cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-13057,https://securityvulnerability.io/vulnerability/CVE-2024-13057,Stored XSS Vulnerability in Dyn Business Panel Plugin for WordPress,"The Dyn Business Panel WordPress plugin version 1.0.0 is vulnerable due to the absence of CSRF checks in certain functions, along with inadequate sanitization and escaping mechanisms. This flaw can permit attackers to exploit the vulnerability and inject Stored XSS payloads through CSRF attacks, potentially compromising the security of logged-in admin users. It is crucial for webmasters to update the plugin and implement necessary security measures to mitigate risks associated with this vulnerability.",WordPress,Dyn Business Panel,7.1,HIGH,0.0004299999854993075,false,,false,false,true,true,false,false,2025-01-27T06:00:10.625Z,0
CVE-2024-13056,https://securityvulnerability.io/vulnerability/CVE-2024-13056,Reflected Cross-Site Scripting Vulnerability in Dyn Business Panel by WordPress,"The Dyn Business Panel WordPress plugin version 1.0.0 contains a vulnerability due to improper sanitization and escaping of user-supplied parameters. This oversight can lead to Reflected Cross-Site Scripting (XSS) attacks. If exploited, attackers could inject malicious scripts into pages viewed by high privilege users, including administrators, allowing for potential unauthorized actions and compromise of sensitive data.",WordPress,Dyn Business Panel,7.1,HIGH,0.0004299999854993075,false,,false,false,true,true,false,false,2025-01-27T06:00:10.321Z,0