| Page(s) : 1 ... 4 5 6 7 8 9 10 11 12 13 [14] 15 16 17 18 19 20 21 22 23 24 ... | Result(s) : 252362 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 4.3 | 2024-05-30 | CVE-2024-3945 | cve | The WP To Do plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.3.0. This is due to missing or incorrect nonce validation o... |
| 4.4 | 2024-05-30 | CVE-2024-3946 | cve | The WP To Do plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.3.0 due to insufficient input sanitizat... |
| 4.3 | 2024-05-30 | CVE-2024-3947 | cve | The WP To Do plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.3.0. This is due to missing or incorrect nonce validation o... |
| 6.5 | 2024-05-30 | CVE-2024-4218 | cve | The AffiEasy plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.1.7. This is due to plugin improperly releasing the tagged ... |
| 6.4 | 2024-05-30 | CVE-2024-4356 | cve | The List categories plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'categories' shortcode in all versions up to, and including... |
| N/A | 2024-05-30 | CVE-2024-36267 | cve | Path traversal vulnerability exists in Redmine DMSF Plugin versions prior to 3.1.4. If this vulnerability is exploited, a logged-in user may obtain or delete arbitrary files on ... |
| 7.2 | 2024-05-30 | CVE-2024-5207 | cve | The POST SMTP – The #1 WordPress SMTP Plugin with Advanced Email Logging and Delivery Failure Notifications plugin for WordPress is vulnerable to time-based SQL Injection via th... |
| 6.4 | 2024-05-30 | CVE-2024-5341 | cve | The The Plus Addons for Elementor Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'size' attribute of the Heading Title widget i... |
| 6.4 | 2024-05-30 | CVE-2024-5073 | cve | The Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Twi... |
| 6.4 | 2024-05-30 | CVE-2024-5327 | cve | The PowerPack Addons for Elementor (Free Widgets, Extensions and Templates) plugin for WordPress is vulnerable to DOM-Based Stored Cross-Site Scripting via the ‘pp_animated_grad... |
| 5.4 | 2024-05-30 | CVE-2024-2089 | cve | The Remote Content Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'remote_content' shortcode in all versions up to, and including,... |
| 4.4 | 2024-05-30 | CVE-2024-2657 | cve | The Font Farsi plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.6.6 due to insufficient input sanitiz... |
| 4.3 | 2024-05-30 | CVE-2024-4355 | cve | The Block Bad Bots and Stop Bad Bots Crawlers and Spiders and Anti Spam Protection plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability ... |
| 6.4 | 2024-05-30 | CVE-2024-4422 | cve | The Comparison Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the slider title parameter in all versions up to, and including, 1.0.5 due to insuffi... |
| N/A | 2024-05-30 | CVE-2024-4426 | cve | The Comparison Slider plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0.5. This is due to missing or incorrect nonce val... |
| 4.3 | 2024-05-30 | CVE-2024-4427 | cve | The Comparison Slider plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on several AJAX actions in all versions up to, an... |
| 6.4 | 2024-05-30 | CVE-2024-3726 | cve | The Login Logout Register Menu plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'llrmloginlogout' shortcode in all versions up t... |
| 9.8 | 2024-05-30 | CVE-2024-5514 | cve | MinMax CMS from MinMax Digital Technology contains a hidden administrator account with a fixed password that cannot be removed or disabled from the management interface. Remote ... |
| 6.4 | 2024-05-30 | CVE-2024-2253 | cve | The Testimonial Carousel For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via URL values the plugin's carousel widgets in all versions up to,... |
| 6.4 | 2024-05-30 | CVE-2024-3063 | cve | The WPB Elementor Addons plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the output of 'tags' added to widgets in all versions up to, and includi... |
| Page(s) : 1 ... 4 5 6 7 8 9 10 11 12 13 [14] 15 16 17 18 19 20 21 22 23 24 ... | Result(s) : 252362 |
