Vulnerability & Exploit Database

FreeBSD: VID-79B65DC5-749F-11EC-8BE6-D4C9EF517024: WordPress -- Multiple Vulnerabilities

Wordpress: CVE-2022-21661: Improper sanitization in WP_Query

Debian: CVE-2022-21664: wordpress -- security update

Debian: CVE-2022-21663: wordpress -- security update

Wordpress: CVE-2022-21662: Low-privileged authenticated users (like author) in WordPress core are able to execute JavaScript/perform stored XSS attack, which can affect high-privileged users

Debian: CVE-2022-21662: wordpress -- security update

Wordpress: CVE-2022-21663: On a multisite, users with Super Admin role can bypass explicit/additional hardening under certain conditions through object injection

Wordpress: CVE-2022-21664: Due to lack of proper sanitization in one of the classes, there's potential for unintended SQL queries to be executed

Debian: CVE-2022-21661: wordpress -- security update

WordPress Modern Events Calendar SQLi Scanner

Wordpress: CVE-2021-44223: Unspecified Security Vulnerability

Debian: CVE-2021-44223: wordpress -- security update

Wordpress Secure Copy Content Protection and Content Locking sccp_id Unauthenticated SQLi

WordPress WPS Hide Login Login Page Revealer

Wordpress Plugin Catch Themes Demo Import RCE

WordPress Plugin Pie Register Auth Bypass to RCE

Wordpress BulletProof Security Backup Disclosure

Debian: CVE-2021-39201: wordpress -- security update

Wordpress: CVE-2021-39203: Incorrect Authorization

Wordpress: CVE-2021-39201: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')