| 2018-06-27 |
WordPress <= 4.9.6 - Authenticated Arbitrary File Deletion |
|
| 2018-02-05 |
WordPress <= 4.9.4 - Application Denial of Service (DoS) (unpatched) |
|
| 2015-01-23 |
WordPress <= 1.5.1.2 - Email Spoofing |
|
| 2015-01-23 |
WordPress <= 1.5.1.2 - Multiple Cross-Site Scripting (XSS) |
|
| 2015-01-23 |
WordPress <= 1.5.1.2 - XMLRPC Eval Injection |
|
| 2014-11-30 |
WordPress <= 4.0 - Server Side Request Forgery (SSRF) |
fixed in version 4.0.1 |
| 2014-11-20 |
WordPress <= 4.0 - Long Password Denial of Service (DoS) |
fixed in version 4.0.1 |
| 2014-09-27 |
WordPress 1.2 - HTTP Response Splitting |
fixed in version 1.2.1 |
| 2014-09-27 |
WordPress 1.2-1.2.1 - Multiple Cross-Site Scripting (XSS) |
fixed in version 1.2.2 |
