cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2013-2640,https://securityvulnerability.io/vulnerability/CVE-2013-2640,,"ajax.functions.php in the MailUp plugin before 1.3.2 for WordPress does not properly restrict access to unspecified Ajax functions, which allows remote attackers to modify plugin settings and conduct cross-site scripting (XSS) attacks via unspecified vectors related to ""formData=save"" requests, a different version than CVE-2013-0731.",Wordpress,WP-mailup,,,0.0064500002190470695,false,,false,false,false,,false,false,2013-03-22T17:55:00.000Z,0
CVE-2013-0731,https://securityvulnerability.io/vulnerability/CVE-2013-0731,,"ajax.functions.php in the MailUp plugin before 1.3.3 for WordPress does not properly restrict access to unspecified Ajax functions, which allows remote attackers to modify plugin settings and conduct cross-site scripting (XSS) attacks by setting the wordpress_logged_in cookie.  NOTE: this is due to an incomplete fix for a similar issue that was fixed in 1.3.2.",Wordpress,WP-mailup,,,0.012360000051558018,false,,false,false,false,,false,false,2013-03-22T15:00:00.000Z,0