[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f3LBUqxl3fRucdHyEztMscGdCKEusGZTWI2pnDlUzEEM":3},{"id":4,"url_slug":5,"title":6,"description":7,"plugin_slug":8,"theme_slug":9,"affected_versions":10,"patched_in_version":11,"severity":12,"cvss_score":13,"cvss_vector":14,"vuln_type":15,"published_date":16,"updated_date":17,"references":18,"days_to_patch":20},"CVE-2015-9505","easy-digital-downloads-simple-ecommerce-for-selling-digital-files-cross-site-scripting","Easy Digital Downloads – Simple eCommerce for Selling Digital Files \u003C= 2.3.6 - Cross-Site Scripting","The Easy Digital Downloads (EDD) core component 1.8.x before 1.8.7, 1.9.x before 1.9.10, 2.0.x before 2.0.5, 2.1.x before 2.1.11, 2.2.x before 2.2.9, and 2.3.x before 2.3.7 for WordPress has XSS because add_query_arg is misused.","easy-digital-downloads",null,"\u003C1.8.7","1.8.7","medium",6.1,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2015-04-20 00:00:00","2024-01-22 19:56:02",[19],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fbe60027e-9d6a-4740-b20c-6be3e115d9fe?source=api-prod",3200]