cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2022-1599,https://securityvulnerability.io/vulnerability/CVE-2022-1599,Admin Management Xtended < 2.4.5 - Post Visibility/Date/Comment Status Update via CSRF,"The Admin Management Xtended WordPress plugin before 2.4.5 does not have CSRF checks in some of its AJAX actions, allowing attackers to make a logged users with the right capabilities to call them. This can lead to changes in post status (draft, published), slug, post date, comment status (enabled, disabled) and more.",Wordpress,Admin Management Xtended,6.5,MEDIUM,0.0006300000241026282,false,,false,false,false,,false,false,2022-07-11T12:56:01.000Z,0
CVE-2022-29450,https://securityvulnerability.io/vulnerability/CVE-2022-29450,WordPress Admin Management Xtended plugin <= 2.4.4 - Multiple Cross-Site Request Forgery (CSRF) vulnerabilities,Multiple Cross-Site Request Forgery (CSRF) vulnerabilities in Admin Management Xtended plugin <= 2.4.4 at WordPress.,Wordpress,Admin Management Xtended (WordPress Plugin),8.8,HIGH,0.0010100000072270632,false,,false,false,false,,false,false,2022-06-15T19:15:00.000Z,0
CVE-2015-9390,https://securityvulnerability.io/vulnerability/CVE-2015-9390,,The admin-management-xtended plugin before 2.4.0.1 for WordPress has privilege escalation because wp_ajax functions are mishandled.,Wordpress,Admin Management Xtended,4.3,MEDIUM,0.0007399999885819852,false,,false,false,false,,false,false,2019-09-20T14:58:22.000Z,0