Designwall Dw Question & Answer — known CVE vulnerabilities
Every CVE whose affected-product data names Designwall Dw Question & Answer, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2021-24800 — CVSS 4.3 (medium): The DW Question & Answer Pro WordPress plugin through 1.3.4 does not check that the comment to edit belongs to the user making the request…
CVE-2021-24805 — CVSS 4.3 (medium): The DW Question & Answer Pro WordPress plugin through 1.3.4 does not properly check for CSRF in some of its functions, allowing attackers…
CVE-2021-4408 — CVSS 4.3 (medium): The DW Question & Answer plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.5.8. This is…