Acurax Social Media Widget — known CVE vulnerabilities
Every CVE whose affected-product data names Acurax Social Media Widget, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (1)
CVE-2018-6357 — CVSS 8.8 (high): The acx_asmw_saveorder_callback function in function.php in the acurax-social-media-widget plugin before 3.2.6 for WordPress has CSRF via…