Latest Vulnerabilities Affecting Wordpress products

Date	CVE	Title	CVSS
2019-09-11	CVE-2019-16220	URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Wordpress	Medium
2019-09-11	CVE-2019-16219	Cross-Site Scripting (XSS) vulnerability in Wordpress	Medium
2019-09-11	CVE-2019-16217	Cross-Site Scripting (XSS) vulnerability in Wordpress	Medium
2019-09-11	CVE-2019-16221	Cross-Site Scripting (XSS) vulnerability in Wordpress	Medium
2019-09-11	CVE-2019-16223	Cross-Site Scripting (XSS) vulnerability in Wordpress	Low
2019-09-11	CVE-2019-16222	Cross-Site Scripting (XSS) vulnerability in Wordpress	Medium
2019-09-11	CVE-2019-16218	Cross-Site Scripting (XSS) vulnerability in Wordpress	Medium
2019-05-22	CVE-2017-6514	Information Leak / Disclosure vulnerability in Wordpress 4.7.2	Medium
2019-03-14	CVE-2019-9787	Cross-Site Request Forgery (CSRF) vulnerability in Wordpress	Medium
2019-02-20	CVE-2019-8943	Path Traversal vulnerability in Wordpress 5.0.3	Medium
2019-02-20	CVE-2019-8942	Code Injection vulnerability in Debian and Wordpress products	Medium
2018-12-14	CVE-2018-20148	Deserialization of Untrusted Data vulnerability in Debian and Wordpress products	High
2018-12-14	CVE-2018-20149	Cross-Site Scripting (XSS) vulnerability in Debian and Wordpress products	Low
2018-12-14	CVE-2018-20151	Information Leak / Disclosure vulnerability in Debian and Wordpress products	Medium
2018-12-14	CVE-2018-20147	Improper Access Control vulnerability in Debian and Wordpress products	Medium

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.