Convertplug Convertplus — known CVE vulnerabilities
Every CVE whose affected-product data names Convertplug Convertplus, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2024-13800 — CVSS 8.1 (high): The ConvertPlus plugin for WordPress is vulnerable to unauthorized modification of data that can lead to a denial of service due to a…
CVE-2019-15863 — CVSS 7.5 (high): The ConvertPlus plugin before 3.4.5 for WordPress has an unintended account creation (with the none role) via a request for variants.