Infility Infility Global — known CVE vulnerabilities
Every CVE whose affected-product data names Infility Infility Global, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2024-11496 — CVSS 6.5 (medium): The Infility Global plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the…
CVE-2024-12290 — CVSS 6.1 (medium): The Infility Global plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘set_type’ parameter in all versions…
CVE-2024-12723 — CVSS 6.1 (medium): The Infility Global WordPress plugin through 2.9.8 does not sanitise and escape a parameter before outputting it back in the page, leading…