Every CVE whose affected-product data names Getigniteup Igniteup, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2019-17237 — CVSS 8.8 (high): includes/class-coming-soon-creator.php in the igniteup plugin through 3.4 for WordPress allows CSRF.
CVE-2019-17234 — CVSS 7.5 (high): includes/class-coming-soon-creator.php in the igniteup plugin through 3.4 for WordPress allows unauthenticated arbitrary file deletion.
CVE-2019-17236 — CVSS 6.1 (medium): includes/class-coming-soon-creator.php in the igniteup plugin through 3.4 for WordPress is vulnerable to stored XSS.
CVE-2022-0898 — CVSS 5.4 (medium): The IgniteUp WordPress plugin through 3.4.1 does not sanitise and escape some fields when high privilege users don't have the…
CVE-2019-17235 — CVSS 5.3 (medium): includes/class-coming-soon-creator.php in the igniteup plugin through 3.4 for WordPress allows information disclosure.