Datenverwurstungszentrale Shariff Wrapper — known CVE vulnerabilities
Every CVE whose affected-product data names Datenverwurstungszentrale Shariff Wrapper, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2024-4098 — CVSS 9.8 (critical): The Shariff Wrapper plugin for WordPress is vulnerable to Local File Inclusion in versions up to, and including, 4.6.13 via the…
CVE-2024-29109 — CVSS 6.5 (medium): Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Jan-Peter Lambeck & 3UU Shariff…
CVE-2023-6500 — CVSS 6.4 (medium): The Shariff Wrapper plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'shariff' shortcode in all versions…
CVE-2024-2695 — CVSS 6.4 (medium): The Shariff Wrapper plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'shariff' shortcode in all versions…
CVE-2024-1450 — CVSS 6.4 (medium): The Shariff Wrapper plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'shariff' shortcode in all versions…
CVE-2024-0966 — CVSS 6.4 (medium): The Shariff Wrapper plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'shariff' shortcode in all versions…
CVE-2024-1106 — CVSS 6.1 (medium): The Shariff Wrapper WordPress plugin before 4.6.10 does not sanitise and escape some of its settings, which could allow high privilege…