cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2020-25380,https://securityvulnerability.io/vulnerability/CVE-2020-25380,,Wordpress Plugin Store / Mike Rooijackers Recall Products V0.8 is affected by: Cross Site Scripting (XSS) via the 'Recall Settings' field in admin.php. An attacker can inject JavaScript code that will be stored and executed.,Wordpress,Recall-products,5.4,MEDIUM,0.0007399999885819852,false,,false,false,false,,false,false,2020-09-14T15:33:56.000Z,0
CVE-2020-25379,https://securityvulnerability.io/vulnerability/CVE-2020-25379,,Wordpress Plugin Store / Mike Rooijackers Recall Products V0.8 fails to sanitize input from the 'Manufacturer[]' parameter which allows an authenticated attacker to inject a malicious SQL query.,Wordpress,Recall-products,8.8,HIGH,0.0016499999910593033,false,,false,false,false,,false,false,2020-09-14T15:29:10.000Z,0