Ibenic Simple Giveaways — known CVE vulnerabilities
Every CVE whose affected-product data names Ibenic Simple Giveaways, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2021-24298 — CVSS 6.1 (medium): The method and share GET parameters of the Giveaway pages were not sanitised, validated or escaped before being output back in the pages…
CVE-2023-31086 — CVSS 5.4 (medium): Cross-Site Request Forgery (CSRF) vulnerability in Igor Benic Simple Giveaways – Grow your business, email lists and traffic with…
CVE-2023-1120 — CVSS 4.8 (medium): The Simple Giveaways WordPress plugin before 2.45.1 does not sanitise and escape some of its settings, which could allow high privilege…
CVE-2023-1121 — CVSS 4.8 (medium): The Simple Giveaways WordPress plugin before 2.45.1 does not sanitise and escape some of its settings, which could allow high privilege…
CVE-2023-1122 — CVSS 4.8 (medium): The Simple Giveaways WordPress plugin before 2.45.1 does not sanitise and escape some of its Giveaways options, which could allow high…