Wordfence Intelligence

Title	CVE ID	CVSS	Vector	Date
Photo Gallery by 10Web <= 1.5.24 - Authenticated Local File Inclusion	CVE-2019-14798	4.9	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N	May 15, 2019
GraceMedia Media Player <= 1.0 - Local File Inclusion	CVE-2019-9618	9.8	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	March 13, 2019
WordPress Core <= 5.0.3 - Path Traversal and Local File Inclusion	CVE-2019-8943	6.5	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N	February 19, 2019
Shortcode Factory <= 2.7 - Local File Inclusion	CVE-2019-15322	9.8	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	January 16, 2019
WP Payeezy Pay < 2.98 - Local File Inclusion	CVE-2018-20985	9.8	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	December 7, 2018
Companion Auto Update <= 3.2.0 - Local File Inclusion	CVE-2018-20973	9.8	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	October 1, 2018
Redirection <= 2.7.3 - Local File Inclusion	CVE-2018-1000504	7.2	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	July 12, 2018
Site Editor <= 1.1.1 - Local File Inclusion	CVE-2018-7422	9.8	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	March 16, 2018
WOOF - Products Filter for WooCommerce <= 1.1.9 - Local File Inclusion	CVE-2018-8711	9.8	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	March 6, 2018
WP Rocket <= 2.10.3 - Local File Inclusion	CVE-2017-11658	7.5	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N	June 22, 2017
Posts in Page <= 1.2.4 - Authenticated Directory Traversal leading to Local File Inclusion	CVE-2017-18585	8.1	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N	February 13, 2017
Direct Download for Woocommerce < 1.16 - Local File Inclusion		9.8	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	January 16, 2017
WordPress Ad Widget <= 2.11.0 - Local File Inclusion		9.9	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H	January 1, 2017
WP Vault <= 0.8.6.6 - Local File Inclusion		5.3	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N	November 30, 2016
NextGen Gallery <= 2.1.56 - Remote File Inclusion	CVE-2016-6565	7.5	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H	November 15, 2016
InPost Gallery < 2.1.2.1 - Local File Inclusion		9.8	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	October 20, 2016
SAM Pro (Free Edition) < 1.9.7.69 & Simple Ads Manager <= 2.10.0.130 & SAM Pro Lite < 1.9.0.53 - Local/Remote File Inclusion		8.8	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H	October 10, 2016
Mail Masta <= 1.0 - Local File Inclusion	CVE-2016-10956	9.8	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	August 23, 2016
Ajax Load More < 2.11.2 - Local File Inclusion		9.8	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	August 15, 2016
Easy Forms for Mailchimp < 6.1 - Local File Inclusion		9.1	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H	July 13, 2016

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation

Vulnerabilities protected by our LFI: Local File Inclusion firewall rule

Showing 81-100 of 160 Vulnerabilities