Уязвимости

Рейтинг: 4.9 из 11 оценок

База данных уязвимостей тем и плагинов под WordPress от сервиса WPScan по состоянию на текущий день.

WordPress 5.6-5.7 - Authenticated XXE Within the Media Library Affecting PHP 8

WordPress 4.7-5.7 - Authenticated Password Protected Pages Exposure

WordPress 3.7 to 5.7.1 - Object Injection in PHPMailer

WordPress 5.4 to 5.8 - Lodash Library Update

WordPress 5.4 to 5.8 - Authenticated XSS in Block Editor

WordPress 5.4 to 5.8 - Data Exposure via REST API

WordPress < 5.8.2 - Expired DST Root CA X3 Certificate

WordPress < 5.8.3 - SQL Injection via WP_Query

WordPress < 5.8.3 - Author+ Stored XSS via Post Slugs

WordPress 4.1-5.8.2 - SQL Injection via WP_Meta_Query

WordPress < 5.8.3 - Super Admin Object Injection in Multisites

WordPress < 5.9.2 - Prototype Pollution in jQuery

WordPress < 5.9.2 / Gutenberg < 12.7.2 - Prototype Pollution via Gutenberg’s wordpress/url package

WP < 6.0.2 - Reflected Cross-Site Scripting

WP < 6.0.2 - Authenticated Stored Cross-Site Scripting

WP < 6.0.2 - SQLi via Link API