Wow-company Herd Effects — known CVE vulnerabilities
Every CVE whose affected-product data names Wow-company Herd Effects, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2023-2362 — CVSS 6.1 (medium): The Float menu WordPress plugin before 5.0.2, Bubble Menu WordPress plugin before 3.0.4, Button Generator WordPress plugin before 2.3.5…
CVE-2024-3478 — CVSS 6.1 (medium): The Herd Effects WordPress plugin before 5.2.7 does not have CSRF checks in some bulk actions, which could allow attackers to make logged…
CVE-2023-4022 — CVSS 4.8 (medium): The Herd Effects WordPress plugin before 5.2.3 does not sanitise and escape some of its settings, which could allow high privilege users…
CVE-2023-4318 — CVSS 4.3 (medium): The Herd Effects WordPress plugin before 5.2.4 does not have CSRF when deleting its items, which could allow attackers to make logged in…