Every CVE whose affected-product data names Onetarek Wp Logs Book, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2024-4477 — CVSS 5.4 (medium): The WP Logs Book WordPress plugin through 1.0.1 does not sanitise and escape some of its log data before outputting them back in an admin…
CVE-2024-4474 — CVSS 4.3 (medium): The WP Logs Book WordPress plugin through 1.0.1 does not have CSRF check in place when updating its settings, which could allow attackers…
CVE-2024-4475 — CVSS 4.3 (medium): The WP Logs Book WordPress plugin through 1.0.1 does not have CSRF check when clearing logs, which could allow attackers to make a logged…