CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2013-10024 – Exit Strategy Plugin exitpage.php information disclosure
https://notcve.org/view.php?id=CVE-2013-10024
28 May 2013 — A vulnerability has been found in Exit Strategy Plugin 1.55 on WordPress and classified as problematic. Affected by this vulnerability is an unknown functionality of the file exitpage.php. The manipulation leads to information disclosure. The attack can be launched remotely. Upgrading to version 1.59 is able to address this issue. • https://github.com/wp-plugins/exit-strategy/commit/d964b8e961b2634158719f3328f16eda16ce93ac • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2013-10025 – Exit Strategy Plugin exitpage.php exitpageadmin cross-site request forgery
https://notcve.org/view.php?id=CVE-2013-10025
28 May 2013 — A vulnerability was found in Exit Strategy Plugin 1.55 on WordPress and classified as problematic. Affected by this issue is the function exitpageadmin of the file exitpage.php. The manipulation leads to cross-site request forgery. The attack may be launched remotely. Upgrading to version 1.59 is able to address this issue. • https://github.com/wp-plugins/exit-strategy/commit/d964b8e961b2634158719f3328f16eda16ce93ac • CWE-352: Cross-Site Request Forgery (CSRF) •