Davidjmiller Similarity
2 CVEs affecting Davidjmiller Similarity. Latest disclosed: 2024-06-14. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-3972 | Medium | 4.3 | 2024-06-14 | The Similarity WordPress plugin through 3.0 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attacke… |
CVE-2024-3971 | Medium | 4.3 | 2024-06-14 | The Similarity WordPress plugin through 3.0 does not have CSRF check in place when resetting its settings, which could allow attackers to make a logged in admi… |