The Common Vulnerabilities and Exposures (CVE) project, maintained by the MITRE Corporation, is a list of all standardized names for vulnerabilities and security exposures.
| ID | Description | Priority | Modified date | Fixed Release |
|---|---|---|---|---|
| CVE-2023-47231 | Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Bainternet ShortCodes UI plugin <= 1.9.8 versions. | -- | Nov 9, 2023 | n/a |
| CVE-2023-45067 | Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Ashish Ajani WordPress Simple HTML Sitemap plugin <= 2.1 versions. | -- | Oct 18, 2023 | n/a |
| CVE-2023-37994 | Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Artem Abramovich Art Decoration Shortcode plugin <= 1.5.6 versions. | -- | Sep 1, 2023 | n/a |
| CVE-2023-23826 | Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Arsham Mirshah Add Posts to Pages plugin <= 1.4.1 versions. | -- | Aug 10, 2023 | n/a |
| CVE-2023-44264 | Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Arrow Plugins The Awesome Feed – Custom Feed plugin <= 2.2.5 versions. | -- | Oct 3, 2023 | n/a |
| CVE-2023-47190 | Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Apollo13Themes Apollo13 Framework Extensions plugin <= 1.9.0 versions. | -- | Nov 9, 2023 | n/a |
| CVE-2023-23701 | Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Andrew @ Geeenville Web Design Easy Sign Up plugin <= 3.4.1 versions. | -- | May 10, 2023 | n/a |
| CVE-2023-23815 | Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Alan Jackson Multi-column Tag Map plugin <= 17.0.24 versions. | -- | Apr 6, 2023 | n/a |
| CVE-2023-22711 | Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Agent Evolution IMPress Listings plugin <= 2.6.2 versions. | -- | May 10, 2023 | n/a |
| CVE-2023-39988 | Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in ???(std.Cloud) WxSync plugin <= 2.7.23 versions. | -- | Sep 5, 2023 | n/a |
| CVE-2023-44242 | Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in 2J Slideshow Team Slideshow, Image Slider by 2J plugin <= 1.3.54 versions. | -- | Oct 3, 2023 | n/a |
| CVE-2022-45069 | Auth. (contributor+) Privilege Escalation vulnerability in Crowdsignal Dashboard plugin <= 3.0.9 on WordPress. | -- | Nov 18, 2022 | n/a |
| CVE-2022-41831 | Auth. (contributor+) Cross-Site Scripting vulnerability in TCBarrett WP Glossary plugin <= 3.1.2 versions. | -- | Mar 24, 2023 | n/a |
| CVE-2023-22702 | Auth. (contributor+) Cross-Site Scripting (XSS) vulnerability in WPMobile.App WPMobile.App — Android and iOS Mobile Application plugin <= 11.13 versions. | -- | Mar 23, 2023 | n/a |
| CVE-2023-22713 | Auth. (contributor+) Cross-Site Scripting (XSS) vulnerability in WordPress Download Manager Gutenberg Blocks by WordPress Download Manager plugin <= 2.1.8 versions. | -- | May 3, 2023 | n/a |
| CVE-2023-23728 | Auth. (contributor+) Cross-Site Scripting (XSS) vulnerability in Winwar Media WP Flipclock plugin <= 1.7.4 versions. | -- | Mar 23, 2023 | n/a |
| CVE-2023-23670 | Auth. (contributor+) Cross-Site Scripting (XSS) vulnerability in Team Heateor Fancy Comments WordPress plugin <= 1.2.10 versions. | -- | Mar 31, 2023 | n/a |
| CVE-2023-23832 | Auth. (contributor+) Cross-Site Scripting (XSS) vulnerability in TC Ultimate WP Query Search Filter plugin <= 1.0.10 versions. | -- | Apr 24, 2023 | n/a |
| CVE-2023-23833 | Auth. (contributor+) Cross-Site Scripting (XSS) vulnerability in Steven Henty Drop Shadow Boxes plugin <= 1.7.10 versions. | -- | Jul 25, 2023 | n/a |
| CVE-2023-23864 | Auth. (contributor+) Cross-Site Scripting (XSS) vulnerability in Michael Aronoff Very Simple Google Maps plugin <= 2.8.4 versions. | -- | Mar 23, 2023 | n/a |
| CVE-2023-36503 | Auth. (contributor+) Cross-Site Scripting (XSS) vulnerability in Max Foundry WordPress Button Plugin MaxButtons plugin <= 9.5.3 versions. | -- | Jul 25, 2023 | n/a |
| CVE-2023-26536 | Auth. (contributor+) Cross-Site Scripting (XSS) vulnerability in Jonk @ Follow me Darling Sp*tify Play Button for WordPress plugin <= 2.05 versions. | -- | Apr 5, 2023 | n/a |
| CVE-2023-22698 | Auth. (contributor+) Cross-Site Scripting (XSS) vulnerability in Jason Bobich Theme Blvd Responsive Google Maps plugin <= 1.0.2 versions. | -- | Apr 24, 2023 | n/a |
| CVE-2023-24400 | Auth. (contributor+) Cross-Site Scripting (XSS) vulnerability in Hu-manity.Co Cookie Notice & Compliance for GDPR / CCPA plugin <= 2.4.6 versions. | -- | May 10, 2023 | n/a |
| CVE-2023-23827 | Auth. (contributor+) Cross-Site Scripting (XSS) vulnerability in Google Maps v3 Shortcode plugin <= 1.2.1 versions. | -- | Apr 24, 2023 | n/a |
| CVE-2023-23717 | Auth. (contributor+) Cross-Site Scripting (XSS) vulnerability in George Gecewicz Portfolio Slideshow plugin <= 1.13.0 versions. | -- | Apr 24, 2023 | n/a |
| CVE-2022-42485 | Auth. (contributor+) Cross-Site Scripting (XSS) vulnerability in Galaxy Weblinks Gallery with thumbnail slider plugin <= 6.0 versions. | -- | Mar 24, 2023 | n/a |
| CVE-2022-43458 | Auth. (contributor+) Cross-Site Scripting (XSS) vulnerability in Code Tides Advanced Floating Content plugin <= 1.2.1 versions. | -- | Apr 17, 2023 | n/a |
| CVE-2023-40605 | Auth. (contributor) Cross-Site Scripting (XSS) vulnerability in 93digital Typing Effect plugin <= 1.3.6 versions. | -- | Sep 28, 2023 | n/a |
| CVE-2023-44985 | Auth. (contributo+) Stored Cross-Site Scripting (XSS) vulnerability in Cytech BuddyMeet plugin <= 2.2.0 versions. | -- | Oct 16, 2023 | n/a |
| CVE-2023-28622 | Auth. (author+) Stored Cross-Site Scripting (XSS) vulnerability in Trident Technolabs Easy Slider Revolution plugin <= 1.0.0 versions. | -- | Aug 17, 2023 | n/a |
| CVE-2023-23647 | Auth. (author+) Stored Cross-Site Scripting (XSS) vulnerability in Sk. Abul Hasan Team Member – Team with Slider plugin <= 4.4 versions. | -- | May 9, 2023 | n/a |
| CVE-2023-28499 | Auth. (author+) Stored Cross-Site Scripting (XSS) vulnerability in simonpedge Slide Anything – Responsive Content / HTML Slider and Carousel plugin <= 2.4.9 versions. | -- | Nov 7, 2023 | n/a |
| CVE-2023-24385 | Auth. (author+) Stored Cross-Site Scripting (XSS) vulnerability in David Lingren Media Library Assistant plugin <= 3.11 versions. | -- | Oct 17, 2023 | n/a |
| CVE-2022-44743 | Auth. (author+) Stored Cross-Site Scripting (XSS) vulnerability in BlueGlass Jobs for WordPress plugin <= 2.5.11.2 versions. | -- | Apr 24, 2023 | n/a |
| CVE-2023-29097 | Auth. (author+) Stored Cross-Site Scripting (XSS) vulnerability in a3rev Software a3 Portfolio plugin <= 3.1.0 versions. | -- | Aug 14, 2023 | n/a |
| CVE-2022-44631 | Auth. (author+) Stored Cross-Site Scripting (XSS) vulnerability in 1app Technologies, Inc 1app Business Forms plugin <= 1.0.0 versions. | -- | Apr 24, 2023 | n/a |
| CVE-2023-22707 | Auth. (author+) Cross-Site Scripting (XSS) vulnerability in Wpsoul Greenshift – animation and page builder blocks plugin <= 4.9.9 versions. | -- | Mar 30, 2023 | n/a |
| CVE-2022-46850 | Auth. (author+) Broken Access Control vulnerability leading to Arbitrary File Deletion in Nabil Lemsieh Easy Media Replace plugin <= 0.1.3 versions. | -- | Jun 20, 2023 | n/a |
| CVE-2023-25782 | Auth. (admin+) vulnerability in Second2none Service Area Postcode Checker plugin <= 2.0.8 versions. | -- | Mar 23, 2023 | n/a |
| CVE-2023-23806 | Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Davinder Singh Custom Settings plugin <= 1.0 versions. | -- | Apr 24, 2023 | n/a |
| CVE-2022-44625 | Auth. (admin+) Stored Cross-Site Scripting\') vulnerability in Zephilou Cyklodev WP Notify plugin <= 1.2.1 versions. | -- | Apr 13, 2023 | n/a |
| CVE-2022-44742 | Auth. (admin+) Stored Cross-Site Scripting vulnerability in Yannick Lefebvre Community Events plugin <= 1.4.8 versions. | -- | Mar 23, 2023 | n/a |
| CVE-2023-41733 | Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in YYDevelopment Back To The Top Button plugin <= 2.1.5 versions. | -- | Oct 3, 2023 | n/a |
| CVE-2023-47546 | Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Walter Pinem OneClick Chat to Order plugin <= 1.0.4.2 versions. | -- | Nov 14, 2023 | n/a |
| CVE-2023-25491 | Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Samuel Marshall JCH Optimize plugin <= 3.2.2 versions. | -- | May 10, 2023 | n/a |
| CVE-2023-24376 | Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Nico Graff WP Simple Events plugin <= 1.0 versions. | -- | May 11, 2023 | n/a |
| CVE-2023-37874 | Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Dimitar Ivanov HTTP Headers plugin <= 1.18.11 versions. | -- | Aug 6, 2023 | n/a |
| CVE-2023-23883 | Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in David Gwyer WP Content Filter plugin <= 3.0.1 versions. | -- | May 9, 2023 | n/a |
| CVE-2022-40697 | Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in 3com – Asesor de Cookies para normativa española plugin <= 3.4.3 versions. | -- | Jan 26, 2023 | n/a |
