Every CVE whose affected-product data names Seedprod Rafflepress, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2023-5049 — CVSS 6.4 (medium): The Giveaways and Contests by RafflePress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'rafflepress' and…
CVE-2024-10107 — CVSS 4.8 (medium): The Giveaways and Contests by RafflePress WordPress plugin before 1.12.17 does not sanitise and escape some of its settings, which could…
CVE-2024-6887 — CVSS 4.8 (medium): The Giveaways and Contests by RafflePress WordPress plugin before 1.12.16 does not sanitise and escape some of its Giveaways settings…
CVE-2024-4745 — CVSS 4.3 (medium): Missing Authorization vulnerability in RafflePress Giveaways and Contests by RafflePress.This issue affects Giveaways and Contests by…