cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2024-10532,https://securityvulnerability.io/vulnerability/CVE-2024-10532,Unauthorized Data Modification Vulnerability in Bard Extra Plugin,"The Bard Extra plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the bardxtra_import_xml() function in all versions up to, and including, 1.2.7. This makes it possible for authenticated attackers, with subscriber-level access and above, to import demo data.",Wordpress,Bard Extra,4.3,MEDIUM,0.00044999999227002263,false,,false,false,false,,,false,false,,2024-11-21T02:06:23.400Z,0
CVE-2024-9830,https://securityvulnerability.io/vulnerability/CVE-2024-9830,Bard WordPress Theme Vulnerable to Reflected Cross-Site Scripting,"The Bard theme for WordPress is prone to a Reflected Cross-Site Scripting vulnerability due to improper handling of URL parameters using add_query_arg. This oversight affects all versions up to and including 2.216. Attackers can exploit this flaw to inject malicious scripts into web pages, which will execute in the context of a user’s session when they unknowingly interact with a manipulated link. It is crucial for users of the Bard theme to apply necessary updates and security measures to mitigate this risk.",Wordpress,Bard,6.1,MEDIUM,0.00044999999227002263,false,,false,false,false,,,false,false,,2024-11-19T12:45:32.540Z,0