Gopiplus Wp-tell-a-friend-popup-form — known CVE vulnerabilities
Every CVE whose affected-product data names Gopiplus Wp-tell-a-friend-popup-form, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2023-25465 — CVSS 5.9 (medium): Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Gopi Ramasamy wp tell a friend popup form plugin <= 7.1 versions.
CVE-2023-25463 — CVSS 5.4 (medium): Cross-Site Request Forgery (CSRF) vulnerability in Gopi Ramasamy WP tell a friend popup form plugin <= 7.1 versions.