Skip to main content

Whizz

2 CVEs product

Monthly

CVE-2017-8099 HIGH POC This Week

There is CSRF in the WHIZZ plugin before 1.1.1 for WordPress, allowing attackers to delete any WordPress users and change the plugin's status via a GET request. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

WordPress CSRF Whizz
NVD
CVSS 3.0
8.1
EPSS
0.2%
CVE-2016-1000154 MEDIUM POC This Month

Reflected XSS in wordpress plugin whizz v1.0.7. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS WordPress Whizz
NVD
CVSS 3.0
6.1
EPSS
5.8%
EPSS 0% CVSS 8.1
HIGH POC This Week

There is CSRF in the WHIZZ plugin before 1.1.1 for WordPress, allowing attackers to delete any WordPress users and change the plugin's status via a GET request. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

WordPress CSRF Whizz
NVD
EPSS 6% CVSS 6.1
MEDIUM POC This Month

Reflected XSS in wordpress plugin whizz v1.0.7. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

XSS WordPress Whizz
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy