Mooveagency Import Xml And Rss Feeds — known CVE vulnerabilities
Every CVE whose affected-product data names Mooveagency Import Xml And Rss Feeds, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2023-4521 — CVSS 9.8 (critical): The Import XML and RSS Feeds WordPress plugin before 2.1.5 contains a web shell, allowing unauthenticated attackers to perform RCE. The…
CVE-2020-24148 — CVSS 9.1 (critical): Server-side request forgery (SSRF) in the Import XML and RSS Feeds (import-xml-feed) plugin 2.0.1 for WordPress via the data parameter in a…
CVE-2023-4300 — CVSS 7.2 (high): The Import XML and RSS Feeds WordPress plugin before 2.1.4 does not filter file extensions for uploaded files, allowing an attacker to…