cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2014-10393,https://securityvulnerability.io/vulnerability/CVE-2014-10393,,The cforms2 plugin before 10.5 for WordPress has XSS.,Wordpress,Cformsii,6.1,MEDIUM,0.0006900000153109431,false,,false,false,false,,false,false,2019-08-22T19:48:32.000Z,0
CVE-2014-10392,https://securityvulnerability.io/vulnerability/CVE-2014-10392,,The cforms2 plugin before 10.2 for WordPress has XSS.,Wordpress,Cformsii,6.1,MEDIUM,0.0006200000061653554,false,,false,false,false,,false,false,2019-08-22T18:52:29.000Z,0
CVE-2015-9333,https://securityvulnerability.io/vulnerability/CVE-2015-9333,,The cforms2 plugin before 14.6.10 for WordPress has SQL injection.,Wordpress,Cformsii,9.8,CRITICAL,0.0018100000452250242,false,,false,false,false,,false,false,2019-08-22T12:13:53.000Z,0
CVE-2017-18570,https://securityvulnerability.io/vulnerability/CVE-2017-18570,,The cforms2 plugin before 14.13 for WordPress has SQL injection in the tracking DB GUI via Delete Entries or Download Entries.,Wordpress,Cformsii,9.8,CRITICAL,0.0013800000306218863,false,,false,false,false,,false,false,2019-08-22T12:13:05.000Z,0
CVE-2017-18559,https://securityvulnerability.io/vulnerability/CVE-2017-18559,,The cforms2 plugin before 14.13.3 for WordPress has multiple XSS issues.,Wordpress,Cformsii,6.1,MEDIUM,0.0006200000061653554,false,,false,false,false,,false,false,2019-08-21T18:12:14.000Z,0
CVE-2014-10377,https://securityvulnerability.io/vulnerability/CVE-2014-10377,,The cforms2 plugin before 13.2 for WordPress has XSS in lib_ajax.php.,Wordpress,Cformsii,6.1,MEDIUM,0.0006200000061653554,false,,false,false,false,,false,false,2019-08-21T18:11:07.000Z,0
CVE-2019-15238,https://securityvulnerability.io/vulnerability/CVE-2019-15238,,The cforms2 plugin before 15.0.2 for WordPress has CSRF related to the IP address field.,Wordpress,Cformsii,8.8,HIGH,0.002959999954327941,false,,false,false,false,,false,false,2019-08-20T14:54:59.000Z,0
CVE-2014-9473,https://securityvulnerability.io/vulnerability/CVE-2014-9473,,"Unrestricted file upload vulnerability in lib_nonajax.php in the CformsII plugin 14.7 and earlier for WordPress allows remote attackers to execute arbitrary code by uploading a file with an executable extension via the cf_uploadfile2[] parameter, then accessing the file via a direct request to the file in the default upload directory.",Wordpress,Cformsii,,,0.03937999904155731,false,,false,false,false,,false,false,2015-01-08T00:00:00.000Z,0