Inisev Enhanced Text Widget — known CVE vulnerabilities
Every CVE whose affected-product data names Inisev Enhanced Text Widget, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2024-0559 — CVSS 6.5 (medium): The Enhanced Text Widget WordPress plugin before 1.6.6 does not validate and escape some of its Widget options before outputting them back…
CVE-2023-0958 — CVSS 4.3 (medium): Several plugins for WordPress by Inisev are vulnerable to unauthorized installation of plugins due to a missing capability check on the…
CVE-2023-3977 — CVSS 4.3 (medium): Several plugins for WordPress by Inisev are vulnerable to Cross-Site Request Forgery to unauthorized installation of plugins due to a…