Total
34410 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2022-29476 | 1 8degreethemes | 1 Notification Bar | 2025-02-20 | 6.1 Medium |
| Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability in 8 Degree Themes otification Bar for WordPress plugin <= 1.1.8 at WordPress. | ||||
| CVE-2022-36282 | 1 Search Exclude Project | 1 Search Exclude | 2025-02-20 | 4.8 Medium |
| Authenticated (editor+) Stored Cross-Site Scripting (XSS) vulnerability in Roman Pronskiy's Search Exclude plugin <= 1.2.6 at WordPress. | ||||
| CVE-2022-36341 | 1 As - Create Pinterest Pinboard Pages Project | 1 As - Create Pinterest Pinboard Pages | 2025-02-20 | 5.4 Medium |
| Authenticated (subscriber+) plugin settings change leading to Stored Cross-Site Scripting (XSS) vulnerability in Akash soni's AS – Create Pinterest Pinboard Pages plugin <= 1.0 at WordPress. | ||||
| CVE-2022-36347 | 1 Thealpinepress | 1 Alpine Phototile For Pinterest | 2025-02-20 | 4.8 Medium |
| Authenticated (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Alpine Press Alpine PhotoTile for Pinterest plugin <= 1.3.1 at WordPress. | ||||
| CVE-2022-36405 | 1 Amcharts | 1 Amcharts\ | 2025-02-20 | 5.4 Medium |
| Authenticated (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in amCharts: Charts and Maps plugin <= 1.4 at WordPress. | ||||
| CVE-2022-36355 | 1 Easy Org Chart Project | 1 Easy Org Chart | 2025-02-20 | 5.4 Medium |
| Authenticated (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in PluginlySpeaking Easy Org Chart plugin <= 3.1 at WordPress. | ||||
| CVE-2022-36796 | 1 Callrail | 1 Callrail Phone Call Tracking | 2025-02-20 | 6.1 Medium |
| Cross-Site Request Forgery (CSRF) vulnerability leading to Stored Cross-Site Scripting (XSS) in CallRail, Inc. CallRail Phone Call Tracking plugin <= 0.4.9 at WordPress. | ||||
| CVE-2021-36829 | 1 Mythemeshop | 1 Launcher | 2025-02-20 | 4.8 Medium |
| Authenticated (admin+) Stored Cross-Site Scripting (XSS) vulnerability in MyThemeShop Launcher: Coming Soon & Maintenance Mode plugin <= 1.0.11 at WordPress. | ||||
| CVE-2022-34656 | 1 Wpdevart | 1 Poll\, Survey\, Questionnaire And Voting System | 2025-02-20 | 4.8 Medium |
| Authenticated (admin+) Cross-Site Scripting (XSS) vulnerability in wpdevart Poll, Survey, Questionnaire and Voting system plugin <= 1.7.4 at WordPress. | ||||
| CVE-2022-38068 | 1 Apasionados | 1 Export Post Info | 2025-02-20 | 4.8 Medium |
| Authenticated (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Apasionados Export Post Info plugin <= 1.1.0 at WordPress. | ||||
| CVE-2022-35725 | 1 Wp-forecast Project | 1 Wp-forecast | 2025-02-20 | 4.8 Medium |
| Authenticated (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Hans Matzen's wp-forecast plugin <= 7.5 at WordPress. | ||||
| CVE-2022-36356 | 1 Culture Object Project | 1 Culture Object | 2025-02-20 | 4.8 Medium |
| Authenticated (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Liam Gladdy / Thirty8 Digital Culture Object plugin <= 4.0.1 at WordPress. | ||||
| CVE-2022-40191 | 1 Contact Form By Mega Forms Project | 1 Contact Form By Mega Forms | 2025-02-20 | 5.4 Medium |
| Authenticated (subscriber+) Stored Cross-Site Scripting (XSS) vulnerability in Ali Khallad's Contact Form By Mega Forms plugin <= 1.2.4 at WordPress. | ||||
| CVE-2022-37403 | 1 Add User Role Project | 1 Add User Role | 2025-02-20 | 4.8 Medium |
| Authenticated (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Nikhil Vaghela's Add User Role plugin <= 0.0.1 at WordPress. | ||||
| CVE-2022-37404 | 1 Add2fav Project | 1 Add2fav | 2025-02-20 | 4.8 Medium |
| Authenticated (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Christian Salazar's add2fav plugin <= 1.0 at WordPress. | ||||
| CVE-2022-37412 | 1 Better Delete Revision Project | 1 Better Delete Revision | 2025-02-20 | 4.8 Medium |
| Authenticated (admin+) Reflected Cross-Site Scripting (XSS) vulnerability in Galerio & Urda's Better Delete Revision plugin <= 1.6.1 at WordPress. | ||||
| CVE-2022-35275 | 1 Algolplus | 1 Advanced Order Export For Woocommerce | 2025-02-20 | 4.8 Medium |
| Authenticated (shop manager+) Reflected Cross-Site Scripting (XSS) vulnerability in AlgolPlus Advanced Order Export For WooCommerce plugin <= 3.3.1 at WordPress. | ||||
| CVE-2022-37407 | 1 Wpchill | 1 Gallery Photoblocks | 2025-02-20 | 4.1 Medium |
| Multiple Authenticated Stored Cross-Site Scripting (XSS) vulnerabilities in WPChill Gallery PhotoBlocks plugin <= 1.2.6 at WordPress. | ||||
| CVE-2022-37335 | 1 Webhelpagency | 1 Word Search Puzzles | 2025-02-20 | 4.8 Medium |
| Authenticated (author+) Stored Cross-Site Scripting (XSS) vulnerability in WHA's Word Search Puzzles game plugin <= 2.0.1 at WordPress. | ||||
| CVE-2022-36390 | 1 Total-soft | 1 Event Calendar | 2025-02-20 | 4.1 Medium |
| Authenticated (subscriber+) Reflected Cross-Site Scripting (XSS) vulnerability in Totalsoft Event Calendar – Calendar plugin <= 1.4.6 at WordPress. | ||||