cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2022-0898,https://securityvulnerability.io/vulnerability/CVE-2022-0898,IgniteUp <= 3.4.1 - Admin+ Stored Cross-Site Scripting,"The IgniteUp WordPress plugin through 3.4.1 does not sanitise and escape some fields when high privilege users don't have the unfiltered_html capability, which could lead to Stored Cross-Site Scripting issues",Wordpress,Igniteup – Coming Soon And Maintenance Mode,5.4,MEDIUM,0.000539999979082495,false,,false,false,false,,false,false,2022-05-09T16:50:40.000Z,0
CVE-2019-17237,https://securityvulnerability.io/vulnerability/CVE-2019-17237,,includes/class-coming-soon-creator.php in the igniteup plugin through 3.4 for WordPress allows CSRF.,Wordpress,Igniteup,8.8,HIGH,0.002309999894350767,false,,false,false,false,,false,false,2019-11-12T16:53:32.000Z,0
CVE-2019-17236,https://securityvulnerability.io/vulnerability/CVE-2019-17236,,includes/class-coming-soon-creator.php in the igniteup plugin through 3.4 for WordPress is vulnerable to stored XSS.,Wordpress,Igniteup,6.1,MEDIUM,0.0011500000255182385,false,,false,false,false,,false,false,2019-11-12T16:52:46.000Z,0
CVE-2019-17235,https://securityvulnerability.io/vulnerability/CVE-2019-17235,,includes/class-coming-soon-creator.php in the igniteup plugin through 3.4 for WordPress allows information disclosure.,Wordpress,Igniteup,5.3,MEDIUM,0.0013099999632686377,false,,false,false,false,,false,false,2019-11-12T16:50:29.000Z,0
CVE-2019-17234,https://securityvulnerability.io/vulnerability/CVE-2019-17234,,includes/class-coming-soon-creator.php in the igniteup plugin through 3.4 for WordPress allows unauthenticated arbitrary file deletion.,Wordpress,Igniteup,7.5,HIGH,0.0015399999683722854,false,,false,false,true,true,false,false,2019-11-12T16:48:54.000Z,0