Export CSV

Products

1 vendor
VendorProductsCVEsKEVAvg EPSSWorst Severity
12020.8%CRITICAL

Related CVEs

2
CVE IDDescriptionSeverityCVSSKEVEPSSPublished
CVE-2025-4580The File Provider WordPress plugin through 1.2.3 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attackMEDIUM4.34.2%Jun 4, 2025
CVE-2025-4578The File Provider WordPress plugin through 1.2.3 does not properly sanitise and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated users, leading to a SQL injectionCRITICAL9.837.5%Jun 4, 2025