Every CVE whose affected-product data names Getlasso Simple Urls, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2023-0098 — CVSS 8.8 (high): The Simple URLs WordPress plugin before 115 does not escape some parameters before using them in various SQL statements used by AJAX…
CVE-2023-40674 — CVSS 6.5 (medium): Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Lasso Simple URLs – Link Cloaking…
CVE-2023-0099 — CVSS 6.1 (medium): The Simple URLs WordPress plugin before 115 does not sanitise and escape some parameters before outputting them back in some pages, leading…