cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2022-3837,https://securityvulnerability.io/vulnerability/CVE-2022-3837,Uji Countdown < 2.3.1 - Admin+ Stored XSS,"The Uji Countdown WordPress plugin before 2.3.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).",Wordpress,Uji Countdown,4.8,MEDIUM,0.000539999979082495,false,,false,false,false,,false,false,2022-12-05T16:50:31.492Z,0
CVE-2016-10900,https://securityvulnerability.io/vulnerability/CVE-2016-10900,,The uji-countdown plugin before 2.0.7 for WordPress has XSS.,Wordpress,Uji Countdown,6.1,MEDIUM,0.0006900000153109431,false,,false,false,false,,false,false,2019-08-21T12:39:15.000Z,0