cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2023-2032,https://securityvulnerability.io/vulnerability/CVE-2023-2032,Custom 404 Pro < 3.8.1 - Multiple SQL Injection,"The Custom 404 Pro plugin for WordPress prior to version 3.8.1 contains vulnerabilities due to insufficient sanitization of database inputs. This flaw allows attackers to execute SQL injection attacks, potentially compromising the security of the WordPress site. Proper measures should be taken to upgrade to the latest version of the plugin to mitigate these security risks.",Wordpress,Custom 404 Pro,9.8,CRITICAL,0.0021200000774115324,false,,false,false,false,,false,false,2023-06-27T14:15:00.000Z,0
CVE-2023-2023,https://securityvulnerability.io/vulnerability/CVE-2023-2023,Custom 404 Pro < 3.7.3 - Reflected Cross-Site Scripting,"The Custom 404 Pro WordPress plugin before 3.7.3 does not escape some URLs before outputting them in attributes, leading to Reflected Cross-Site Scripting.",Wordpress,Custom 404 Pro,6.1,MEDIUM,0.0040699997916817665,false,,false,false,true,true,false,false,2023-05-30T08:15:00.000Z,0
CVE-2023-0385,https://securityvulnerability.io/vulnerability/CVE-2023-0385,Cross-Site Request Forgery Vulnerability in Custom 404 Pro for WordPress,"The Custom 404 Pro plugin for WordPress exposes a security vulnerability due to improper nonce validation in its custom_404_pro_admin_init function. This weakness allows unauthenticated attackers to potentially exploit the plugin by tricking site administrators into executing unintended actions, such as deleting logs, through specially crafted requests.",Wordpress,Custom 404 Pro,4.3,MEDIUM,0.0006500000017695129,false,,false,false,false,,false,false,2023-01-18T15:15:00.000Z,0
CVE-2019-15838,https://securityvulnerability.io/vulnerability/CVE-2019-15838,,"The custom-404-pro plugin before 3.2.8 for WordPress has reflected XSS, a different vulnerability than CVE-2019-14789.",Wordpress,Custom 404 Pro,6.1,MEDIUM,0.0006399999838322401,false,,false,false,false,,false,false,2019-08-30T16:12:02.000Z,0
CVE-2019-14789,https://securityvulnerability.io/vulnerability/CVE-2019-14789,,The Custom 404 Pro plugin 3.2.8 for WordPress has XSS via the wp-admin/admin.php?page=c4p-main page parameter.,Wordpress,Custom 404 Pro,6.1,MEDIUM,0.001930000027641654,false,,false,false,false,,false,false,2019-08-15T15:43:05.000Z,0