WordPress 1.2 Vulnerabilities
| 2019-09-05 | WordPress <= 5.2.2 - Cross-Site Scripting (XSS) in URL Sanitisation | fixed in version 5.2.3 |
| 2018-06-27 | WordPress <= 4.9.6 - Authenticated Arbitrary File Deletion | no known fix |
| 2018-02-05 | WordPress <= 4.9.4 - Application Denial of Service (DoS) (unpatched) | no known fix |
| 2014-11-30 | WordPress <= 4.0 - Server Side Request Forgery (SSRF) | fixed in version 4.0.1 |
| 2014-11-20 | WordPress <= 4.0 - Long Password Denial of Service (DoS) | fixed in version 4.0.1 |
| 2005-06-30 | WordPress <= 1.5.1.2 - Multiple Cross-Site Scripting (XSS) | no known fix |
| 2005-06-29 | WordPress <= 1.5.1.2 - XMLRPC Eval Injection | no known fix |
| 2005-05-07 | WordPress <= 1.5.1.2 - Email Spoofing | no known fix |
| 2004-12-31 | WordPress 1.2-1.2.1 - Multiple Cross-Site Scripting (XSS) | fixed in version 1.2.2 |
| 2004-12-31 | WordPress 1.2 - HTTP Response Splitting | fixed in version 1.2.1 |
