cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score CVE-2020-8658,https://securityvulnerability.io/vulnerability/CVE-2020-8658,CSRF Vulnerability in BestWebSoft Htaccess Plugin for WordPress,"The BestWebSoft Htaccess plugin version 1.8.1 for WordPress suffers from a Cross-Site Request Forgery (CSRF) vulnerability. This flaw allows an attacker to manipulate the .htaccess file of a WordPress site without proper nonce validation. By directing users to a malicious web page, attackers can exploit this vulnerability to gain control over the website, making it imperative for users to ensure that they keep their plugins updated and implement robust website security measures.",Wordpress,Htaccess,8.8,HIGH,0.01078999973833561,false,,false,false,false,,,false,false,,2020-02-06T02:19:25.000Z,0 CVE-2015-9515,https://securityvulnerability.io/vulnerability/CVE-2015-9515,Cross-Site Scripting Vulnerability in Easy Digital Downloads Htaccess Editor for WordPress,"The XSS vulnerability in the Easy Digital Downloads htaccess Editor extension allows attackers to exploit the improper usage of the 'add_query_arg' function. This flaw can be leveraged to inject malicious scripts, affecting users' data integrity and privacy. It is crucial for affected users to update to the latest versions to safeguard against potential exploitation.",Wordpress,"Easy Digital Downloads,Htaccess Editor",6.1,MEDIUM,0.0007800000021234155,false,,false,false,false,,,false,false,,2019-10-23T16:10:04.000Z,0 CVE-2017-18496,https://securityvulnerability.io/vulnerability/CVE-2017-18496,Multiple XSS Issues in htaccess Plugin for WordPress,"The htaccess plugin for WordPress, specifically versions prior to 1.7.6, is susceptible to multiple Cross-Site Scripting (XSS) vulnerabilities. These flaws allow attackers to inject malicious scripts into web pages viewed by users, potentially compromising sensitive information and enabling unauthorized actions. It is essential for users of this plugin to update to a secure version to mitigate these risks.",Wordpress,Htaccess,6.1,MEDIUM,0.0008500000112690032,false,,false,false,false,,,false,false,,2019-08-13T16:39:23.000Z,0