 1.20 for WordPress has XSS. | |||||
| CVE-2015-9384 | 1 Bestwebsoft | 1 Relevant | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The relevant plugin before 1.0.8 for WordPress has XSS. | |||||
| CVE-2015-9379 | 1 Ithemes | 1 Builder Style Manager | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| iThemes Builder Style Manager before 0.7.7 for WordPress has XSS via add_query_arg() and remove_query_arg(). | |||||