cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2020-14207,https://securityvulnerability.io/vulnerability/CVE-2020-14207,SQL Injection Vulnerability in DiveBook Plugin for WordPress,"The DiveBook plugin version 1.1.4 for WordPress contains a vulnerability that allows SQL injection through the `filter_diver` parameter in the `divelog.php` file. This flaw permits unauthenticated attackers to execute malicious SQL queries, potentially leading to unauthorized access to sensitive database information. The vulnerability highlights the importance of sanitizing user input to safeguard web applications against such attacks.",Wordpress,Divebook,5.3,MEDIUM,0.0006699999794363976,false,,false,false,false,,,false,false,,2020-12-08T19:50:21.000Z,0
CVE-2020-14206,https://securityvulnerability.io/vulnerability/CVE-2020-14206,Unauthenticated XSS in DiveBook Plugin for WordPress,"The DiveBook plugin version 1.1.4 for WordPress is susceptible to an unauthenticated Cross-Site Scripting (XSS) vulnerability. This issue arises in the filter function, where an attacker can exploit an arbitrary parameter to inject malicious scripts. Successful exploitation may allow unauthorized users to execute arbitrary scripts in the context of a user's session, leading to data theft and site integrity violations. It is crucial for users of this plugin to apply necessary patches and implement security best practices to mitigate potential risks.",Wordpress,Divebook,6.1,MEDIUM,0.0012600000482052565,false,,false,false,false,,,false,false,,2020-12-08T19:48:27.000Z,0
CVE-2020-14205,https://securityvulnerability.io/vulnerability/CVE-2020-14205,Improper Access Control in DiveBook Plugin for WordPress,"The DiveBook plugin version 1.1.4 for WordPress has a vulnerability due to insufficient authorization checks in the Log Dive form. This weakness can be exploited by an attacker to manipulate dive log data, leading to potential integrity issues in the logs that may affect users' diving records.",Wordpress,Divebook,5.3,MEDIUM,0.0009200000204145908,false,,false,false,false,,,false,false,,2020-12-08T19:46:28.000Z,0