Every CVE whose affected-product data names Solidres, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2018-5980 — CVSS 9.8 (critical): SQL Injection exists in the Solidres 2.5.1 component for Joomla! via the direction parameter in a hub.search action.
CVE-2024-13329 — CVSS 7.1 (high): The Solidres WordPress plugin through 0.9.4 does not sanitise and escape a parameter before outputting it back in the page, leading to a…
CVE-2023-1377 — CVSS 6.1 (medium): The Solidres WordPress plugin through 0.9.4 does not sanitise and escape numerous parameter before outputting them back in pages, leading…
CVE-2023-1374 — CVSS 4.4 (medium): The Solidres plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'currency_name' parameter in versions up to, and…