cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2023-46823,https://securityvulnerability.io/vulnerability/CVE-2023-46823,WordPress ImageLinks Interactive Image Builder Plugin <= 1.5.4 is vulnerable to SQL Injection,"An SQL Injection vulnerability exists in the Avirtum ImageLinks Interactive Image Builder for WordPress, allowing attackers to manipulate SQL queries. When user inputs are not properly sanitized, it can result in unauthorized access to sensitive database information, potentially compromising the integrity of the web applications that rely on this plugin. The issue impacts versions from n/a through 1.5.4, and users are advised to update to the latest version to mitigate the risk.",Wordpress,ImageLinks Interactive Image Builder for WordPress,7.2,HIGH,0.0008900000248104334,false,,false,false,false,,false,false,2023-11-06T10:15:00.000Z,0
CVE-2022-4393,https://securityvulnerability.io/vulnerability/CVE-2022-4393,ImageLinks Interactive Image Builder for WordPress <= 1.5.3 - Contributor+ Stored XSS,"The ImageLinks Interactive Image Builder for WordPress plugin through 1.5.3 does not sanitise and escape some of its settings, which could allow users such as contributor+ to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.",Wordpress,Imagelinks Interactive Image Builder For WordPress,5.4,MEDIUM,0.000539999979082495,false,,false,false,false,,false,false,2023-01-09T22:13:29.648Z,0