Every CVE whose affected-product data names Activecampaign, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2023-0233 — CVSS 5.4 (medium): The ActiveCampaign WordPress plugin before 8.1.12 does not validate and escape some of its block options before outputting them back in a…
CVE-2024-32430 — CVSS 4.4 (medium): Server-Side Request Forgery (SSRF) vulnerability in ActiveCampaign.This issue affects ActiveCampaign: from n/a through 8.1.14.
CVE-2021-24133 — CVSS 4.3 (medium): Lack of CSRF checks in the ActiveCampaign WordPress plugin, versions before 8.0.2, on its Settings form, which could allow attacker to make…