Every CVE whose affected-product data names Wppool Wp Dark Mode, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2022-4714 — CVSS 5.4 (medium): The WP Dark Mode WordPress plugin before 4.0.0 does not validate and escape one of its shortcode attributes, which could allow users with a…
CVE-2023-0467 — CVSS 4.3 (medium): The WP Dark Mode WordPress plugin before 4.0.8 does not properly sanitize the style parameter in shortcodes before using it to load a PHP…
CVE-2024-5449 — CVSS 4.3 (medium): The WP Dark Mode – WordPress Dark Mode Plugin for Improved Accessibility, Dark Theme, Night Mode, and Social Sharing plugin for WordPress…