cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2015-20106,https://securityvulnerability.io/vulnerability/CVE-2015-20106,ClickBank Affiliate Ads <= 1.20 - Admin+ Stored Cross-Site Scripting,"The ClickBank Affiliate Ads WordPress plugin through 1.20 does not escape its settings, allowing high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html is disallowed.",Wordpress,Clickbank Affiliate Ads,4.8,MEDIUM,0.000539999979082495,false,,false,false,false,,false,false,2021-12-02T17:40:11.000Z,0
CVE-2015-20105,https://securityvulnerability.io/vulnerability/CVE-2015-20105,ClickBank Affiliate Ads <= 1.20 - CSRF to Stored Cross-Site Scripting,"The ClickBank Affiliate Ads WordPress plugin through 1.20 does not have CSRF check when saving its settings, allowing attacker to make logged in admin change them via a CSRF attack. Furthermore, due to the lack of escaping when they are outputting, it could also lead to Stored Cross-Site Scripting issues",Wordpress,Clickbank Affiliate Ads,9.6,CRITICAL,0.002400000113993883,false,,false,false,false,,false,false,2021-12-02T17:40:10.000Z,0
CVE-2017-18011,https://securityvulnerability.io/vulnerability/CVE-2017-18011,,The MyCBGenie Affiliate Ads for Clickbank Products plugin through 1.6 for WordPress has XSS via the text_ads_ajax.php border_color parameter.,Wordpress,Affiliate Ads For Clickbank Products,6.1,MEDIUM,0.0027099999133497477,false,,false,false,false,,false,false,2018-01-01T08:00:00.000Z,0