Nicdark Cost Calculator — known CVE vulnerabilities
Every CVE whose affected-product data names Nicdark Cost Calculator, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2023-1155 — CVSS 6.4 (medium): The Cost Calculator plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the nd_cc_meta_box_cc_price_icon parameter in…
CVE-2021-24821 — CVSS 5.4 (medium): The Cost Calculator WordPress plugin before 1.6 allows users with a role as low as Contributor to perform Stored Cross-Site Scripting…
CVE-2023-0165 — CVSS 5.4 (medium): The Cost Calculator WordPress plugin through 1.8 does not validate and escape some of its shortcode attributes before outputting them back…