Known Vulnerabilities for Wordpress Mu by Wordpress
Listed below are 10 of the newest known vulnerabilities associated with "Wordpress Mu" by "Wordpress".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-33559 | WordPress Plugin "OpenStreetMap" provided by MiKa contains a cross-site scripting vulnerability. On the site with the affecte... | Not Provided | 2026-03-27 | 2026-03-27 |
| CVE-2026-27052 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in vill... | Not Provided | 2026-02-19 | 2026-04-01 |
| CVE-2026-25392 | URL Redirection to Untrusted Site ('Open Redirect') vulnerability in KaizenCoders Update URLs – Quick and Easy way to s... | Not Provided | 2026-02-19 | 2026-04-01 |
| CVE-2026-24596 | Cross-Site Request Forgery (CSRF) vulnerability in marynixie Related Posts Thumbnails Plugin for WordPress related-posts-thum... | Not Provided | 2026-01-23 | 2026-04-01 |
| CVE-2026-23806 | Missing Authorization vulnerability in BlueGlass Interactive AG Jobs for WordPress job-postings allows Exploiting Incorrectly... | Not Provided | 2026-03-25 | 2026-03-27 |
| CVE-2026-22523 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in themepassion Ultra Word... | Not Provided | 2026-03-25 | 2026-03-25 |
| CVE-2026-22517 | Missing Authorization vulnerability in Passionate Brains GA4WP: Google Analytics for WordPress ga-for-wp allows Exploiting In... | Not Provided | 2026-01-08 | 2026-04-01 |
| CVE-2026-22490 | Missing Authorization vulnerability in niklaslindemann Bulk Landing Page Creator for WordPress LPagery lpagery allows Exploit... | Not Provided | 2026-01-08 | 2026-04-01 |
| CVE-2026-22459 | Missing Authorization vulnerability in Blend Media WordPress CTA easy-sticky-sidebar allows Exploiting Incorrectly Configured... | Not Provided | 2026-03-05 | 2026-04-01 |
| CVE-2026-5130 | The Debugger & Troubleshooter plugin for WordPress was vulnerable to Unauthenticated Privilege Escalation in versions up to a... | Not Provided | 2026-03-30 | 2026-03-31 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Wordpress | Wordpress Mu | 2.9.2 | All | All | All |
| Application | Wordpress | Wordpress Mu | 2.9.1.1 | All | All | All |
| Application | Wordpress | Wordpress Mu | 2.9.1 | All | All | All |
| Application | Wordpress | Wordpress Mu | 2.8.6 | All | All | All |
| Application | Wordpress | Wordpress Mu | 2.8.5.2 | All | All | All |
| Application | Wordpress | Wordpress Mu | 2.8.5.1 | All | All | All |
| Application | Wordpress | Wordpress Mu | 2.8.5 | All | All | All |
| Application | Wordpress | Wordpress Mu | 2.8.4 | All | All | All |
| Application | Wordpress | Wordpress Mu | 2.8.3 | All | All | All |
| Application | Wordpress | Wordpress Mu | 2.8.2 | All | All | All |
| Application | Wordpress | Wordpress Mu | 2.8.1 | All | All | All |
| Application | Wordpress | Wordpress Mu | 2.7.1 | All | All | All |
| Application | Wordpress | Wordpress Mu | 2.7 | All | All | All |
| Application | Wordpress | Wordpress Mu | 2.6.5 | All | All | All |
| Application | Wordpress | Wordpress Mu | 2.6.3 | All | All | All |
| Application | Wordpress | Wordpress Mu | 2.6.2 | All | All | All |
| Application | Wordpress | Wordpress Mu | 2.6.1 | All | All | All |
| Application | Wordpress | Wordpress Mu | 2.6 | All | All | All |
| Application | Wordpress | Wordpress Mu | 1.5.1 | All | All | All |
| Application | Wordpress | Wordpress Mu | 1.3.3 | All | All | All |