cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2022-2367,https://securityvulnerability.io/vulnerability/CVE-2022-2367,WSM Downloader <= 1.4.0 - Domain Name Restriction Bypass,"The WSM Downloader WordPress plugin through 1.4.0 allows only specific popular websites to download images/files from, this can be bypassed due to the lack of good ""link"" parameter validation",Wordpress,Wsm Downloader,7.5,HIGH,0.002309999894350767,false,,false,false,false,,false,false,2022-08-08T13:47:24.000Z,0
CVE-2022-2357,https://securityvulnerability.io/vulnerability/CVE-2022-2357,WSM Downloader <= 1.4.0 - Unauthenticated Arbitrary File Download,"The WSM Downloader WordPress plugin through 1.4.0 allows any visitor to use its remote file download feature to download any local files, including sensitive ones like wp-config.php.",Wordpress,Wsm Downloader,7.5,HIGH,0.0033499998971819878,false,,false,false,false,,false,false,2022-08-08T13:47:08.000Z,0