Every CVE whose affected-product data names Cerber Wp Cerber Security, Anti-spam & Malware Scan, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2022-4712 — CVSS 7.2 (high): The WP Cerber Security plugin for WordPress is vulnerable to stored cross-site scripting via the log parameter when logging in to the site…
CVE-2022-0429 — CVSS 6.1 (medium): The WP Cerber Security, Anti-spam & Malware Scan WordPress plugin before 8.9.6 does not sanitise the $url variable before using it in an…
CVE-2022-2939 — CVSS 5.3 (medium): The WP Cerber Security plugin for WordPress is vulnerable to security protection bypass in versions up to, and including 9.0, that makes…
CVE-2022-4417 — CVSS 5.3 (medium): The WP Cerber Security, Anti-spam & Malware Scan WordPress plugin before 9.3.3 does not properly block access to the REST API users…