Skip to main content
CVE-2021-24155 HIGH POC THREAT Act Now

The WordPress Backup and Migrate Plugin - Backup Guard WordPress plugin before 1.6.0 did not ensure that the imported files are of the SGBP format and extension, allowing high privilege users. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress PHP File Upload Backup Guard
NVD WPScan Exploit-DB
CVSS 3.1
7.2
EPSS
84.1%
CVE-2021-20308 CRITICAL POC Act Now

Integer overflow in the htmldoc 1.9.11 and before may allow attackers to execute arbitrary code and cause a denial of service that is similar to CVE-2017-9181. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Integer Overflow Denial Of Service RCE Htmldoc Debian Linux
NVD GitHub
CVSS 3.1
9.8
EPSS
2.5%
CVE-2021-24212 CRITICAL POC Act Now

The WooCommerce Help Scout WordPress plugin before 2.9.1 (https://woocommerce.com/products/woocommerce-help-scout/) allows unauthenticated users to upload any files to the site which by default will. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

WordPress File Upload Help Scout
NVD WPScan
CVSS 3.1
9.8
EPSS
7.9%
CVE-2021-24175 CRITICAL POC THREAT Act Now

The Plus Addons for Elementor Page Builder WordPress plugin before 4.1.7 was being actively exploited to by malicious actors to bypass authentication, allowing unauthenticated users to log in as any. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

WordPress Authentication Bypass The Plus Addons For Elementor
NVD WPScan
CVSS 3.1
9.8
EPSS
14.5%
CVE-2021-29996 CRITICAL POC Act Now

Mark Text through 0.16.3 allows attackers arbitrary command execution. Rated critical severity (CVSS 9.6), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

RCE XSS Marktext
NVD GitHub
CVSS 3.1
9.6
EPSS
2.8%
CVE-2021-24184 HIGH POC This Week

Several AJAX endpoints in the Tutor LMS - eLearning and online course solution WordPress plugin before 1.7.7 were unprotected, allowing students to modify course information and elevate their. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress Authentication Bypass Tutor Lms
NVD WPScan
CVSS 3.1
8.8
EPSS
1.4%
CVE-2021-24163 HIGH POC This Week

The AJAX action, wp_ajax_ninja_forms_sendwp_remote_install_handler, did not have a capability check on it, nor did it have any nonce protection, therefore making it possible for low-level users, such. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress Information Disclosure Ninja Forms
NVD WPScan
CVSS 3.1
8.8
EPSS
1.4%
CVE-2021-24162 HIGH POC This Week

In the Reponsive Menu (free and Pro) WordPress plugins before 4.0.4, attackers could craft a request and trick an administrator into importing all new settings. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF WordPress Responsive Menu
NVD WPScan
CVSS 3.1
8.8
EPSS
0.8%
CVE-2021-24161 HIGH POC This Week

In the Reponsive Menu (free and Pro) WordPress plugins before 4.0.4, attackers could craft a request and trick an administrator into uploading a zip archive containing malicious PHP files. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF WordPress RCE PHP Responsive Menu
NVD WPScan
CVSS 3.1
8.8
EPSS
1.2%
CVE-2021-24160 HIGH POC This Week

In the Reponsive Menu (free and Pro) WordPress plugins before 4.0.4, subscribers could upload zip archives containing malicious PHP files that would get extracted to the /rmp-menu/ directory. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress RCE PHP File Upload Responsive Menu
NVD WPScan
CVSS 3.1
8.8
EPSS
8.2%
CVE-2021-30055 HIGH POC This Week

A SQL injection vulnerability in Knowage Suite version 7.1 exists in the documentexecution/url analytics driver component via the 'par_year' parameter when running a report. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

SQLi Knowage
NVD GitHub
CVSS 3.1
8.8
EPSS
1.6%
CVE-2021-24174 HIGH POC This Week

The Database Backups WordPress plugin through 1.2.2.6 does not have CSRF checks, allowing attackers to make a logged in user unwanted actions, such as generate backups of the database, change the. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF WordPress Database Backups
NVD WPScan Exploit-DB
CVSS 3.1
8.1
EPSS
3.2%
CVE-2021-30141 HIGH POC PATCH This Week

Module/Settings/UserExport.php in Friendica through 2021.01 allows settings/userexport to be used by anonymous users, as demonstrated by an attempted access to an array offset on a value of type. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

PHP Information Disclosure Friendica
NVD GitHub
CVSS 3.1
7.5
EPSS
1.5%
CVE-2021-24170 HIGH POC This Week

The REST API endpoint get_users in the User Profile Picture WordPress plugin before 2.5.0 returned more information than was required for its functionality to users with the upload_files capability. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

WordPress Information Disclosure User Profile Picture
NVD WPScan
CVSS 3.1
7.5
EPSS
4.8%
CVE-2021-24150 HIGH POC This Week

The LikeBtn WordPress Like Button Rating ♥ LikeBtn WordPress plugin before 2.6.32 was vulnerable to Unauthenticated Full-Read Server-Side Request Forgery (SSRF). Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

WordPress SSRF Likebtn Like Button
NVD WPScan
CVSS 3.1
7.5
EPSS
4.3%
CVE-2021-24209 HIGH POC PATCH THREAT This Week

The WP Super Cache WordPress plugin before 1.7.2 was affected by an authenticated (admin+) RCE in the settings page due to input validation failure and weak $cache_path check in the WP Super Cache. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

WordPress RCE PHP Code Injection WP Super Cache
NVD WPScan
CVSS 3.1
7.2
EPSS
23.8%
CVE-2021-24186 MEDIUM POC This Month

The tutor_answering_quiz_question/get_answer_by_id function pair from the Tutor LMS - eLearning and online course solution WordPress plugin before 1.8.3 was vulnerable to UNION based SQL injection. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress SQLi Tutor Lms
NVD WPScan
CVSS 3.1
6.5
EPSS
1.3%
CVE-2021-24185 MEDIUM POC This Month

The tutor_place_rating AJAX action from the Tutor LMS - eLearning and online course solution WordPress plugin before 1.7.7 was vulnerable to blind and time based SQL injections that could be. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress SQLi Tutor Lms
NVD WPScan
CVSS 3.1
6.5
EPSS
1.3%
CVE-2021-24183 MEDIUM POC This Month

The tutor_quiz_builder_get_question_form AJAX action from the Tutor LMS - eLearning and online course solution WordPress plugin before 1.8.3 was vulnerable to UNION based SQL injection that could be. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress SQLi Tutor Lms
NVD WPScan
CVSS 3.1
6.5
EPSS
1.7%
CVE-2021-24182 MEDIUM POC This Month

The tutor_quiz_builder_get_answers_by_question AJAX action from the Tutor LMS - eLearning and online course solution WordPress plugin before 1.8.3 was vulnerable to UNION based SQL injection that. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress SQLi Tutor Lms
NVD WPScan
CVSS 3.1
6.5
EPSS
1.7%
CVE-2021-24181 MEDIUM POC This Month

The tutor_mark_answer_as_correct AJAX action from the Tutor LMS - eLearning and online course solution WordPress plugin before 1.7.7 was vulnerable to blind and time based SQL injections that could. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress SQLi Tutor Lms
NVD WPScan
CVSS 3.1
6.5
EPSS
1.3%
CVE-2021-24158 MEDIUM POC This Month

Orbit Fox by ThemeIsle has a feature to add a registration form to both the Elementor and Beaver Builder page builders functionality. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation Orbit Fox
NVD WPScan
CVSS 3.1
6.5
EPSS
0.9%
CVE-2021-24210 MEDIUM POC PATCH This Month

There is an open redirect in the PhastPress WordPress plugin before 1.111 that allows an attacker to malform a request to a page with the plugin and then redirect the victim to a malicious page. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

WordPress Open Redirect PHP Phastpress
NVD WPScan
CVSS 3.1
6.1
EPSS
3.1%
CVE-2021-24169 MEDIUM POC THREAT This Month

This Advanced Order Export For WooCommerce WordPress plugin before 3.1.8 helps you to easily export WooCommerce order data. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS Advanced Order Export For Woocommerce
NVD WPScan Exploit-DB
CVSS 3.1
6.1
EPSS
10.3%
CVE-2021-24165 MEDIUM POC This Month

In the Ninja Forms Contact Form WordPress plugin before 3.4.34, the wp_ajax_nf_oauth_connect AJAX action was vulnerable to open redirect due to the use of a user supplied redirect parameter and no. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

WordPress Open Redirect Ninja Forms
NVD WPScan
CVSS 3.1
6.1
EPSS
1.6%
CVE-2021-30058 MEDIUM POC This Month

Knowage Suite before 7.4 is vulnerable to cross-site scripting (XSS). Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS Knowage
NVD GitHub
CVSS 3.1
6.1
EPSS
1.0%
CVE-2021-20307 CRITICAL Act Now

Format string vulnerability in panoFileOutputNamesCreate() in libpano13 2.9.20~rc2+dfsg-3 and earlier can lead to read and write arbitrary memory values. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Libpano13 Fedora Debian Linux
NVD
CVSS 3.1
9.8
EPSS
1.9%
CVE-2021-24171 CRITICAL Act Now

The WooCommerce Upload Files WordPress plugin before 59.4 ran a single sanitization pass to remove blocked extensions such as .php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

WordPress PHP File Upload Path Traversal Woocommerce Upload Files
NVD WPScan
CVSS 3.1
9.8
EPSS
1.9%
CVE-2021-24211 MEDIUM POC This Month

The WordPress Related Posts plugin through 3.6.4 contains an authenticated (admin+) stored XSS vulnerability in the title field on the settings page. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS Wordpress Related Posts
NVD WPScan
CVSS 3.1
5.4
EPSS
0.6%
CVE-2021-24208 MEDIUM POC PATCH This Month

The editor of the WP Page Builder WordPress plugin before 1.2.4 allows lower-privileged users to insert unfiltered HTML, including JavaScript, into pages via the “Raw HTML” widget and the “Custom. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

WordPress XSS Wp Page Builder
NVD WPScan
CVSS 3.1
5.4
EPSS
0.7%
CVE-2021-24206 MEDIUM POC This Month

In the Elementor Website Builder WordPress plugin before 3.1.4, the image box widget (includes/widgets/image-box.php) accepts a ‘title_size’ parameter. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS PHP Website Builder
NVD WPScan
CVSS 3.1
5.4
EPSS
0.7%
CVE-2021-24205 MEDIUM POC This Month

In the Elementor Website Builder WordPress plugin before 3.1.4, the icon box widget (includes/widgets/icon-box.php) accepts a ‘title_size’ parameter. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS PHP Website Builder
NVD WPScan
CVSS 3.1
5.4
EPSS
0.7%
CVE-2021-24204 MEDIUM POC This Month

In the Elementor Website Builder WordPress plugin before 3.1.4, the accordion widget (includes/widgets/accordion.php) accepts a ‘title_html_tag’ parameter. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS PHP Website Builder
NVD WPScan
CVSS 3.1
5.4
EPSS
0.7%
CVE-2021-24203 MEDIUM POC This Month

In the Elementor Website Builder WordPress plugin before 3.1.4, the divider widget (includes/widgets/divider.php) accepts an ‘html_tag’ parameter. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS PHP Website Builder
NVD WPScan
CVSS 3.1
5.4
EPSS
0.7%
CVE-2021-24202 MEDIUM POC This Month

In the Elementor Website Builder WordPress plugin before 3.1.4, the heading widget (includes/widgets/heading.php) accepts a ‘header_size’ parameter. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS PHP Website Builder
NVD WPScan
CVSS 3.1
5.4
EPSS
0.7%
CVE-2021-24201 MEDIUM POC This Month

In the Elementor Website Builder WordPress plugin before 3.1.4, the column element (includes/elements/column.php) accepts an ‘html_tag’ parameter. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS PHP Website Builder
NVD WPScan
CVSS 3.1
5.4
EPSS
0.7%
CVE-2021-24196 MEDIUM POC This Month

The Social Slider Widget WordPress plugin before 1.8.5 allowed Authenticated Reflected XSS in the plugin settings page as the ‘token_error’ parameter can be controlled by users and it is directly. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS Social Slider Widget
NVD WPScan
CVSS 3.1
5.4
EPSS
0.7%
CVE-2021-24187 MEDIUM POC This Month

The setting page of the SEO Redirection Plugin - 301 Redirect Manager WordPress plugin before 6.4 is vulnerable to reflected Cross-Site Scripting (XSS) as user input is not properly sanitised before. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS Seo Redirection
NVD WPScan
CVSS 3.1
5.4
EPSS
0.6%
CVE-2021-24180 MEDIUM POC This Month

Unvalidated input and lack of output encoding within the Related Posts for WordPress plugin before 2.0.4 lead to a Reflected Cross-Site Scripting (XSS) vulnerability within the 'lang' GET parameter. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS Related Posts
NVD WPScan
CVSS 3.1
5.4
EPSS
0.6%
CVE-2021-24177 MEDIUM POC PATCH This Month

In the default configuration of the File Manager WordPress plugin before 7.1, a Reflected XSS can occur on the endpoint /wp-admin/admin.php?page=wp_file_manager_properties when a payload is submitted. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

WordPress XSS PHP File Manager
NVD WPScan
CVSS 3.1
5.4
EPSS
0.9%
CVE-2021-24176 MEDIUM POC This Month

The JH 404 Logger WordPress plugin through 1.1 doesn't sanitise the referer and path of 404 pages, when they are output in the dashboard, which leads to executing arbitrary JavaScript code in the. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS Jh 404 Logger
NVD WPScan
CVSS 3.1
5.4
EPSS
2.0%
CVE-2021-24168 MEDIUM POC This Month

The Easy Contact Form Pro WordPress plugin before 1.1.1.9 did not properly sanitise the text fields (such as Email Subject, Email Recipient, etc) when creating or editing a form, leading to an. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS Easy Contact Form Pro
NVD WPScan
CVSS 3.1
5.4
EPSS
0.6%
CVE-2021-24166 MEDIUM POC This Month

The wp_ajax_nf_oauth_disconnect from the Ninja Forms Contact Form - The Drag and Drop Form Builder for WordPress WordPress plugin before 3.4.34 had no nonce protection making it possible for. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

CSRF WordPress Ninja Forms
NVD WPScan
CVSS 3.1
5.4
EPSS
0.5%
CVE-2021-24157 MEDIUM POC This Month

Orbit Fox by ThemeIsle has a feature to add custom scripts to the header and footer of a page or post. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Orbit Fox
NVD WPScan
CVSS 3.1
5.4
EPSS
0.7%
CVE-2021-24156 MEDIUM POC This Month

Stored Cross-Site Scripting vulnerabilities in Testimonial Rotator 3.0.3 allow low privileged users (Contributor) to inject arbitrary JavaScript code or HTML without approval. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation XSS Testimonial Rotator
NVD WPScan
CVSS 3.1
5.4
EPSS
0.7%
CVE-2021-24153 MEDIUM POC This Month

A Stored Cross-Site Scripting vulnerability was discovered in the Yoast SEO WordPress plugin before 3.4.1, which had built-in blacklist filters which were blacklisting Parenthesis as well as several. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress XSS Yoast Seo
NVD WPScan
CVSS 3.1
5.4
EPSS
1.1%
CVE-2021-30056 MEDIUM POC This Month

Knowage Suite before 7.4 is vulnerable to reflected cross-site scripting (XSS). Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Knowage
NVD GitHub
CVSS 3.1
5.4
EPSS
0.6%
CVE-2021-24159 HIGH This Week

Due to the lack of sanitization and lack of nonce protection on the custom CSS feature, an attacker could craft a request to inject malicious JavaScript on a site using the Contact Form 7 Style. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

CSRF WordPress Contact Form 7
NVD WPScan
CVSS 3.1
8.8
EPSS
0.6%
CVE-2021-30057 MEDIUM POC This Month

A stored HTML injection vulnerability exists in Knowage Suite version 7.1. Rated medium severity (CVSS 4.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Code Injection Knowage
NVD GitHub
CVSS 3.1
4.8
EPSS
0.7%
CVE-2021-24207 MEDIUM POC This Month

By default, the WP Page Builder WordPress plugin before 1.2.4 allows subscriber-level users to edit and make changes to any and all posts pages - user roles must be specifically blocked from editing. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress Authentication Bypass Wp Page Builder
NVD WPScan
CVSS 3.1
4.3
EPSS
0.7%
Page 1 of 2 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy