Wordfence Intelligence

Title	CVE ID	CVSS	Vector	Date
WordPress Core < 3.8.2 - SQL Injection		7.2	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	April 9, 2014
GD Star Rating <= 1.9.22 - Blind SQL Injection	CVE-2014-2839	7.2	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	March 28, 2014
Album and Image Gallery with Lightbox – Flagallery Photo Portfolio <= 2.55 - SQL Injection		7.2	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	March 25, 2013
FAQs Manager <= 1.0 - SQL Injection		7.2	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	March 22, 2013
LeagueManager < 3.8.1 - SQL Injection	CVE-2013-1852	7.2	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	March 13, 2013
Editorial Calendar <= 2.6 - Authenticated (Admin+) SQL Injection	CVE-2013-10023	7.2	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	February 13, 2013
MailPoet Newsletters <= 2.2 - Multiple SQL Injections	CVE-2013-1408	7.2	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	February 3, 2013
Album and Image Gallery with Lightbox – Flagallery Photo Portfolio < 2.53 - SQL Injection		7.2	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	December 24, 2012
Album and Image Gallery with Lightbox – Flagallery Photo Portfolio <= 2.00 - SQL Injection		7.2	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	December 24, 2012
Spider Calendar < 1.1.3 - Multiple Vulnerabilities		7.2	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	October 2, 2012
WP Forum Server < 1.7.4 - SQL Injection	CVE-2012-6625	7.2	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	May 15, 2012
WP Comment Remix <= 1.4.3 - SQL Injection	CVE-2008-4733	7.2	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	October 14, 2008
DMSGuestbook <= 1.7.0 - SQL Injection	CVE-2008-0616	7.2	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H	February 2, 2008
WordPress Core <= 1.5.2 - SQL Injection	CVE-2006-1012	7.2	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N	December 31, 2005
10WebSocial <= 1.1.26 - Authenticated (Admin+) SQL Injection		6.8	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N	September 11, 2020
Malware Scanner <= 4.7.2 - Authenticated (Administrator+) SQL Injection	CVE-2024-25902	6.6	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H	February 12, 2024
WS Form LITE <= 1.9.170 - Authenticated(Administrator+) SQL Injection	CVE-2023-52135	6.6	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H	December 28, 2023
WP Adminify <= 3.1.6 - Authenticated(Administrator+) SQL Injection	CVE-2023-52132	6.6	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H	December 28, 2023
Page Generator <= 1.7.1 - Authenticated(Administrator+) SQL Injection	CVE-2023-52131	6.6	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H	December 28, 2023
GEO my WordPress <= 4.0.2 - Authenticated(Administrator+) SQL Injection	CVE-2023-52134	6.6	CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H	December 28, 2023

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation

Vulnerabilities protected by our SQL Injection firewall rule

Showing 1201-1220 of 1,290 Vulnerabilities