CVE-2018-20972
The companion-auto-update plugin before 3.2.1 for WordPress has CSRF.
8.8CVSS
9.1AI Score
0.001EPSS
CVE-2018-20973
The companion-auto-update plugin before 3.2.1 for WordPress has local file inclusion.
9.8CVSS
9.2AI Score
0.002EPSS