WordPress Core Vulnerabilities Please use the search to find what you're looking for Product Title Disclosure Date WordPress WordPress <= 2.0.1 - Multiple XSS 2006-03-18 WordPress WordPress <= 1.5.2 - SQL injection 2006-03-06 WordPress WordPress <= 2.0.1 - Multiple XSS 2006-03-03 WordPress WordPress <= 2.0.1 - Multiple Vulnerabilities 2006-03-03 WordPress WordPress <= 2.0.0 - Cross Site Scripting 2006-02-16 WordPress WordPress <= 1.5.1 - Multiple Vulnerabilities 2005-12-21 WordPress WordPress <= 1.2 - Remote Code Execution 2005-10-27 WordPress WordPress <= 1.5.1.2 - Multiple XSS vulnerabilities 2005-07-01 WordPress WordPress <= 1.5.1.2 - SQL injection 2005-07-01 WordPress WordPress <= 1.5.1.2 - Multiple Vulnerabilities #1 2005-07-01 WordPress WordPress <= 1.5.1.2 - Multiple Vulnerabilities #2 2005-07-01 WordPress WordPress <= 1.3.0 - Eval Injection 2005-06-08 WordPress WordPress <=1.5.1 - SQL injection 2005-06-01 WordPress WordPress <=1.5 - SQL injection vulnerability 2005-05-20 WordPress WordPress <=1.5 - SQL injection vulnerability 2005-05-20 WordPress WordPress <=1.5 - Multiple Cross-Site Scripting (XSS) vulnerabilities 2005-04-13 WordPress WordPress <=1.2 - Multiple Cross-Site Scripting (XSS) vulnerabilities 2005-02-20 WordPress WordPress <=1.2 - CRLF (Carriage Return Line Feed) injection 2005-02-20 9 10 ... 11 12 13