I-plugins Whmcs Bridge — known CVE vulnerabilities
Every CVE whose affected-product data names I-plugins Whmcs Bridge, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2021-4074 — CVSS 6.4 (medium): The WHMCS Bridge WordPress plugin is vulnerable to Stored Cross-Site Scripting via the cc_whmcs_bridge_url parameter found in the…
CVE-2021-25112 — CVSS 6.1 (medium): The WHMCS Bridge WordPress plugin before 6.4b does not sanitise and escape the error parameter before outputting it back in admin…