Wordpress Vulnerabilidades

Curso de tempo

Tipo

Produto

WordPress Sniplets Plugin3
WordPress WassUp plugin2
WordPress Math Comment Spam Protection Plugin2
WordPress Blix2
WordPress Go Pricing Plugin1

Medidas

Official Fix22
Temporary Fix0
Workaround0
Unavailable15
Not Defined22

Explorabilidade

High14
Functional0
Proof-of-Concept19
Unproven0
Not Defined26

Tipo de acesso

Not Defined0
Physical0
Local0
Adjacent0
Network59

Autenticação

Not Defined0
High0
Low4
None55

Actividade do utilizador

Not Defined0
Required34
None25

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤42
≤524
≤69
≤75
≤816
≤92
≤101

CVSSv3 Temp

≤10
≤20
≤30
≤45
≤525
≤68
≤710
≤810
≤90
≤101

VulDB

≤10
≤20
≤30
≤42
≤527
≤67
≤74
≤816
≤92
≤101

NVD

≤10
≤20
≤30
≤40
≤50
≤61
≤70
≤80
≤92
≤100

CNA

≤10
≤20
≤30
≤40
≤51
≤60
≤72
≤80
≤91
≤100

Fabricante

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Explorar 0 dia

<1k5
<2k28
<5k22
<10k3
<25k1
<50k0
<100k0
≥100k0

Explorar hoje

<1k57
<2k1
<5k0
<10k1
<25k0
<50k0
<100k0
≥100k0

Explorar o volume do mercado

🔴 CTI Actividades

Affected Products (54): AdServe (1), Alert Before You Post (1), Blix (2), Bug Library Plugin (1), DVS Custom Notification plugin (1), Dean Logan WP-People plugin (1), Download Manager (1), Download Monitor Plugin (1), FCChat Widget (1), Go Pricing Plugin (1), HD Quiz Plugin (1), Hot Files:File Sharing (1), Lanoba Social plugin (1), Math Comment Spam Protection Plugin (2), Page Flip Image Gallery plugin (1), Pay-with-tweet (2), Permalinks Migration Plugin (1), Peter's Math Anti-spam for Wordpress (1), Photo Album Plugin (1), PictPress (1), Plugin Newsletter plugin (1), Post Comment (1), Real Media Library Plugin (1), Slideshow Gallery2 (1), Sniplets Plugin (3), SpamBam plugin (1), St Newsletter Plugin (1), Unamed Theme Se (1), Upload File plugin (1), User Activation Email Plugin (1), WP-ContactForm (1), WP-Footnotes (1), WP-PostViews plugin (1), WP-Print plugin (1), WP Maintenance Mode plugin (1), WP Support Plus Responsive Ticket System (1), WassUp plugin (2), WordPress MU (1), WordPress mu (1), Wordpress-users (1), Wordpress MU (1), Wordpressclassic (1), Wp Cal Plugin (1), Wp Downloads Manager (1), Wp Forum (1), captcha (1), cryptographp (1), filemanager (1), qTranslate plugin (1), underConstruction plugin (1), weblizar-pinterest-feeds Plugin (1), wordspew (1), wp-publications Plugin (1), wpSS (1)

Link to Vendor Website: https://wordpress.com/

Publicado emBaseTempVulnerabilidadeProdExpMasCTIEPSSCVE
23/05/20236.66.5WordPress Go Pricing Plugin direitos alargadosContent Management SystemNot DefinedNot Defined0.000.00050CVE-2023-2494
10/09/20215.25.1WordPress Bug Library Plugin Parameter bug-library.php Roteiro Cruzado de SítiosContent Management SystemNot DefinedOfficial Fix0.000.00068CVE-2021-38355
10/09/20217.87.6WordPress wp-publications Plugin Archive bibtexbrowser.php Directório TraversalContent Management SystemNot DefinedOfficial Fix0.030.00511CVE-2021-38360
10/09/20215.25.1WordPress User Activation Email Plugin user-activation-email.php Roteiro Cruzado de SítiosContent Management SystemNot DefinedOfficial Fix0.000.00069CVE-2021-38325
31/08/20213.53.5WordPress Real Media Library Plugin Folder.php Roteiro Cruzado de SítiosContent Management SystemNot DefinedNot Defined0.000.00054CVE-2021-34668
23/08/20213.53.4WordPress HD Quiz Plugin Answer Roteiro Cruzado de SítiosContent Management SystemNot DefinedOfficial Fix0.000.00058CVE-2021-24571
10/06/20195.35.1WordPress Post Comment Comments Fraca autenticaçãoContent Management SystemNot DefinedOfficial Fix0.000.03470CVE-2019-9881
13/01/20186.56.5WordPress weblizar-pinterest-feeds Plugin Plugin 1.1 admin-ajax.php Falsificação de Pedido Cross SiteContent Management SystemNot DefinedNot Defined0.040.00094CVE-2018-5656
10/01/20177.36.6WordPress WP Support Plus Responsive Ticket System wp_set_auth_cookie direitos alargadosContent Management SystemProof-of-ConceptNot Defined0.020.00000
02/07/20144.34.3WordPress Hot Files:File Sharing/Download Manager editmedia.php Roteiro Cruzado de SítiosContent Management SystemNot DefinedNot Defined0.000.00140CVE-2014-4588

49 as entradas adicionais não são mais exibidas

Do you know our Splunk app?

Download it now for free!