cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2023-1069,https://securityvulnerability.io/vulnerability/CVE-2023-1069,Complianz - GDPR/CCPA Cookie Consent < 6.4.2 - Contributor+ Stored XSS,"The Complianz WordPress plugin before 6.4.2, Complianz Premium WordPress plugin before 6.4.2 do not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks",Wordpress,"Complianz,Complianz Premium",5.4,MEDIUM,0.000539999979082495,false,,false,false,false,,false,false,2023-03-27T16:15:00.000Z,0
CVE-2022-3494,https://securityvulnerability.io/vulnerability/CVE-2022-3494,"Complianz (Free < 6.3.4, Premium < 6.3.6) - Translator SQLi","The Complianz WordPress plugin before 6.3.4, and Complianz Premium WordPress plugin before 6.3.6 allow a translators to inject arbitrary SQL through an unsanitized translation. SQL can be injected through an infected translation file, or by a user with a translator role through translation plugins such as Loco Translate or WPML.",Wordpress,"Complianz – Gdpr/ccpa Cookie Consent,Complianz Premium",8.8,HIGH,0.0011399999493733048,false,,false,false,false,,false,false,2022-11-07T00:00:00.000Z,0