cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-11198,https://securityvulnerability.io/vulnerability/CVE-2024-11198,Stored Cross-Site Scripting Vulnerability in GD Rating System WordPress Plugin,"The GD Rating System plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘extra_class’ parameter in all versions up to, and including, 3.6.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.",Wordpress,Gd Rating System,6.4,MEDIUM,0.0006799999973736703,false,,false,false,false,,false,false,2024-11-19T12:45:31.893Z,0
CVE-2017-18591,https://securityvulnerability.io/vulnerability/CVE-2017-18591,,The gd-rating-system plugin before 2.1 for WordPress has XSS in log.php.,Wordpress,Gd Rating System,6.1,MEDIUM,0.0006900000153109431,false,,false,false,false,,false,false,2019-08-27T12:03:27.000Z,0
CVE-2018-5287,https://securityvulnerability.io/vulnerability/CVE-2018-5287,,The GD Rating System plugin 2.3 for WordPress has Directory Traversal in the wp-admin/admin.php panel parameter for the gd-rating-system-about page.,Wordpress,Gd Rating System,7.5,HIGH,0.00395999988541007,false,,false,false,false,,false,false,2018-01-08T07:00:00.000Z,0
CVE-2018-5288,https://securityvulnerability.io/vulnerability/CVE-2018-5288,,The GD Rating System plugin 2.3 for WordPress has XSS via the wp-admin/admin.php panel parameter for the gd-rating-system-transfer page.,Wordpress,Gd Rating System,6.1,MEDIUM,0.0016899999463930726,false,,false,false,false,,false,false,2018-01-08T07:00:00.000Z,0
CVE-2018-5289,https://securityvulnerability.io/vulnerability/CVE-2018-5289,,The GD Rating System plugin 2.3 for WordPress has Directory Traversal in the wp-admin/admin.php panel parameter for the gd-rating-system-information page.,Wordpress,Gd Rating System,7.5,HIGH,0.00395999988541007,false,,false,false,false,,false,false,2018-01-08T07:00:00.000Z,0
CVE-2018-5291,https://securityvulnerability.io/vulnerability/CVE-2018-5291,,The GD Rating System plugin 2.3 for WordPress has Directory Traversal in the wp-admin/admin.php panel parameter for the gd-rating-system-tools page.,Wordpress,Gd Rating System,7.5,HIGH,0.00395999988541007,false,,false,false,false,,false,false,2018-01-08T07:00:00.000Z,0
CVE-2018-5293,https://securityvulnerability.io/vulnerability/CVE-2018-5293,,The GD Rating System plugin 2.3 for WordPress has XSS via the wp-admin/admin.php panel parameter for the gd-rating-system-tools page.,Wordpress,Gd Rating System,6.1,MEDIUM,0.0016899999463930726,false,,false,false,false,,false,false,2018-01-08T07:00:00.000Z,0
CVE-2018-5290,https://securityvulnerability.io/vulnerability/CVE-2018-5290,,The GD Rating System plugin 2.3 for WordPress has Directory Traversal in the wp-admin/admin.php panel parameter for the gd-rating-system-transfer page.,Wordpress,Gd Rating System,7.5,HIGH,0.00395999988541007,false,,false,false,false,,false,false,2018-01-08T07:00:00.000Z,0
CVE-2018-5292,https://securityvulnerability.io/vulnerability/CVE-2018-5292,,The GD Rating System plugin 2.3 for WordPress has XSS via the wp-admin/admin.php panel parameter for the gd-rating-system-information page.,Wordpress,Gd Rating System,6.1,MEDIUM,0.0016899999463930726,false,,false,false,false,,false,false,2018-01-08T07:00:00.000Z,0
CVE-2018-5286,https://securityvulnerability.io/vulnerability/CVE-2018-5286,,The GD Rating System plugin 2.3 for WordPress has XSS via the wp-admin/admin.php panel parameter for the gd-rating-system-about page.,Wordpress,Gd Rating System,6.1,MEDIUM,0.0016899999463930726,false,,false,false,false,,false,false,2018-01-08T07:00:00.000Z,0