Wp-championship Project Wp-championship — known CVE vulnerabilities
Every CVE whose affected-product data names Wp-championship Project Wp-championship, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2015-5308 — CVSS 7.5 (high): Multiple SQL injection vulnerabilities in cs_admin_users.php in the wp-championship plugin 5.8 for WordPress allow remote attackers to…
CVE-2022-1967 — CVSS 6.5 (medium): The WP Championship WordPress plugin before 9.3 is lacking CSRF checks in various places, allowing attackers to make a logged in admin…