Quotes Collection Project Quotes Collection — known CVE vulnerabilities
Every CVE whose affected-product data names Quotes Collection Project Quotes Collection, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2021-24861 — CVSS 7.2 (high): The Quotes Collection WordPress plugin through 2.5.2 does not validate and escape the bulkcheck parameter before using it in a SQL…
CVE-2016-10952 — CVSS 6.1 (medium): The quotes-collection plugin before 2.0.6 for WordPress has XSS via the wp-admin/admin.php?page=quotes-collection page parameter.