cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2021-24329,https://securityvulnerability.io/vulnerability/CVE-2021-24329,WP Super Cache < 1.7.3 - Authenticated Stored Cross-Site Scripting (XSS),"The WP Super Cache WordPress plugin before 1.7.3 did not properly sanitise its wp_cache_location parameter in its settings, which could lead to a Stored Cross-Site Scripting issue.",Wordpress,WP Super Cache,5.4,MEDIUM,0.000539999979082495,false,,false,false,false,,false,false,2021-06-01T11:33:31.000Z,0
CVE-2021-24312,https://securityvulnerability.io/vulnerability/CVE-2021-24312,WP Super Cache < 1.7.3 - Authenticated Remote Code Execution,"The parameters $cache_path, $wp_cache_debug_ip, $wp_super_cache_front_page_text, $cache_scheduled_time, $cached_direct_pages used in the settings of WP Super Cache WordPress plugin before 1.7.3 result in RCE because they allow input of '$' and '\n'. This is due to an incomplete fix of CVE-2021-24209.",Wordpress,WP Super Cache,7.2,HIGH,0.02508999966084957,false,,false,false,false,,false,false,2021-06-01T11:33:30.000Z,0
CVE-2021-24209,https://securityvulnerability.io/vulnerability/CVE-2021-24209,WP Super Cache < 1.7.2 - Authenticated Remote Code Execution (RCE),"The WP Super Cache WordPress plugin before 1.7.2 was affected by an authenticated (admin+) RCE in the settings page due to input validation failure and weak $cache_path check in the WP Super Cache Settings -> Cache Location option. Direct access to the wp-cache-config.php file is not prohibited, so this vulnerability can be exploited for a web shell injection.",Wordpress,WP Super Cache,7.2,HIGH,0.0022499999031424522,false,,false,false,false,,false,false,2021-04-05T18:27:46.000Z,0
CVE-2013-2009,https://securityvulnerability.io/vulnerability/CVE-2013-2009,,WordPress WP Super Cache Plugin 1.2 has Remote PHP Code Execution,Wordpress,WP Super Cache Plugin,8.8,HIGH,0.19280000030994415,false,,false,false,false,,false,false,2020-02-07T13:09:37.000Z,0