All vulnerabilities
33 / 33
Sort
8.8
CVE-2021-4354CVE
The PWA for WP & AMP for WordPress is vulnerable to arbitrary file uploads due to missing file …
2021-01-01
EPSS1.8%
pct 75
5.4
CVE-2018-20838CVE
ampforwp_save_steps_data in the AMP for WP plugin before 0.9.97.21 for WordPress allows stored …
2018-01-01
EPSS1.1%
pct 60
6.5
CVE-2024-1043CVE
The AMP for WP – Accelerated Mobile Pages plugin for WordPress is vulnerable to unauthorized lo…
2024-01-01
EPSS0.7%
pct 46
4.3
CVE-2021-4366CVE
The PWA for WP & AMP plugin for WordPress is vulnerable to authorization bypass due to a missin…
2021-01-01
EPSS0.6%
pct 45
5.4
CVE-2023-25469ANC
Missing Authorization vulnerability in Magazine3 Easy Table of Contents allows Exploiting Incor…
2023-01-01
EPSS0.5%
pct 41
6.1
CVE-2023-35883CVE
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Magazine3 Core Web Vitals …
2023-01-01Pre-auth
EPSS0.5%
pct 37
5.4
CVE-2023-6782CVE
The AMP for WP – Accelerated Mobile Pages plugin for WordPress is vulnerable to Stored Cross-Si…
2023-01-01
EPSS0.4%
pct 35
4.3
CVE-2024-1288CVE
The Schema & Structured Data for WP & AMP plugin for WordPress is vulnerable to unauthorized mo…
2024-01-01
EPSS0.4%
pct 34
9.1
CVE-2026-9067ANC
The Schema & Structured Data for WP & AMP WordPress plugin before 1.60 does not check user capa…
2026-01-01Pre-auth
EPSS0.4%
pct 33
6.1
CVE-2024-6334CVE
The Easy Table of Contents WordPress plugin before 2.0.67.1 does not sanitise and escape some o…
2024-01-01Pre-auth
EPSS0.4%
pct 30
5.4
CVE-2024-5582CVE
The Schema & Structured Data for WP & AMP plugin for WordPress is vulnerable to Stored Cross-Si…
2024-01-01
EPSS0.4%
pct 30
6.1
CVE-2024-7082CVE
The Easy Table of Contents WordPress plugin before 2.0.68 does not sanitise and escape some par…
2024-01-01Pre-auth
EPSS0.4%
pct 30
5.4
CVE-2023-48321CVE
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerabil…
2023-01-01
EPSS0.4%
pct 29
6.3
CVE-2024-43146ANC
Missing Authorization vulnerability in Ahmed Kaludi, Mohammed Kaludi AMP for WP allows Exploiti…
2024-01-01
EPSS0.4%
pct 29
5.4
CVE-2024-1586CVE
The Schema & Structured Data for WP & AMP plugin for WordPress is vulnerable to Stored Cross-Si…
2024-01-01
EPSS0.4%
pct 28
5.4
CVE-2024-13575CVE
The Web Stories Enhancer – Level Up Your Web Stories plugin for WordPress is vulnerable to Stor…
2024-01-01
EPSS0.4%
pct 26
5.4
CVE-2024-22146CVE
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerabil…
2024-01-01
EPSS0.3%
pct 25
5.3
CVE-2024-49683ANC
Missing Authorization vulnerability in Schema & Structured Data for WP & AMP allows Accessing F…
2024-01-01Pre-auth
EPSS0.3%
pct 25
6.4
CVE-2024-3491ANC
The Schema & Structured Data for WP & AMP plugin for WordPress is vulnerable to Stored Cross-Si…
2024-01-01
EPSS0.3%
pct 24
5.4
CVE-2024-6896CVE
The AMP for WP – Accelerated Mobile Pages plugin for WordPress is vulnerable to Stored Cross-Si…
2024-01-01
EPSS0.3%
pct 24
5.9
CVE-2024-5573CVE
The Easy Table of Contents WordPress plugin before 2.0.66 does not sanitise and escape some of …
2024-01-01
EPSS0.3%
pct 24
8.8
CVE-2024-47318CVE
Missing Authorization vulnerability in Magazine3 PWA for WP & AMP allows Exploiting Incorrectly…
2024-01-01
EPSS0.3%
pct 22
6.4
CVE-2025-13738ANC
The Easy Table of Contents plugin for WordPress is vulnerable to Stored Cross-Site Scripting vi…
2025-01-01
EPSS0.3%
pct 19
6.1
CVE-2024-11254CVE
The AMP for WP – Accelerated Mobile Pages plugin for WordPress is vulnerable to Reflected Cross…
2024-01-01Pre-auth
EPSS0.3%
pct 18
4.8
CVE-2024-7759CVE
The PWA for WP WordPress plugin before 1.7.72 does not sanitise and escape some of its setting…
2024-01-01
EPSS0.3%
pct 18
8.8
CVE-2024-9598CVE
The AMP for WP – Accelerated Mobile Pages plugin for WordPress is vulnerable to Cross-Site Requ…
2024-01-01Pre-auth
EPSS0.3%
pct 17
6.4
CVE-2025-14069ANC
The Schema & Structured Data for WP & AMP plugin for WordPress is vulnerable to Stored Cross-Si…
2025-01-01
EPSS0.2%
pct 14
6.4
CVE-2025-11502ANC
The Schema & Structured Data for WP & AMP plugin for WordPress is vulnerable to Stored Cross-Si…
2025-01-01
EPSS0.2%
pct 11
6.1
CVE-2025-9512ANC
The Schema & Structured Data for WP & AMP WordPress plugin before 1.50 does not properly handle…
2025-01-01Pre-auth
EPSS0.2%
pct 9
6.4
CVE-2026-0627ANC
The AMP for WP plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG file u…
2026-01-01
EPSS0.2%
pct 8
5.4
CVE-2025-62144ANC
Missing Authorization vulnerability in Mohammed Kaludi Core Web Vitals & PageSpeed Booster core…
2025-01-01
EPSS0.1%
pct 4
4.3
CVE-2025-14468ANC
The AMP for WP – Accelerated Mobile Pages plugin for WordPress is vulnerable to Cross-Site Requ…
2025-01-01Pre-auth
EPSS0.1%
pct 3
4.3
CVE-2026-32343ANC
Cross-Site Request Forgery (CSRF) vulnerability in Magazine3 Easy Table of Contents easy-table-…
2026-01-01Pre-auth
EPSS0.1%
pct 1
Select a vulnerability on the left to open the preview.