cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2010-3977,https://securityvulnerability.io/vulnerability/CVE-2010-3977,,Multiple cross-site scripting (XSS) vulnerabilities in wp-content/plugins/cforms/lib_ajax.php in cforms WordPress plugin 11.5 allow remote attackers to inject arbitrary web script or HTML via the (1) rs and (2) rsargs[] parameters.,Wordpress,Cforms,,,0.005030000116676092,false,,false,false,false,,false,false,2010-11-03T01:00:00.000Z,0
CVE-2008-0560,https://securityvulnerability.io/vulnerability/CVE-2008-0560,,"PHP remote file inclusion vulnerability in cforms-css.php in Oliver Seidel cforms (contactforms), a Wordpress plugin, allows remote attackers to execute arbitrary PHP code via a URL in the tm parameter. NOTE: CVE disputes this issue for 7.3, since there is no tm parameter, and the code exits with a fatal error due to a call to an undefined function",Wordpress,Cforms,,,0.010569999925792217,false,,false,false,false,,false,false,2008-02-04T22:00:00.000Z,0