cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2023-5756,https://securityvulnerability.io/vulnerability/CVE-2023-5756,Cross-Site Request Forgery Vulnerability in Digital Publications Plugin for WordPress by Supsystic,"The Digital Publications by Supsystic plugin for WordPress contains a vulnerability that allows unauthenticated attackers to exploit missing or incorrect nonce validation in the AJAX action handler. By crafting a forged request, these attackers can potentially trick site administrators into executing actions without their intent. This poses a risk to the integrity of affected WordPress sites, as it enables unauthorized operations that could compromise site security and user data.",Wordpress,Digital Publications by Supsystic,5.4,MEDIUM,0.0007999999797903001,false,,false,false,false,,false,false,2023-12-09T07:15:00.000Z,0
CVE-2022-2384,https://securityvulnerability.io/vulnerability/CVE-2022-2384,Digital Publications by Supsystic < 1.7.4 - Admin+ Stored Cross-Site Scripting,"The Digital Publications by Supsystic WordPress plugin before 1.7.4 does not sanitise and escape its settings, allowing high privilege users such as admin to perform cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.",Wordpress,Digital Publications By Supsystic,4.8,MEDIUM,0.000539999979082495,false,,false,false,false,,false,false,2022-08-15T08:37:52.000Z,0