📦

seo

Vendor: 10web

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 0 Remote Access

Total CVEs 2 Total Indexed

Avg. EPSS 0.76% Exploit Prob.

Latest CVE CVE-2023-34375 Nov 16

Security Vulnerability Index

Page 1 / 1

7.1 CVSS

CVE-2023-34375

Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in 10Web SEO by 10Web plugin <= 1.2.9 versions.

EPSS: 0.19%

Severity: HIGH

Nov 16, 2023

4.8 CVSS

CVE-2023-2224

The SEO by 10Web WordPress plugin before 1.2.7 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).

EPSS: 1.33%

Severity: MEDIUM

Jun 05, 2023

Displaying 2 of 2 Total Entries

Total 1 Sections