Every CVE whose affected-product data names Beardev Joomsport, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2019-14348 — CVSS 9.8 (critical): The BearDev JoomSport plugin 3.3 for WordPress allows SQL injection to steal, modify, or delete database information via the…
CVE-2022-4050 — CVSS 9.8 (critical): The JoomSport WordPress plugin before 5.2.8 does not properly sanitise and escape a parameter before using it in a SQL statement, leading…
CVE-2021-24384 — CVSS 9.8 (critical): The joomsport_md_load AJAX action of the JoomSport WordPress plugin before 5.1.8, registered for both unauthenticated and unauthenticated…
CVE-2022-2718 — CVSS 7.2 (high): The JoomSport – for Sports: Team & League, Football, Hockey & more plugin for WordPress is vulnerable to SQL Injection via the 'orderby'…
CVE-2022-2717 — CVSS 7.2 (high): The JoomSport – for Sports: Team & League, Football, Hockey & more plugin for WordPress is vulnerable to SQL Injection via the 'orderby'…
CVE-2024-43355 — CVSS 4.3 (medium): Missing Authorization vulnerability in BearDev JoomSport allows Exploiting Incorrectly Configured Access Control Security Levels.This issue…
CVE-2024-44031 — CVSS 4.3 (medium): Missing Authorization vulnerability in beardev JoomSport joomsport-sports-league-results-management.This issue affects JoomSport: from n/a…