cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2016-10989,https://securityvulnerability.io/vulnerability/CVE-2016-10989,CSRF Vulnerability in Leenkme Plugin for WordPress,"The Leenkme plugin for WordPress prior to version 2.6.0 is susceptible to a Cross-Site Request Forgery (CSRF) attack. An attacker could exploit this vulnerability to trick users into performing unintended actions on behalf of the authenticated user. This could lead to unauthorized changes or actions within the WordPress site, potentially compromising the integrity of the site. It is advisable for users to update to the latest version to mitigate this risk.",Wordpress,Leenk.me,8.8,HIGH,0.0030300000216811895,false,,false,false,false,,,false,false,,2019-09-17T14:29:07.000Z,0
CVE-2016-10988,https://securityvulnerability.io/vulnerability/CVE-2016-10988,Stored XSS Vulnerability in Leenkme Plugin for WordPress,"The Leenkme plugin for WordPress, prior to version 2.6.0, contains a stored Cross-Site Scripting (XSS) vulnerability. This issue arises from how the plugin handles user input related to facebook_message, facebook_linkname, facebook_caption, facebook_description, default_image, and _wp_http_referer, allowing attackers to inject malicious scripts. These scripts could then be executed in the context of users visiting the compromised site, potentially leading to exposure of sensitive information, account hijacking, or other malicious activities.",Wordpress,Leenk.me,6.1,MEDIUM,0.002259999979287386,false,,false,false,false,,,false,false,,2019-09-17T14:28:26.000Z,0