cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-6230,https://securityvulnerability.io/vulnerability/CVE-2024-6230,CSRF Flaw in WordPress Plugin Could Allow Attackers to Trick Admin into Making Unintended Actions,"The پلاگین پرداخت دلخواه WordPress plugin through 2.9.8 does not have CSRF check in place when resetting its form fields, which could allow attackers to make a logged in admin perform such action via a CSRF attack",Wordpress,پلاگین پرداخت دلخواه,,,0.0004299999854993075,false,,false,false,true,true,false,false,2024-07-30T06:00:10.533Z,0
CVE-2022-4307,https://securityvulnerability.io/vulnerability/CVE-2022-4307,Pardakht Delkhah < 2.9.3 - Unauthenticated Stored XSS,"The پلاگین پرداخت دلخواه WordPress plugin before 2.9.3 does not sanitise and escape some parameters, allowing unauthenticated attackers to send a request with XSS payloads, which will be triggered when a high privilege users such as admin visits a page from the plugin.",Wordpress,پلاگین پرداخت دلخواه,6.1,MEDIUM,0.0009399999980814755,false,,false,false,false,,false,false,2023-01-23T14:31:29.119Z,0