Brainstormforce Schema — known CVE vulnerabilities
Every CVE whose affected-product data names Brainstormforce Schema, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2023-36682 — CVSS 7.1 (high): Cross-Site Request Forgery (CSRF) vulnerability in Brainstorm Force US LLC Schema Pro allows Cross Site Request Forgery.This issue affects…
CVE-2018-20977 — CVSS 6.1 (medium): The all-in-one-schemaorg-rich-snippets plugin before 1.5.0 for WordPress has XSS on the settings page.
CVE-2023-25058 — CVSS 4.3 (medium): Cross-Site Request Forgery (CSRF) vulnerability in Brainstorm Force Schema – All In One Schema Rich Snippets plugin <= 1.6.5 versions.
CVE-2024-1564 — CVSS 4.3 (medium): The wp-schema-pro WordPress plugin before 2.7.16 does not validate post access allowing a contributor user to access custom fields on any…