cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-3213,https://securityvulnerability.io/vulnerability/CVE-2024-3213,Unauthorized Data Modification Vulnerability in Relevanssi's Better Search Plugin for WordPress,"The Relevanssi – A Better Search plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the relevanssi_update_counts() function in all versions up to, and including, 4.22.1. This makes it possible for unauthenticated attackers to execute expensive queries on the application that could lead into DOS.",Wordpress,"Relevanssi – A Better Search (pro),Relevanssi – A Better Search",5.3,MEDIUM,0.00044999999227002263,false,,false,false,false,,false,false,2024-04-09T18:59:30.531Z,0
CVE-2024-3214,https://securityvulnerability.io/vulnerability/CVE-2024-3214,CSV Injection Vulnerability in Relevanssi Plugin for WordPress,"The Relevanssi – A Better Search plugin for WordPress is susceptible to a CSV Injection vulnerability in all versions up to and including 4.22.1. This flaw allows unauthenticated attackers to insert malicious inputs into exported CSV files. When these files are downloaded and opened in a vulnerable local environment, it can lead to unauthorized code execution, posing significant security risks. Users of the affected versions are strongly advised to upgrade to version 4.22.2 or later to mitigate this vulnerability.",Wordpress,"Relevanssi – A Better Search (pro),Relevanssi – A Better Search",9.8,CRITICAL,0.0008399999933317304,false,,false,false,false,,false,false,2024-04-09T18:59:07.972Z,0