Webmaster-source Wp125 — known CVE vulnerabilities
Every CVE whose affected-product data names Webmaster-source Wp125, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2021-25073 — CVSS 8.8 (high): The WP125 WordPress plugin before 1.5.5 does not have CSRF checks in various action, for example when deleting an ad, allowing attackers to…
CVE-2013-2700 — CVSS 6.8 (medium): Cross-site request forgery (CSRF) vulnerability in the Add/Edit page (adminmenus.php) in the WP125 plugin before 1.5.0 for WordPress allows…