Wordfence Intelligence   >   Search Results

Showing 41-60 of 453 search results

Refine your search

Tip: You can search by CVE ID, software name or slug, or the researcher name. Expand to read about more advanced search options.

If you want to perform more advanced lookups, you can use keywords to further refine your search.

For example, woocommerce researcher:"chloe chamberland" would search for any vulnerabilities discovered by Chloe Chamberland in software that has WooCommerce in the title.

Keywords are added in keyword:value format. If the value contains spaces, you must enclose it in quotation marks.

You can use the following keywords to add criteria to your search:

title
Searches through the title of each vulnerability for matches.
date
Returns vulnerabilities by publication date. Use YYYY-MM-DD, YYYY-MM or YYYY format.
cvss-rating
Use low, medium, high or critical to limit the search to vulnerabilities with the specified rating.
researcher
Returns vulnerabilities credited to researchers containing the given text.
software
Returns vulnerabilities discovered in software containing the given text.
software-slug
Returns vulnerabilities discovered in software exactly matching the given slug.
software-type
Use plugin, theme or core to limit the search to the specified type of software.
By selecting “Search” you acknowledge that you have read and agree to the Wordfence Intelligence Terms and Conditions.
Limit Login Attempts Plus <= 1.0.9 - Unauthenticated Stored Cross-Site Scripting
7.2
CVE ID Unknown
Jan 27, 2023
Researchers:
DH – Anti AdBlocker <= 36 - Cross-Site Request Forgery
4.3
CVE-2022-47162
Jan 27, 2023
Researcher: rezaduty
BootStrap Shortcode <= 3.4.0 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2022-4777
Jan 27, 2023
Researcher: István Márton
Quick Restaurant Menu <= 2.0.2 - Missing Authorization
8.1
CVE-2023-0555
Jan 27, 2023
Researchers: Marco Wotschka, Ivan Kuzymchak
Booking calendar, Appointment Booking System <= 3.2.3 - Cross-Site Request Forgery
4.3
CVE-2023-24388
Jan 27, 2023
Researcher: yuyudhn
Quick Restaurant Menu <= 2.0.2 - Insecure Direct Object Reference
8.1
CVE-2023-0550
Jan 27, 2023
Researcher: Marco Wotschka
Namaste! LMS <= 2.5.9.1 - Authenticated (Admin+) Stored Cross-Site Scripting
4.4
CVE-2023-24383
Jan 27, 2023
Researcher: yuyudhn
BootStrap Shortcode <= 3.4.0 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2022-4777
Jan 27, 2023
Researcher: István Márton
bbPress Voting <= 2.1.11.0 - Authenticated (Admin+) Stored Cross-Site Scripting
7.2
CVE-2023-24403
Jan 27, 2023
Researcher: Rio Darmawan
TinyMCE Custom Styles <= 1.1.2 - Authenticated (Administrator+) Stored Cross-Site Scripting
5.5
CVE-2023-23995
Jan 27, 2023
Researcher: Rio Darmawan
BootStrap Shortcode <= 3.4.0 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2022-4777
Jan 27, 2023
Researcher: István Márton
VikBooking Hotel Booking Engine & PMS <= 1.5.11 - Authenticated (Admin+) Stored Cross-Site Scripting
4.4
CVE-2023-24396
Jan 27, 2023
Researcher: yuyudhn
WP Table Manager <= 3.5.2 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2022-47602
Jan 27, 2023
Researcher: Cat
WooCommerce PDF Invoices & Packing Slips <= 3.2.5 - Cross Site Request Forgery
4.3
CVE-2022-47148
Jan 27, 2023
Researcher: Muhammad Daffa
ContentStudio <= 1.2.5 - Information Exposure
7.5
CVE-2023-0557
Jan 27, 2023
Researcher: Chloe Chamberland
JS Help Desk <= 2.7.1 - Unauthenticated Arbitrary File Upload
9.8
CVE-2022-46839
Jan 27, 2023
Researcher: Vladislav Pokrovsky (ΞX.MI)
Limit Login Attempts Plus <= 1.0.9 - Authenticated (Administrator+) Stored Cross-Site Scripting
5.5
CVE ID Unknown
Jan 27, 2023
Researchers:
JS Help Desk <= 2.7.1 - Missing Authorization
6.3
CVE-2022-46840
Jan 27, 2023
Researcher: Vladislav Pokrovsky (ΞX.MI)
Unlimited Elements For Elementor (Free Widgets, Addons, Templates) <= 1.5.48 - Authenticated (Admin+) Cross Site Scripting (XSS)
4.4
CVE-2022-47170
Jan 27, 2023
Researcher: Muhammad Daffa
Simple Newsletter Plugin – Noptin <= 1.10.3 - Unauthenticated CSV Injection
7.2
CVE-2022-46803
Jan 27, 2023
Researcher: Mika
Title CVE ID CVSS Researchers Date
Limit Login Attempts Plus <= 1.0.9 - Unauthenticated Stored Cross-Site Scripting 7.2 January 27, 2023
DH – Anti AdBlocker <= 36 - Cross-Site Request Forgery CVE-2022-47162 4.3 rezaduty January 27, 2023
BootStrap Shortcode <= 3.4.0 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2022-4777 6.4 István Márton January 27, 2023
Quick Restaurant Menu <= 2.0.2 - Missing Authorization CVE-2023-0555 8.1 Marco Wotschka, Ivan Kuzymchak January 27, 2023
Booking calendar, Appointment Booking System <= 3.2.3 - Cross-Site Request Forgery CVE-2023-24388 4.3 yuyudhn January 27, 2023
Quick Restaurant Menu <= 2.0.2 - Insecure Direct Object Reference CVE-2023-0550 8.1 Marco Wotschka January 27, 2023
Namaste! LMS <= 2.5.9.1 - Authenticated (Admin+) Stored Cross-Site Scripting CVE-2023-24383 4.4 yuyudhn January 27, 2023
BootStrap Shortcode <= 3.4.0 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2022-4777 6.4 István Márton January 27, 2023
bbPress Voting <= 2.1.11.0 - Authenticated (Admin+) Stored Cross-Site Scripting CVE-2023-24403 7.2 Rio Darmawan January 27, 2023
TinyMCE Custom Styles <= 1.1.2 - Authenticated (Administrator+) Stored Cross-Site Scripting CVE-2023-23995 5.5 Rio Darmawan January 27, 2023
BootStrap Shortcode <= 3.4.0 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2022-4777 6.4 István Márton January 27, 2023
VikBooking Hotel Booking Engine & PMS <= 1.5.11 - Authenticated (Admin+) Stored Cross-Site Scripting CVE-2023-24396 4.4 yuyudhn January 27, 2023
WP Table Manager <= 3.5.2 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2022-47602 6.4 Cat January 27, 2023
WooCommerce PDF Invoices & Packing Slips <= 3.2.5 - Cross Site Request Forgery CVE-2022-47148 4.3 Muhammad Daffa January 27, 2023
ContentStudio <= 1.2.5 - Information Exposure CVE-2023-0557 7.5 Chloe Chamberland January 27, 2023
JS Help Desk <= 2.7.1 - Unauthenticated Arbitrary File Upload CVE-2022-46839 9.8 Vladislav Pokrovsky (ΞX.MI) January 27, 2023
Limit Login Attempts Plus <= 1.0.9 - Authenticated (Administrator+) Stored Cross-Site Scripting 5.5 January 27, 2023
JS Help Desk <= 2.7.1 - Missing Authorization CVE-2022-46840 6.3 Vladislav Pokrovsky (ΞX.MI) January 27, 2023
Unlimited Elements For Elementor (Free Widgets, Addons, Templates) <= 1.5.48 - Authenticated (Admin+) Cross Site Scripting (XSS) CVE-2022-47170 4.4 Muhammad Daffa January 27, 2023
Simple Newsletter Plugin – Noptin <= 1.10.3 - Unauthenticated CSV Injection CVE-2022-46803 7.2 Mika January 27, 2023

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation