Vulnerabilities

DATE CVE VULNERABILITY TITLE RISK
2016-10-06 CVE-2015-1000012 Information Exposure vulnerability in Mypixs Project Mypixs 0.3
Local File Inclusion Vulnerability in mypixs v0.3 wordpress plugin
network
low complexity
mypixs-project CWE-200
7.5
7.5
2016-10-06 CVE-2015-1000011 SQL Injection vulnerability in Dukapress Project Dukapress 2.5.9
Blind SQL Injection in wordpress plugin dukapress v2.5.9
network
low complexity
dukapress-project CWE-89
critical
 9.8
9.8
2016-10-06 CVE-2015-1000010 Improper Access Control vulnerability in Simple-Image-Manipulator Project Simple-Image-Manipulator 1.0
Remote file download in simple-image-manipulator v1.0 wordpress plugin
network
low complexity
simple-image-manipulator-project CWE-284
7.5
7.5
2016-10-06 CVE-2015-1000009 Improper Access Control vulnerability in Google-Adsense-And-Hotel-Booking Project Google-Adsense-And-Hotel-Booking 1.05
Open proxy in Wordpress plugin google-adsense-and-hotel-booking v1.05
network
low complexity
google-adsense-and-hotel-booking-project CWE-284
critical
 9.1
9.1
2016-10-06 CVE-2015-1000008 Information Exposure vulnerability in Mp3-Jplayer Project Mp3-Jplayer 2.3.2
Path Disclosure Vulnerability in wordpress plugin MP3-jPlayer v2.3.2
network
low complexity
mp3-jplayer-project CWE-200
5.3
5.3
2016-10-06 CVE-2015-1000007 Improper Authorization vulnerability in Wptf-Image-Gallery Project Wptf-Image-Gallery 1.03
Remote file download vulnerability in wptf-image-gallery v1.03
network
low complexity
wptf-image-gallery-project CWE-285
7.5
7.5
2016-10-06 CVE-2015-1000006 Path Traversal vulnerability in Recent-Backups Project Recent-Backups 0.7
Remote file download vulnerability in recent-backups v0.7 wordpress plugin
network
low complexity
recent-backups-project CWE-22
7.5
7.5
2016-10-06 CVE-2015-1000005 Path Traversal vulnerability in Candidate-Application-Form Project Candidate-Application-Form 1.0
Remote file download vulnerability in candidate-application-form v1.0 wordpress plugin 		7.5
7.5
2016-10-06 CVE-2015-1000004 Cross-site Scripting vulnerability in Filedownload Project Filedownload 1.4
XSS in filedownload v1.4 wordpress plugin
network
low complexity
filedownload-project CWE-79
6.1
6.1
2016-10-06 CVE-2015-1000003 SQL Injection vulnerability in Filedownload Project Filedownload 1.4
Blind SQL Injection in filedownload v1.4 wordpress plugin
network
low complexity
filedownload-project CWE-89
critical
 9.8
9.8