Every CVE whose affected-product data names 2code Ask Me, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2022-1424 — CVSS 6.5 (medium): The Ask me WordPress theme before 6.8.2 does not perform CSRF checks for any of its AJAX actions, allowing an attacker to trick logged in…
CVE-2022-1241 — CVSS 6.1 (medium): The Ask me WordPress theme before 6.8.2 does not properly sanitise and escape several of the fields in the Edit Profile page, leading to…