cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2023-49170,https://securityvulnerability.io/vulnerability/CVE-2023-49170,WordPress Forms by CaptainForm Plugin <= 2.5.3 is vulnerable to Cross Site Scripting (XSS),"The CaptainForm Forms by CaptainForm for WordPress has a reflected cross-site scripting (XSS) vulnerability that allows attackers to inject malicious scripts into web pages viewed by users. This can lead to potential unauthorized access to sensitive data or session hijacking. The vulnerability affects all versions of the plugin up to and including 2.5.3, highlighting the need for users to update to the latest version to mitigate risks.",Wordpress,Forms by CaptainForm – Form Builder for WordPress,7.1,HIGH,0.0005000000237487257,false,,false,false,false,,false,false,2023-12-15T15:15:00.000Z,0
CVE-2022-43459,https://securityvulnerability.io/vulnerability/CVE-2022-43459,WordPress Forms by CaptainForm Plugin <= 2.5.3 is vulnerable to Cross Site Request Forgery (CSRF),Cross-Site Request Forgery (CSRF) vulnerability in Forms by CaptainForm – Form Builder for WordPress plugin <= 2.5.3 versions.,Wordpress,Forms By Captainform – Form Builder For WordPress,5.4,MEDIUM,0.0010300000431016088,false,,false,false,false,,false,false,2023-02-28T13:29:59.633Z,0