Email Log Project Email Log — known CVE vulnerabilities
Every CVE whose affected-product data names Email Log Project Email Log, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2021-24758 — CVSS 8.8 (high): The Email Log WordPress plugin before 2.4.7 does not properly validate, sanitise and escape the "orderby" and "order" GET parameters before…
CVE-2021-24924 — CVSS 6.1 (medium): The Email Log WordPress plugin before 2.4.8 does not escape the d parameter before outputting it back in an attribute in the Log page…