Vulnerabilities (CVE)

Filtered by vendor Keywordrush Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-25952 1 Keywordrush 1 Content Egg 2024-11-21 N/A 4.3 MEDIUM
Cross-Site Request Forgery (CSRF) vulnerability in Keywordrush Content Egg plugin <= 5.4.0 on WordPress.
CVE-2022-0428 1 Keywordrush 1 Content Egg 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
The Content Egg WordPress plugin before 5.3.0 does not sanitise and escape the page parameter before outputting back in an attribute in the Autoblogging admin dashboard, leading to a Reflected Cross-Site Scripting