WordPress Core Vulnerabilities Please use the search to find what you're looking for Product Title Disclosure Date WordPress WordPress <= 4.5.1 - XSS 2016-05-07 WordPress WordPress <= 4.4 - Service Side Request Forgery 2016-04-15 WordPress WordPress <= 4.4.1 - XSS 2016-04-12 WordPress WordPress <= 4.4.1 - CSRF 2016-04-12 WordPress WordPress <= 4.2.1 - XSS 2016-03-25 WordPress WordPress <= 4.4.1 - SSRF 2016-02-05 WordPress WordPress <= 4.4.1 - Open Redirect 2016-02-04 WordPress WordPress <= 4.4.0 - Multiple XSS 2016-01-08 WordPress WordPress <= 4.3.0 - XSS 2015-10-28 WordPress WordPress <= 4.2.3 - XSS #1 2015-08-04 WordPress WordPress <= 4.2.3 - XSS #2 2015-08-04 WordPress WordPress <= 4.2.3 - CSRF 2015-08-04 WordPress WordPress <= 4.2.3 - Multiple Vulnerabilities 2015-08-04 WordPress WordPress <= 4.3.0 - BYPASS 2015-08-02 WordPress WordPress <= 4.2.2 - XSS 2015-07-23 WordPress WordPress <= 4.1.1 - XSS 2015-04-28 WordPress WordPress <= 4.1.1 - Multiple XSS 2015-04-28 WordPress WordPress <= 4.2 - Stored XSS 2015-04-27 WordPress WordPress <= 4.2.3 - SQL Injection 2015-03-05 WordPress WordPress <=4.0.1 - Denial of Service Attacks 2014-12-01 1 2 3 4 5 ... 11 12 13