Every CVE whose affected-product data names Bobbingwide Oik, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2024-2256 — CVSS 6.4 (medium): The oik plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcodes such as bw_contact_button and…
CVE-2024-43356 — CVSS 4.3 (medium): Cross-Site Request Forgery (CSRF) vulnerability in bobbingwide.This issue affects oik: from n/a through 4.12.0.