Wordfence Intelligence   >   Search Results

Showing 1-20 of 1023 search results

Refine your search

Tip: You can search by CVE ID, software name or slug, or the researcher name. Expand to read about more advanced search options.

If you want to perform more advanced lookups, you can use keywords to further refine your search.

For example, woocommerce researcher:"chloe chamberland" would search for any vulnerabilities discovered by Chloe Chamberland in software that has WooCommerce in the title.

Keywords are added in keyword:value format. If the value contains spaces, you must enclose it in quotation marks.

You can use the following keywords to add criteria to your search:

title
Searches through the title of each vulnerability for matches.
date
Returns vulnerabilities by publication date. Use YYYY-MM-DD, YYYY-MM or YYYY format.
cvss-rating
Use low, medium, high or critical to limit the search to vulnerabilities with the specified rating.
researcher
Returns vulnerabilities credited to researchers containing the given text.
software
Returns vulnerabilities discovered in software containing the given text.
software-slug
Returns vulnerabilities discovered in software exactly matching the given slug.
software-type
Use plugin, theme or core to limit the search to the specified type of software.
By selecting “Search” you acknowledge that you have read and agree to the Wordfence Intelligence Terms and Conditions.
SVGator – Add Animated SVG Easily <= 1.2.4 - Cross-Site Request Forgery via multiple functions
7.1
CVE-2023-48766
Dec 28, 2023
Researcher: Abdi Pranata
Business Directory Plugin <= 6.3.10 - Cross-Site Request Forgery
4.3
CVE-2023-5803
Dec 28, 2023
Researcher: Brandon James Roldan (tomorrowisnew)
Quantity Plus Minus Button for WooCommerce by CodeAstrology <= 1.1.9 - Cross-Site Request Forgery via wqpmb_form_submit
6.5
CVE-2023-48768
Dec 28, 2023
Researcher: Elliot
WooCommerce Login Redirect <= 2.2.4 - Cross-Site Request Forgery
4.3
CVE-2023-48773
Dec 28, 2023
Researcher: qilin_99
Abandoned Cart Lite for WooCommerce <= 5.16.1 - Cross-Site Request Forgery
5.3
CVE ID Unknown
Dec 1, 2023
Researchers:
Gift Up 2.21.3 - Cross-Site Request Forgery via consume_post
5.3
CVE ID Unknown
Dec 1, 2023
Researchers:
Quotes for WooCommerce <= 2.0.1 - Cross-Site Request Forgery
4.3
CVE ID Unknown
Nov 30, 2023
Researchers:
Debug Log Manager <= 2.2.0 - Cross-Site Request Forgery
4.3
CVE-2023-5772
Nov 29, 2023
Researcher: Dmitrii Ignatyev
Product Size Chart For WooCommerce <= 1.1.5 - Cross-Site Request Forgery via get_save_option
6.5
CVE-2023-48778
Nov 28, 2023
Researcher: qilin_99
Button Generator – easily Button Builder <= 2.3.8 - Cross-Site Request Forgery
4.3
CVE-2023-49155
Nov 28, 2023
Researcher: Elliot
Ocean Extra <= 2.2.2 - Cross-Site Request Forgery to Arbitrary Plugin Activation
4.3
CVE-2023-49164
Nov 28, 2023
Researcher: Dave Jong
MkRapel Regiones y Ciudades de Chile para WC <= 4.3.0 - Cross-Site Request Forgery via multiple functions
6.5
CVE-2023-48781
Nov 28, 2023
Researcher: qilin_99
Prevent Landscape Rotation <= 2.0 - Cross-Site Request Forgery via adminpage.php
6.5
CVE-2023-48772
Nov 28, 2023
Researcher: Nguyen Xuan Chien
Ecwid Ecommerce Shopping Cart <= 6.12.4 - Cross-Site Request Forgery
4.3
CVE ID Unknown
Nov 28, 2023
Researchers:
AdFoxly – Ad Manager, AdSense Ads & Ads.txt <= 1.8.5 - Cross-Site Request Forgery
4.3
CVE-2023-46617
Nov 28, 2023
Researcher: LVT-tholv2k
Affiliate Booster – Pros & Cons, Notice, and CTA Blocks for Affiliates <= 3.0.4 - Cross-Site Request Forgery via process_bulk_action
4.3
CVE-2023-49148
Nov 28, 2023
Researcher: LEE SE HYOUNG
Razorpay for WooCommerce <= 4.5.6 - Cross-Site Request Forgery
4.3
CVE ID Unknown
Nov 28, 2023
Researchers:
Add to Cart Text Changer and Customize Button, Add Custom Icon <= 2.0 - Cross-Site Request Forgery via wactc_text_form
4.3
CVE-2023-49153
Nov 28, 2023
Researcher: Skalucy
Chat Bubble <= 2.3 - Cross-Site Request Forgery via cbb_submit_settings_data
6.5
CVE-2023-48769
Nov 28, 2023
Researcher: Vladislav Pokrovsky (ΞX.MI)
teachPress <= 9.0.5 - Cross-Site Request Forgery via delete_database()
4.3
CVE-2023-49163
Nov 28, 2023
Researcher: LVT-tholv2k
Title CVE ID CVSS Researchers Date
SVGator – Add Animated SVG Easily <= 1.2.4 - Cross-Site Request Forgery via multiple functions CVE-2023-48766 7.1 Abdi Pranata December 28, 2023
Business Directory Plugin <= 6.3.10 - Cross-Site Request Forgery CVE-2023-5803 4.3 Brandon James Roldan (tomorrowisnew) December 28, 2023
Quantity Plus Minus Button for WooCommerce by CodeAstrology <= 1.1.9 - Cross-Site Request Forgery via wqpmb_form_submit CVE-2023-48768 6.5 Elliot December 28, 2023
WooCommerce Login Redirect <= 2.2.4 - Cross-Site Request Forgery CVE-2023-48773 4.3 qilin_99 December 28, 2023
Abandoned Cart Lite for WooCommerce <= 5.16.1 - Cross-Site Request Forgery 5.3 December 1, 2023
Gift Up 2.21.3 - Cross-Site Request Forgery via consume_post 5.3 December 1, 2023
Quotes for WooCommerce <= 2.0.1 - Cross-Site Request Forgery 4.3 November 30, 2023
Debug Log Manager <= 2.2.0 - Cross-Site Request Forgery CVE-2023-5772 4.3 Dmitrii Ignatyev November 29, 2023
Product Size Chart For WooCommerce <= 1.1.5 - Cross-Site Request Forgery via get_save_option CVE-2023-48778 6.5 qilin_99 November 28, 2023
Button Generator – easily Button Builder <= 2.3.8 - Cross-Site Request Forgery CVE-2023-49155 4.3 Elliot November 28, 2023
Ocean Extra <= 2.2.2 - Cross-Site Request Forgery to Arbitrary Plugin Activation CVE-2023-49164 4.3 Dave Jong November 28, 2023
MkRapel Regiones y Ciudades de Chile para WC <= 4.3.0 - Cross-Site Request Forgery via multiple functions CVE-2023-48781 6.5 qilin_99 November 28, 2023
Prevent Landscape Rotation <= 2.0 - Cross-Site Request Forgery via adminpage.php CVE-2023-48772 6.5 Nguyen Xuan Chien November 28, 2023
Ecwid Ecommerce Shopping Cart <= 6.12.4 - Cross-Site Request Forgery 4.3 November 28, 2023
AdFoxly – Ad Manager, AdSense Ads & Ads.txt <= 1.8.5 - Cross-Site Request Forgery CVE-2023-46617 4.3 LVT-tholv2k November 28, 2023
Affiliate Booster – Pros & Cons, Notice, and CTA Blocks for Affiliates <= 3.0.4 - Cross-Site Request Forgery via process_bulk_action CVE-2023-49148 4.3 LEE SE HYOUNG November 28, 2023
Razorpay for WooCommerce <= 4.5.6 - Cross-Site Request Forgery 4.3 November 28, 2023
Add to Cart Text Changer and Customize Button, Add Custom Icon <= 2.0 - Cross-Site Request Forgery via wactc_text_form CVE-2023-49153 4.3 Skalucy November 28, 2023
Chat Bubble <= 2.3 - Cross-Site Request Forgery via cbb_submit_settings_data CVE-2023-48769 6.5 Vladislav Pokrovsky (ΞX.MI) November 28, 2023
teachPress <= 9.0.5 - Cross-Site Request Forgery via delete_database() CVE-2023-49163 4.3 LVT-tholv2k November 28, 2023

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation