Every CVE whose affected-product data names Admin Management Xtended Project Admin Management Xtended, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2022-1599 — CVSS 6.5 (medium): The Admin Management Xtended WordPress plugin before 2.4.5 does not have CSRF checks in some of its AJAX actions, allowing attackers to…
CVE-2022-29450 — CVSS 5.4 (medium): Multiple Cross-Site Request Forgery (CSRF) vulnerabilities in Admin Management Xtended plugin <= 2.4.4 at WordPress.
CVE-2015-9390 — CVSS 4.3 (medium): The admin-management-xtended plugin before 2.4.0.1 for WordPress has privilege escalation because wp_ajax functions are mishandled.