Latest Vulnerabilities Affecting Wordpress products

Date	CVE	Title	CVSS
2019-05-22	CVE-2017-6514	Information Leak / Disclosure vulnerability in Wordpress 4.7.2	Medium
2019-03-14	CVE-2019-9787	Cross-Site Request Forgery (CSRF) vulnerability in Wordpress	Medium
2019-02-20	CVE-2019-8943	Path Traversal vulnerability in Wordpress 5.0.3	Medium
2019-02-20	CVE-2019-8942	Code Injection vulnerability in Debian and Wordpress products	Medium
2018-12-14	CVE-2018-20148	Deserialization of Untrusted Data vulnerability in Debian and Wordpress products	High
2018-12-14	CVE-2018-20149	Cross-Site Scripting (XSS) vulnerability in Debian and Wordpress products	Low
2018-12-14	CVE-2018-20151	Information Leak / Disclosure vulnerability in Debian and Wordpress products	Medium
2018-12-14	CVE-2018-20147	Improper Access Control vulnerability in Debian and Wordpress products	Medium
2018-12-14	CVE-2018-20153	Cross-Site Scripting (XSS) vulnerability in Debian and Wordpress products	Low
2018-12-14	CVE-2018-20150	Cross-Site Scripting (XSS) vulnerability in Debian and Wordpress products	Medium
2018-12-14	CVE-2018-20152	Input Validation vulnerability in Debian and Wordpress products	Medium
2018-09-06	CVE-2018-1000773	Input Validation vulnerability in Wordpress 4.9.8	Medium
2018-09-06	CVE-2017-1000600	Input Validation vulnerability in Wordpress	Medium
2018-08-10	CVE-2018-14028	Unrestricted Upload of File with Dangerous Type vulnerability in Wordpress 4.9.7	Medium
2018-06-26	CVE-2018-12895	Path Traversal vulnerability in Debian and Wordpress products	Medium

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.