Wpmarka Wordpress Auction — known CVE vulnerabilities
Every CVE whose affected-product data names Wpmarka Wordpress Auction, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2024-8855 — CVSS 9.8 (critical): The WordPress Auction Plugin WordPress plugin through 3.7 does not sanitize and escape a parameter before using it in a SQL statement…
CVE-2024-8857 — CVSS 4.8 (medium): The WordPress Auction Plugin WordPress plugin through 3.7 does not sanitise and escape some of its settings, which could allow high…