Auto Generated CVE annotations [Thu May 5 12:13:55 UTC 2022] 🤖

cves/2021/CVE-2021-25111.yaml

@@ -3,11 +3,16 @@ id: CVE-2021-25111
 info:
   name: English WordPress Admin < 1.5.2 - Unauthenticated Open Redirect
   author: akincibor
-  severity: low
+  severity: medium
   description: The plugin does not validate the admin_custom_language_return_url before redirecting users o it, leading to an open redirect issue.
   reference:
     - https://wpscan.com/vulnerability/af548fab-96c2-4129-b609-e24aad0b1fc4
   tags: wp-plugin,redirect,wordpress,wp,cve,cve2021,unauth
+  classification:
+    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
+    cvss-score: 6.10
+    cve-id: CVE-2021-25111
+    cwe-id: CWE-601
 
 requests:
   - method: GET

cves/2022/CVE-2022-0288.yaml

@@ -9,6 +9,11 @@ info:
   reference:
     - https://wpscan.com/vulnerability/27b64412-33a4-462c-bc45-f81697e4fe42
   tags: cve,cve2022,wordpress,xss
+  classification:
+    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
+    cvss-score: 6.10
+    cve-id: CVE-2022-0288
+    cwe-id: CWE-79
 
 requests:
   - method: POST