Every CVE whose affected-product data names Microsoft Clarity, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2024-0590 — CVSS 6.1 (medium): The Microsoft Clarity plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 0.9.3. This is…
CVE-2021-33850 — CVSS 5.4 (medium): There is a Cross-Site Scripting vulnerability in Microsoft Clarity version 0.3. The XSS payload executes whenever the user changes the…