cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2021-34660,https://securityvulnerability.io/vulnerability/CVE-2021-34660,WP Fusion Lite <= 3.37.18 Reflected Cross-Site Scripting,"The WP Fusion Lite WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the startdate parameter found in the ~/includes/admin/logging/class-log-table-list.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 3.37.18.",Wordpress,WP Fusion Lite,6.1,MEDIUM,0.0006600000197067857,false,,false,false,false,,false,false,2021-08-09T13:15:00.000Z,0
CVE-2021-34661,https://securityvulnerability.io/vulnerability/CVE-2021-34661,WP Fusion Lite <= 3.37.18 Cross-Site Request Forgery to Data Deletion,"The WP Fusion Lite WordPress plugin is vulnerable to Cross-Site Request Forgery via the `show_logs_section` function found in the ~/includes/admin/logging/class-log-handler.php file which allows attackers to drop all logs for the plugin, in versions up to and including 3.37.18.",Wordpress,WP Fusion Lite,6.1,MEDIUM,0.0005300000193528831,false,,false,false,false,,false,false,2021-08-09T13:15:00.000Z,0