Dev4press Coreactivity — known CVE vulnerabilities
Every CVE whose affected-product data names Dev4press Coreactivity, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2024-0852 — CVSS 8.8 (high): The coreActivity: Activity Logging for WordPress plugin before 1.8.1 does not escape some request data when outputting it back in the admin…
CVE-2024-0868 — CVSS 5.3 (medium): The coreActivity: Activity Logging plugin for WordPress plugin before 2.1 retrieved IP addresses of requests via headers such X-FORWARDED…