Total
299162 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2016-10902 | 1 Gowebsolutions | 1 Wp Customer Reviews | 2024-11-21 | 6.8 MEDIUM | 8.8 HIGH |
| The wp-customer-reviews plugin before 3.0.9 for WordPress has CSRF in the admin tools. | |||||
| CVE-2016-10901 | 1 Gowebsolutions | 1 Wp Customer Reviews | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The wp-customer-reviews plugin before 3.0.9 for WordPress has XSS in the admin tools. | |||||
| CVE-2016-10900 | 1 Wpmanage | 1 Uji Countdown | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The uji-countdown plugin before 2.0.7 for WordPress has XSS. | |||||
| CVE-2016-10899 | 1 Fabrix | 1 Total Security | 2024-11-21 | 5.0 MEDIUM | 5.3 MEDIUM |
| The total-security plugin before 3.4.1 for WordPress has a settings-change vulnerability. | |||||
| CVE-2016-10898 | 1 Fabrix | 1 Total Security | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The total-security plugin before 3.4.1 for WordPress has XSS. | |||||
| CVE-2016-10897 | 1 Sermon Browser Project | 1 Sermon Browser | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The sermon-browser plugin before 0.45.16 for WordPress has multiple XSS issues. | |||||
| CVE-2016-10896 | 1 Clogica | 1 Seo Redirection | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The seo-redirection plugin before 4.3 for WordPress has stored XSS. | |||||
| CVE-2016-10895 | 1 Optiontree Project | 1 Optiontree | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The option-tree plugin before 2.6.0 for WordPress has XSS via an add_list_item or add_social_links AJAX request. | |||||
| CVE-2016-10894 | 2 Debian, Xtrlock Project | 2 Debian Linux, Xtrlock | 2024-11-21 | 2.1 LOW | 4.6 MEDIUM |
| xtrlock through 2.10 does not block multitouch events. Consequently, an attacker at a locked screen can send input to (and thus control) various programs such as Chromium via events such as pan scrolling, "pinch and zoom" gestures, or even regular mouse clicks (by depressing the touchpad once and then clicking with a different finger). | |||||
| CVE-2016-10893 | 1 Crayon Syntax Highlighter Project | 1 Crayon Syntax Highlighter | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The crayon-syntax-highlighter plugin before 2.8.4 for WordPress has multiple XSS issues via AJAX requests. | |||||
| CVE-2016-10892 | 1 Kibokolabs | 1 Chained Quiz | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The chained-quiz plugin before 1.0 for WordPress has multiple XSS issues. | |||||
| CVE-2016-10891 | 1 Pojo | 1 Activity Log | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The aryo-activity-log plugin before 2.3.3 for WordPress has XSS. | |||||
| CVE-2016-10890 | 1 Pojo | 1 Activity Log | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| The aryo-activity-log plugin before 2.3.2 for WordPress has XSS. | |||||
| CVE-2016-10889 | 1 Imagely | 1 Nextgen Gallery | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
| The nextgen-gallery plugin before 2.1.57 for WordPress has SQL injection via a gallery name. | |||||
| CVE-2016-10888 | 1 Tipsandtricks-hq | 1 All In One Wp Security \& Firewall | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
| The all-in-one-wp-security-and-firewall plugin before 4.0.7 for WordPress has multiple SQL injection issues. | |||||
| CVE-2016-10887 | 1 Tipsandtricks-hq | 1 All In One Wp Security \& Firewall | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
| The all-in-one-wp-security-and-firewall plugin before 4.0.9 for WordPress has multiple SQL injection issues. | |||||
| CVE-2016-10886 | 1 Benjaminrojas | 1 Wp Editor | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
| The wp-editor plugin before 1.2.6 for WordPress has incorrect permissions. | |||||
| CVE-2016-10885 | 1 Benjaminrojas | 1 Wp Editor | 2024-11-21 | 6.8 MEDIUM | 8.8 HIGH |
| The wp-editor plugin before 1.2.6 for WordPress has CSRF. | |||||
| CVE-2016-10884 | 1 Simple-membership-plugin | 1 Simple Membership | 2024-11-21 | 6.8 MEDIUM | 8.8 HIGH |
| The simple-membership plugin before 3.3.3 for WordPress has multiple CSRF issues. | |||||
| CVE-2016-10883 | 1 Mijnpress | 1 Simple Add Pages Or Posts | 2024-11-21 | 5.8 MEDIUM | 6.5 MEDIUM |
| The simple-add-pages-or-posts plugin before 1.7 for WordPress has CSRF for deleting users. | |||||