cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2017-1002010,https://securityvulnerability.io/vulnerability/CVE-2017-1002010,,"Vulnerability in wordpress plugin Membership Simplified v1.58, The code in membership-simplified-for-oap-members-only/updateDB.php is vulnerable to blind SQL injection because it doesn't sanitize user input via recordId in the delete_media function.",Wordpress,Membership Simplified,9.8,CRITICAL,0.004689999856054783,false,,false,false,false,,false,false,2017-09-14T13:29:00.000Z,0
CVE-2017-1002009,https://securityvulnerability.io/vulnerability/CVE-2017-1002009,,"Vulnerability in wordpress plugin Membership Simplified v1.58, The code in membership-simplified-for-oap-members-only/updateDB.php is vulnerable to blind SQL injection because it doesn't sanitize user input via recordId in the delete function.",Wordpress,Membership Simplified,9.8,CRITICAL,0.004689999856054783,false,,false,false,false,,false,false,2017-09-14T13:29:00.000Z,0
CVE-2017-1002008,https://securityvulnerability.io/vulnerability/CVE-2017-1002008,,"Vulnerability in wordpress plugin membership-simplified-for-oap-members-only v1.58, The file download code located membership-simplified-for-oap-members-only/download.php does not check whether a user is logged in and has download privileges.",Wordpress,Membership-simplified-for-oap-members-only,9.8,CRITICAL,0.05322999879717827,false,,false,false,false,,false,false,2017-09-14T13:00:00.000Z,0