cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2019-17213,https://securityvulnerability.io/vulnerability/CVE-2019-17213,Stored XSS in WebARX Plugin for WordPress by WebARX,"The WebARX Plugin version 1.3.0 for WordPress contains a stored cross-site scripting (XSS) vulnerability that allows an attacker to inject malicious scripts. This could occur via the Uniform Resource Identifier (URI) or through the X-Forwarded-For HTTP header, enabling unauthenticated users to execute arbitrary JavaScript in the context of the victim's browser. Such exploitation can lead to session hijacking, data theft, and further unauthorized actions within the affected WordPress installations.",Wordpress,Webarx,6.1,MEDIUM,0.0019399999873712659,false,,false,false,false,,,false,false,,2019-10-06T13:22:18.000Z,0
CVE-2019-17214,https://securityvulnerability.io/vulnerability/CVE-2019-17214,Firewall Bypass Vulnerability in WebARX Plugin for WordPress,"The WebARX plugin for WordPress versions earlier than 1.3.0 is susceptible to a firewall bypass vulnerability. By appending '&cc=1' to a URL, attackers can bypass the security measures put in place by the plugin, potentially compromising the security of affected WordPress sites. Website administrators are advised to review their configurations and update to the latest version of the plugin to eliminate this risk.",Wordpress,Webarx,7.5,HIGH,0.0062500000931322575,false,,false,false,false,,,false,false,,2019-10-06T13:21:37.000Z,0