Wordfence Intelligence   >   Search Results

Showing 61-80 of 4008 search results

Refine your search

Tip: You can search by CVE ID, software name or slug, or the researcher name. Expand to read about more advanced search options.

If you want to perform more advanced lookups, you can use keywords to further refine your search.

For example, woocommerce researcher:"chloe chamberland" would search for any vulnerabilities discovered by Chloe Chamberland in software that has WooCommerce in the title.

Keywords are added in keyword:value format. If the value contains spaces, you must enclose it in quotation marks.

You can use the following keywords to add criteria to your search:

title
Searches through the title of each vulnerability for matches.
date
Returns vulnerabilities by publication date. Use YYYY-MM-DD, YYYY-MM or YYYY format.
cvss-rating
Use low, medium, high or critical to limit the search to vulnerabilities with the specified rating.
researcher
Returns vulnerabilities credited to researchers containing the given text.
software
Returns vulnerabilities discovered in software containing the given text.
software-slug
Returns vulnerabilities discovered in software exactly matching the given slug.
software-type
Use plugin, theme or core to limit the search to the specified type of software.
By selecting “Search” you acknowledge that you have read and agree to the Wordfence Intelligence Terms and Conditions.
Easy Video Player <= 1.2.2.10 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode
6.4
CVE-2023-51689
Dec 27, 2023
Researcher: Ngô Thiên An (ancorn_)
Stock Ticker <= 3.23.4 - Authenticated (Contributor+) Stored Cross-Site Scritping
6.4
CVE-2023-51541
Dec 27, 2023
Researcher: resecured.io
FastDup <= 2.1.7 - Sensitive Information Exposure via Log File
5.3
CVE-2023-51406
Dec 27, 2023
Researcher: Joshua Chan
eCommerce Product Catalog <= 3.3.26 - Sensitive Information Exposure via CSV Files
5.3
CVE-2023-51688
Dec 27, 2023
Researcher: Muhammad Daffa
FunnelKit Checkout <= 3.10.3 - Authenticated(Subscriber+) Missing Authorization to Settings Change
4.3
CVE-2023-51671
Dec 27, 2023
Researcher: Dave Jong
Defender Security <= 4.1.0 - Sensitive Information Exposure via Log File
5.3
CVE-2023-51490
Dec 27, 2023
Researcher: Joshua Chan
BulkGate SMS Plugin for WooCommerce <= 3.0.2 - Missing Authorization via Multiple AJAX Actions
4.3
CVE-2023-51679
Dec 27, 2023
Researcher: Abdi Pranata
Booster Elite for WooCommerce <= 7.1.2 - Authenticated(Subscriber+) Content Injection
4.3
CVE-2023-51511
Dec 27, 2023
Researcher: Dave Jong
Quiz And Survey Master <= 8.1.16 - Missing Authorization
5.3
CVE-2023-51507
Dec 27, 2023
Researcher: Brandon James Roldan (tomorrowisnew)
Fluent Support <= 1.7.6 - Authenticated(Administrator+) SQL Injection
6.6
CVE-2023-51547
Dec 27, 2023
Researcher: beluga
Brave Popup Builder <= 0.6.2 - Authenticated (Administrator+) Stored Cross-Site Scripting
4.4
CVE-2023-51534
Dec 27, 2023
Researcher: Huynh Tien Si
WooCommerce Shipping Per Product <= 2.5.4 - Missing Authorization
4.3
CVE-2023-51499
Dec 27, 2023
Researcher: Rafie Muhammad
RegistrationMagic <= 5.2.5.0 - Form Submission Limit Bypass
5.3
CVE-2023-51544
Dec 27, 2023
Researcher: Kyle Sanchez
Inline Image Upload for BBPress <= 1.1.18 - Cross-Site Request Forgery via hm_bbpui_admin_page
4.3
CVE-2023-51668
Dec 27, 2023
Researcher: Nguyen Xuan Chien
Calculated Fields Form <= 1.2.28 - Authenticated (Contributor+) Open Redirect via Shortcode
4.3
CVE-2023-51517
Dec 27, 2023
Researcher: Ngô Thiên An (ancorn_)
If-So Dynamic Content Personalization <= 1.6.3.1 - Authenticated (Contributor+) Stored Cross-Site Scripting
6.4
CVE-2023-51492
Dec 27, 2023
Researcher: Abu Hurayra
Easy PayPal Buy Now Button <= 1.8.1 - Cross-Site Request Forgery
4.3
CVE-2023-51683
Dec 27, 2023
Researcher: LVT-tholv2k
Business Directory Plugin <= 6.3.9 - Missing Authorization via dispatch
5.4
CVE-2023-51516
Dec 27, 2023
Researcher: thiennv
Crowdsignal Dashboard – Polls, Surveys & more <= 3.0.11 - Cross-Site Request Forgery via update_rating
4.3
CVE-2023-51489
Dec 27, 2023
Researcher: Rafie Muhammad
Eazy Plugin Manager <= 4.1.2 - Missing Authorization via update_options
4.3
CVE-2023-51482
Dec 27, 2023
Researcher: Rafie Muhammad
Title CVE ID CVSS Researchers Date
Easy Video Player <= 1.2.2.10 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode CVE-2023-51689 6.4 Ngô Thiên An (ancorn_) December 27, 2023
Stock Ticker <= 3.23.4 - Authenticated (Contributor+) Stored Cross-Site Scritping CVE-2023-51541 6.4 resecured.io December 27, 2023
FastDup <= 2.1.7 - Sensitive Information Exposure via Log File CVE-2023-51406 5.3 Joshua Chan December 27, 2023
eCommerce Product Catalog <= 3.3.26 - Sensitive Information Exposure via CSV Files CVE-2023-51688 5.3 Muhammad Daffa December 27, 2023
FunnelKit Checkout <= 3.10.3 - Authenticated(Subscriber+) Missing Authorization to Settings Change CVE-2023-51671 4.3 Dave Jong December 27, 2023
Defender Security <= 4.1.0 - Sensitive Information Exposure via Log File CVE-2023-51490 5.3 Joshua Chan December 27, 2023
BulkGate SMS Plugin for WooCommerce <= 3.0.2 - Missing Authorization via Multiple AJAX Actions CVE-2023-51679 4.3 Abdi Pranata December 27, 2023
Booster Elite for WooCommerce <= 7.1.2 - Authenticated(Subscriber+) Content Injection CVE-2023-51511 4.3 Dave Jong December 27, 2023
Quiz And Survey Master <= 8.1.16 - Missing Authorization CVE-2023-51507 5.3 Brandon James Roldan (tomorrowisnew) December 27, 2023
Fluent Support <= 1.7.6 - Authenticated(Administrator+) SQL Injection CVE-2023-51547 6.6 beluga December 27, 2023
Brave Popup Builder <= 0.6.2 - Authenticated (Administrator+) Stored Cross-Site Scripting CVE-2023-51534 4.4 Huynh Tien Si December 27, 2023
WooCommerce Shipping Per Product <= 2.5.4 - Missing Authorization CVE-2023-51499 4.3 Rafie Muhammad December 27, 2023
RegistrationMagic <= 5.2.5.0 - Form Submission Limit Bypass CVE-2023-51544 5.3 Kyle Sanchez December 27, 2023
Inline Image Upload for BBPress <= 1.1.18 - Cross-Site Request Forgery via hm_bbpui_admin_page CVE-2023-51668 4.3 Nguyen Xuan Chien December 27, 2023
Calculated Fields Form <= 1.2.28 - Authenticated (Contributor+) Open Redirect via Shortcode CVE-2023-51517 4.3 Ngô Thiên An (ancorn_) December 27, 2023
If-So Dynamic Content Personalization <= 1.6.3.1 - Authenticated (Contributor+) Stored Cross-Site Scripting CVE-2023-51492 6.4 Abu Hurayra December 27, 2023
Easy PayPal Buy Now Button <= 1.8.1 - Cross-Site Request Forgery CVE-2023-51683 4.3 LVT-tholv2k December 27, 2023
Business Directory Plugin <= 6.3.9 - Missing Authorization via dispatch CVE-2023-51516 5.4 thiennv December 27, 2023
Crowdsignal Dashboard – Polls, Surveys & more <= 3.0.11 - Cross-Site Request Forgery via update_rating CVE-2023-51489 4.3 Rafie Muhammad December 27, 2023
Eazy Plugin Manager <= 4.1.2 - Missing Authorization via update_options CVE-2023-51482 4.3 Rafie Muhammad December 27, 2023

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation