| Page(s) : [1] 2 3 4 5 6 7 8 9 10 11 ... | Result(s) : 101106 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 6.4 | 2024-05-24 | CVE-2024-2618 | cve | The Elementor Header & Footer Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the size attribute in all versions up to, and including, 1.6.26 due t... |
| 6.4 | 2024-05-24 | CVE-2024-2784 | cve | The The Plus Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Hover Card widget in all versions up to, and including, 5.5.4 due to ... |
| 6.4 | 2024-05-24 | CVE-2024-1134 | cve | The SEOPress – On-site SEO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the SEO title and description parameters as well as others in all versions up to... |
| 6.4 | 2024-05-24 | CVE-2024-3718 | cve | The The Plus Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via several of the plugin's widgets all versions up to, and including, 5... |
| 4.3 | 2024-05-24 | CVE-2024-0893 | cve | The Schema App Structured Data plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the MarkupUpdate function in all vers... |
| 6.4 | 2024-05-24 | CVE-2024-1332 | cve | The Custom Fonts – Host Your Fonts Locally plugin for WordPress is vulnerable to Stored Cross-Site Scripting via svg file upload in all versions up to, and including, 2.1.4 due ... |
| 4.3 | 2024-05-24 | CVE-2024-1376 | cve | The Event post plugin for WordPress is vulnerable to unauthorized bulk metadata update due to a missing capability check on the save_bulkdatas function in all versions up to, an... |
| 6.4 | 2024-05-24 | CVE-2024-4484 | cve | The The Plus Addons for Elementor – Elementor Addons, Page Templates, Widgets, Mega Menu, WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘... |
| 6.4 | 2024-05-24 | CVE-2024-4485 | cve | The The Plus Addons for Elementor – Elementor Addons, Page Templates, Widgets, Mega Menu, WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘... |
| 6.4 | 2024-05-24 | CVE-2024-5060 | cve | The LottieFiles – JSON Based Animation Lottie & Bodymovin for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 1... |
| 6.4 | 2024-05-24 | CVE-2024-4366 | cve | The Spectra – WordPress Gutenberg Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘block_id’ parameter in versions up to, and including, 2.13.0 ... |
| 6.5 | 2024-05-24 | CVE-2024-4037 | cve | The WP Photo Album Plus plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 8.7.02.003. This is due to the plugin allowing ... |
| 4.3 | 2024-05-24 | CVE-2024-4409 | cve | The WP-ViperGB plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.6.1. This is due to missing or incorrect nonce validation... |
| 6.4 | 2024-05-24 | CVE-2024-5205 | cve | The Videojs HTML5 Player plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's videojs_video shortcode in all versions up to, and including, 1.... |
| 6.4 | 2024-05-23 | CVE-2024-4365 | cve | The Advanced iFrame plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘add_iframe_url_as_param_direct’ parameter in versions up to, and including, 2024.3... |
| 6.4 | 2024-05-23 | CVE-2024-2861 | cve | The ProfilePress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ProfilePress User Panel widget in all versions up to, and including, 4.15.8 due to ins... |
| 6.4 | 2024-05-23 | CVE-2024-1814 | cve | The Spectra – WordPress Gutenberg Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Testimonial block in all versions up to, and inc... |
| 6.4 | 2024-05-23 | CVE-2024-1815 | cve | The Spectra – WordPress Gutenberg Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Image Gallery block in all versions up to, and i... |
| 6.4 | 2024-05-23 | CVE-2024-3997 | cve | The Prime Slider – Addons For Elementor (Revolution of a slider, Hero Slider, Ecommerce Slider) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin&... |
| 6.4 | 2024-05-23 | CVE-2024-4378 | cve | The Premium Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's menu and shape widgets in all versions up to, and includ... |
| Page(s) : [1] 2 3 4 5 6 7 8 9 10 11 ... | Result(s) : 101106 |
