Sermon Browser Project Sermon Browser — known CVE vulnerabilities
Every CVE whose affected-product data names Sermon Browser Project Sermon Browser, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2022-0499 — CVSS 8.8 (high): The Sermon Browser WordPress plugin through 0.45.22 does not have CSRF checks in place when uploading Sermon files, and does not validate…