cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2018-20462,https://securityvulnerability.io/vulnerability/CVE-2018-20462,,An issue was discovered in the JSmol2WP plugin 1.07 for WordPress. A cross-site scripting (XSS) vulnerability allows remote attackers to inject arbitrary web script or HTML via the jsmol.php data parameter.,Wordpress,Jsmol2WP,6.1,MEDIUM,0.006320000160485506,false,,false,false,false,,false,false,2018-12-25T21:00:00.000Z,0
CVE-2018-20463,https://securityvulnerability.io/vulnerability/CVE-2018-20463,,An issue was discovered in the JSmol2WP plugin 1.07 for WordPress. There is an arbitrary file read vulnerability via ../ directory traversal in query=php://filter/resource= in the jsmol.php query string. This can also be used for SSRF.,Wordpress,Jsmol2WP,7.5,HIGH,0.04537000134587288,false,,false,false,true,true,false,false,2018-12-25T21:00:00.000Z,0