cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2022-2599,https://securityvulnerability.io/vulnerability/CVE-2022-2599,Anti-Malware Security and Brute-Force Firewall < 4.21.83 - Reflected Cross-Site Scripting,"The Anti-Malware Security and Brute-Force Firewall WordPress plugin before 4.21.83 does not sanitise and escape some parameters before outputting them back in an admin dashboard, leading to Reflected Cross-Site Scripting",Wordpress,Anti-malware Security And Brute-force Firewall,6.1,MEDIUM,0.0010999999940395355,false,,false,false,false,,false,false,2022-08-29T17:15:37.000Z,0
CVE-2022-0953,https://securityvulnerability.io/vulnerability/CVE-2022-0953,Anti-Malware Security and Brute-Force Firewall < 4.20.96 - Reflected Cross-Site Scripting,"The Anti-Malware Security and Brute-Force Firewall WordPress plugin before 4.20.96 does not sanitise and escape the QUERY_STRING before outputting it back in an admin page, leading to a Reflected Cross-Site Scripting in browsers which do not encode characters",Wordpress,Anti-malware Security And Brute-force Firewall,6.1,MEDIUM,0.0007999999797903001,false,,false,false,false,,false,false,2022-04-25T15:51:12.000Z,0
CVE-2021-25101,https://securityvulnerability.io/vulnerability/CVE-2021-25101,Anti-Malware Security and Brute-Force Firewall < 4.20.94 - Admin+ Reflected Cross-Site Scripting,"The Anti-Malware Security and Brute-Force Firewall WordPress plugin before 4.20.94 does not sanitise and escape the POST data before outputting it back in attributes of an admin page, leading to a Reflected Cross-Site scripting. Due to the presence of specific parameter value, available to admin users, this can only be exploited by an admin against another admin user.",Wordpress,Anti-malware Security And Brute-force Firewall,4.8,MEDIUM,0.000539999979082495,false,,false,false,false,,false,false,2022-02-21T10:45:56.000Z,0