Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Total 299249 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2015-9367 1 Ithemes 1 Easy Canadian Sales Taxes 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
Easy Canadian Sales Taxes Add-on for iThemes Exchange before 1.1.0 for WordPress has XSS via add_query_arg() and remove_query_arg().
CVE-2015-9366 1 Ithemes 1 Custom Url Tracking 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
Custom URL Tracking Add-on for iThemes Exchange before 1.1.0 for WordPress has XSS via add_query_arg() and remove_query_arg().
CVE-2015-9365 1 Ithemes 1 Authorize.net 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
Authorize.net Add-on for iThemes Exchange before 1.1.0 for WordPress has XSS via add_query_arg() and remove_query_arg().
CVE-2015-9364 1 2checkout 1 Ithemes 2checkout 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
2Checkout Add-on for iThemes Exchange before 1.1.0 for WordPress has XSS via add_query_arg() and remove_query_arg().
CVE-2015-9363 1 Ithemes 1 Exchange 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
iThemes Exchange before 1.12.0 for WordPress has XSS via add_query_arg() and remove_query_arg().
CVE-2015-9362 1 Never5 1 Post Connector 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
The Post Connector plugin before 1.0.4 for WordPress has XSS via add_query_arg() and remove_query_arg().
CVE-2015-9361 1 Never5 1 Related Posts 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
The Related Posts plugin before 1.8.2 for WordPress has XSS via add_query_arg() and remove_query_arg().
CVE-2015-9360 1 Updraftplus 1 Updraftplus 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
The updraftplus plugin before 1.9.64 for WordPress has XSS via add_query_arg() and remove_query_arg().
CVE-2015-9359 1 Automattic 1 Jetpack 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
The Jetpack plugin before 3.4.3 for WordPress has XSS via add_query_arg() and remove_query_arg().
CVE-2015-9358 1 Feedwordpress Project 1 Feedwordpress 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
The feedwordpress plugin before 2015.0514 for WordPress has XSS via add_query_arg() and remove_query_arg().
CVE-2015-9357 1 Automattic 1 Akismet 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
The akismet plugin before 3.1.5 for WordPress has XSS.
CVE-2015-9356 1 Wp-vipergb Project 1 Wp-vipergb 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
The wp-vipergb plugin before 1.3.16 for WordPress has XSS via add_query_arg() and remove_query_arg(), a different issue than CVE-2014-9460.
CVE-2015-9355 1 Simbahosting 1 Two-factor-authentication 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
The two-factor-authentication plugin before 1.1.10 for WordPress has XSS in the admin area.
CVE-2015-9354 1 Tri.be 1 Gigpress 2024-11-21 3.5 LOW 4.8 MEDIUM
The gigpress plugin before 2.3.11 for WordPress has XSS.
CVE-2015-9353 1 Tri 1 Gigpress 2024-11-21 6.5 MEDIUM 7.2 HIGH
The gigpress plugin before 2.3.11 for WordPress has SQL injection in the admin area, a different vulnerability than CVE-2015-4066.
CVE-2015-9352 1 Wp-polls Project 1 Wp-polls 2024-11-21 7.5 HIGH 9.8 CRITICAL
The wp-polls plugin before 2.72 for WordPress has SQL injection.
CVE-2015-9351 1 Slickremix 1 Feed Them Social 2024-11-21 7.5 HIGH 9.8 CRITICAL
The feed-them-social plugin before 1.7.0 for WordPress has possible shortcode execution in the Facebook Feeds load more button.
CVE-2015-9350 1 Slickremix 1 Feed Them Social 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
The feed-them-social plugin before 1.7.0 for WordPress has reflected XSS in the Facebook Feeds load more button.
CVE-2015-9349 1 Cksource 1 Ckeditor 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
The ckeditor-for-wordpress plugin before 4.5.3.1 for WordPress has reflected XSS in the "built-in (old)" file browser.
CVE-2015-9348 1 Codepeople 1 Sell Downloads 2024-11-21 5.0 MEDIUM 7.5 HIGH
The sell-downloads plugin before 1.0.8 for WordPress has insufficient restrictions on brute-force guessing of purchase IDs.