Total
37901 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2016-10963 | 1 Icegram | 1 Icegram Engage | 2024-11-21 | 6.1 Medium |
| The icegram plugin before 1.9.19 for WordPress has XSS. | ||||
| CVE-2016-10961 | 1 Inkthemes | 1 Colorway | 2024-11-21 | 6.1 Medium |
| The colorway theme before 3.4.2 for WordPress has XSS via the contactName parameter. | ||||
| CVE-2016-10957 | 1 Akal Project | 1 Akal | 2024-11-21 | 6.1 Medium |
| The Akal theme through 2016-08-22 for WordPress has XSS via the framework/brad-shortcodes/tinymce/preview.php sc parameter. | ||||
| CVE-2016-10953 | 1 Headwaythemes | 1 Headway | 2024-11-21 | 5.4 Medium |
| The Headway theme before 3.8.9 for WordPress has XSS via the license key field. | ||||
| CVE-2016-10952 | 1 Quotes Collection Project | 1 Quotes Collection | 2024-11-21 | 6.1 Medium |
| The quotes-collection plugin before 2.0.6 for WordPress has XSS via the wp-admin/admin.php?page=quotes-collection page parameter. | ||||
| CVE-2016-10941 | 1 Podlove | 1 Podlove Podcast Publisher | 2024-11-21 | 6.1 Medium |
| The podlove-podcasting-plugin-for-wordpress plugin before 2.3.16 for WordPress has XSS exploitable via CSRF. | ||||
| CVE-2016-10936 | 1 Wp-polls Project | 1 Wp-polls | 2024-11-21 | N/A |
| The wp-polls plugin before 2.73.1 for WordPress has XSS via the Poll bar option. | ||||
| CVE-2016-10934 | 1 Check Email Project | 1 Check Email | 2024-11-21 | N/A |
| The check-email plugin before 0.5.2 for WordPress has XSS. | ||||
| CVE-2016-10925 | 1 Profilepress | 1 Loginwp | 2024-11-21 | N/A |
| The peters-login-redirect plugin before 2.9.1 for WordPress has XSS during the editing of redirect URLs. | ||||
| CVE-2016-10920 | 1 Sir | 1 Gnucommerce | 2024-11-21 | N/A |
| The gnucommerce plugin before 0.5.7-BETA for WordPress has XSS. | ||||
| CVE-2016-10919 | 1 Wassup Real Time Analytics Project | 1 Wassup Real Time Analytics | 2024-11-21 | N/A |
| The wassup plugin before 1.9.1 for WordPress has XSS via the Top stats widget or the wassupURI::add_siteurl method, a different vulnerability than CVE-2012-2633. | ||||
| CVE-2016-10913 | 1 Joomunited | 1 Wp Latest Posts | 2024-11-21 | N/A |
| The wp-latest-posts plugin before 3.7.5 for WordPress has XSS. | ||||
| CVE-2016-10912 | 1 Matchboxdesigngroup | 1 Universal Analytics | 2024-11-21 | N/A |
| The universal-analytics plugin before 1.3.1 for WordPress has XSS. | ||||
| CVE-2016-10911 | 1 Cozmoslabs | 1 Profile Builder | 2024-11-21 | N/A |
| The profile-builder plugin before 2.4.2 for WordPress has multiple XSS issues. | ||||
| CVE-2016-10910 | 1 Formbuilder Project | 1 Formbuilder | 2024-11-21 | N/A |
| The formbuilder plugin before 1.06 for WordPress has multiple XSS issues. | ||||
| CVE-2016-10908 | 1 Codepeople | 1 Booking Calendar Contact Form | 2024-11-21 | N/A |
| The booking-calendar-contact-form plugin before 1.0.24 for WordPress has XSS. | ||||
| CVE-2016-10901 | 1 Gowebsolutions | 1 Wp Customer Reviews | 2024-11-21 | N/A |
| The wp-customer-reviews plugin before 3.0.9 for WordPress has XSS in the admin tools. | ||||
| CVE-2016-10900 | 1 Wpmanage | 1 Uji Countdown | 2024-11-21 | N/A |
| The uji-countdown plugin before 2.0.7 for WordPress has XSS. | ||||
| CVE-2016-10898 | 1 Fabrix | 1 Total Security | 2024-11-21 | N/A |
| The total-security plugin before 3.4.1 for WordPress has XSS. | ||||
| CVE-2016-10897 | 1 Sermon Browser Project | 1 Sermon Browser | 2024-11-21 | N/A |
| The sermon-browser plugin before 0.45.16 for WordPress has multiple XSS issues. | ||||