Wordfence Intelligence

Title	CVE ID	CVSS	Vector	Date
Easy2Map <= 1.2.9 - Directory Traversal and Local File Inclusion	CVE-2015-7669	9.8	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	October 5, 2015
mTheme-Unus (All Versions) - Local File Inclusion		9.8	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	September 27, 2015
MyPixs <= 0.3 - Local File Inclusion	CVE-2015-1000012	9.8	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	September 15, 2015
Memphis Documents Library <= 2.6.16 - Local File Inclusion	CVE-2014-10384	9.8	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	September 4, 2015
Memphis Documents Library <= 2.6.16 - Remote File Inclusion	CVE-2014-10383	9.8	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	September 4, 2015
BJ Lazy Load < 1.0 - Remote File Inclusion via TimThumb	CVE-2015-9415	9.8	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	September 2, 2015
NextGen Gallery <= 2.1.10 - Local File Inclusion	CVE-2015-9538	6.5	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N	August 28, 2015
Subscribe to Comments <= 2.1.2 - Local File Includion		7.2	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	July 15, 2015
GD bbPress Attachments < 2.3 - Directory Traversal	CVE-2015-5482	7.2	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	July 9, 2015
Really Simple Guest Post <= 1.0.6 - Local File Inclusion		9.8	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	June 5, 2015
ZM Ajax Login & Register <= 1.0.9 - Local File Inclusion	CVE-2015-4153	9.8	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	June 5, 2015
Gmedia Photo Gallery <= 1.6.4 - Local File Inclusion		9.8	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	May 27, 2015
Fusion Engage <= 1.0.5 - Local File Inclusion		5.3	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N	April 10, 2015
CIP4 Folder Download Widget < 1.11 - Local File Inclusion		9.8	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	January 13, 2015
ChurcHope <= 2.1 - Local File Inclusion		9.8	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	December 7, 2014
rtMedia for WordPress, BuddyPress and bbPress < 3.7.19 - Local File Inclusion		8.8	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H	November 24, 2014
DZS Video Gallery <= 3.1.3 - Limited Local File Inclusion		5.3	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N	September 27, 2014
wp-Table <= 1.43 - Remote File Inclusion	CVE-2007-2484	9.8	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	August 1, 2014
WP AmASIN – The Amazon Affiliate Shop <= 0.9.6 - Local File Inclusion	CVE-2014-4577	7.5	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N	August 1, 2014
Tinymce Thumbnail Gallery <= 1.0.7 - Local File Inclusion		7.5	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N	August 1, 2014

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation

Vulnerabilities protected by our LFI: Local File Inclusion firewall rule

Showing 101-120 of 153 Vulnerabilities