1.0.0

DATE	CVE	VULNERABILITY TITLE	RISK
2023-06-03	CVE-2023-2404	Cross-site Scripting vulnerability in Vcita CRM and Lead Management BY Vcita The CRM and Lead Management by vcita plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'email' parameter in versions up to, and including, 2.6.2 due to insufficient input sanitization and output escaping. network low complexity vcita CWE-79	5.4
2023-06-03	CVE-2023-2405	Cross-Site Request Forgery (CSRF) vulnerability in Vcita CRM and Lead Management BY Vcita The CRM and Lead Management by vcita plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.6.2. network low complexity vcita CWE-352	6.5