Every CVE whose affected-product data names Simple Jwt Login Project Simple Jwt Login, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2021-24804 — CVSS 8.8 (high): The Simple JWT Login WordPress plugin before 3.2.1 does not have nonce checks when saving its settings, allowing attackers to make a logged…
CVE-2021-24998 — CVSS 7.5 (high): The Simple JWT Login WordPress plugin before 3.3.0 can be used to create new WordPress user accounts with a randomly generated password…