Every CVE whose affected-product data names Bestwebsoft User Role, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2023-0820 — CVSS 8.8 (high): The User Role by BestWebSoft WordPress plugin before 1.6.7 does not protect against CSRF in requests to update role capabilities, leading…
CVE-2017-2171 — CVSS 6.1 (medium): Cross-site scripting vulnerability in Captcha prior to version 4.3.0, Car Rental prior to version 1.0.5, Contact Form Multi prior to…