Riverside Http Headers — known CVE vulnerabilities
Every CVE whose affected-product data names Riverside Http Headers, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2023-1207 — CVSS 7.2 (high): This HTTP Headers WordPress plugin before 1.18.8 has an import functionality which executes arbitrary SQL on the server, leading to an SQL…
CVE-2023-1208 — CVSS 7.2 (high): This HTTP Headers WordPress plugin before 1.18.11 allows arbitrary data to be written to arbitrary files, leading to a Remote Code…