Every CVE whose affected-product data names Easy Student Results Project Easy Student Results, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2022-2379 — CVSS 7.5 (high): The Easy Student Results WordPress plugin through 2.2.8 lacks authorisation in its REST API, allowing unauthenticated users to retrieve…
CVE-2022-2378 — CVSS 6.1 (medium): The Easy Student Results WordPress plugin through 2.2.8 does not sanitise and escape a parameter before outputting it back in the page…