Wordpress
by Wordpress
Review your setup
Wordpress has some exploitation signals but is generally manageable with regular updates.
What to do
- Keep this software updated
- Review your configuration for unnecessary exposure
- Check for known-vulnerable components or plugins
What Attackers Target
Vulnerabilities with high exploit probability
23.1%
Confirmed actively exploited (CISA)
0.6%
Public exploit code available
3.1%
Based on 160 known vulnerabilities. Percentages show the proportion that are actively dangerous — a low percentage means most vulnerabilities in this product are not being exploited.
Most Dangerous Vulnerabilities
| CVE | CVSS | Exploit Probability | Confirmed |
|---|---|---|---|
| CVE-2016-10033 | 9.8 | 94.5% | Yes |
| CVE-2019-8943 | 6.5 | 93.9% | — |
| CVE-2016-10045 | 9.8 | 93.4% | — |
| CVE-2019-8942 | 8.8 | 93.0% | — |
| CVE-2017-5487 | 5.3 | 92.5% | — |
| CVE-2024-4439 | 7.2 | 91.5% | — |
| CVE-2022-3590 | 5.9 | 91.1% | — |
| CVE-2022-21661 | 8.0 | 90.9% | — |
| CVE-2021-29447 | 7.1 | 90.0% | — |
| CVE-2018-12895 | 8.8 | 89.0% | — |
| CVE-2018-6389 | 7.5 | 87.5% | — |
| CVE-2019-9787 | 8.8 | 81.0% | — |
| CVE-2023-2745 | 5.4 | 79.5% | — |
| CVE-2017-1001000 | 7.5 | 78.9% | — |
| CVE-2017-8295 | 5.9 | 77.1% | — |
| CVE-2019-17671 | 5.3 | 66.7% | — |
| CVE-2018-20148 | 9.8 | 54.9% | — |
| CVE-2023-5561 | 5.3 | 53.0% | — |
| CVE-2017-14719 | 7.5 | 50.7% | — |
| CVE-2020-11027 | 6.1 | 42.6% | — |
36
/ 100
moderate-risk
Active Threat
34/50 · High
Exploit Availability
2/50 · Minimal
Score uses Wilson score intervals to account for sample size. Products with few CVEs are scored conservatively.