cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score CVE-2022-4260,https://securityvulnerability.io/vulnerability/CVE-2022-4260,WP-Ban < 1.69.1 - Admin+ Stored XSS,"The WP-Ban WordPress plugin before 1.69.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).",Wordpress,WP-ban,4.8,MEDIUM,0.0008399999933317304,false,,false,false,false,,,false,false,,2023-01-02T21:49:42.572Z,0 CVE-2014-6230,https://securityvulnerability.io/vulnerability/CVE-2014-6230,,"WP-Ban plugin before 1.6.4 for WordPress, when running in certain configurations, allows remote attackers to bypass the IP blacklist via a crafted X-Forwarded-For header.",Wordpress,WP-ban,,,0.00395999988541007,false,,false,false,false,,,false,false,,2014-10-25T00:00:00.000Z,0