Feedwordpress Project Feedwordpress — known CVE vulnerabilities
Every CVE whose affected-product data names Feedwordpress Project Feedwordpress, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2015-4018 — CVSS 6.5 (medium): SQL injection vulnerability in feedwordpresssyndicationpage.class.php in the FeedWordPress plugin before 2015.0514 for WordPress allows…
CVE-2015-9358 — CVSS 6.1 (medium): The feedwordpress plugin before 2015.0514 for WordPress has XSS via add_query_arg() and remove_query_arg().
CVE-2021-25055 — CVSS 6.1 (medium): The FeedWordPress plugin before 2022.0123 is affected by a Reflected Cross-Site Scripting (XSS) within the "visibility" parameter.
CVE-2024-0839 — CVSS 5.3 (medium): The FeedWordPress plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 2022.0222…