| Page(s) : [1] 2 3 4 5 6 7 8 9 10 11 ... | Result(s) : 39842 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.9 | 2024-06-15 | CVE-2024-3105 | cve | The Woody code snippets – Insert Header Footer Code, AdSense Ads plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 2.5.0 via the ... |
| 9.8 | 2024-06-15 | CVE-2024-4258 | cve | The Video Gallery – YouTube Playlist, Channel Gallery by YotuWP plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.3.13 via the s... |
| 9.8 | 2024-06-15 | CVE-2024-5871 | cve | The WooCommerce - Social Login plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 2.6.2 via deserialization of untrusted input from... |
| 9.1 | 2024-06-14 | CVE-2024-2472 | cve | The LatePoint Plugin plugin for WordPress is vulnerable to unauthorized access of data and modification of data due to a missing capability check on the 'start_or_use_sessi... |
| 9.8 | 2024-06-14 | CVE-2024-3912 | cve | Certain models of ASUS routers have an arbitrary firmware upload vulnerability. An unauthenticated remote attacker can exploit this vulnerability to execute arbitrary system com... |
| 9.8 | 2024-06-14 | CVE-2024-4936 | cve | The Canto plugin for WordPress is vulnerable to Remote File Inclusion in all versions up to, and including, 3.0.8 via the abspath parameter. This makes it possible for unauthent... |
| 9.8 | 2024-06-14 | CVE-2024-5577 | cve | The Where I Was, Where I Will Be plugin for WordPress is vulnerable to Remote File Inclusion in version |
| 9.8 | 2024-06-14 | CVE-2024-3080 | cve | Certain ASUS router models have authentication bypass vulnerability, allowing unauthenticated remote attackers to log in the device. |
| 10 | 2024-06-13 | CVE-2024-30299 | cve | Adobe Framemaker Publishing Server versions 2020.3, 2022.2 and earlier are affected by an Improper Authentication vulnerability that could result in privilege escalation. An att... |
| 9.8 | 2024-06-13 | CVE-2024-34102 | cve | Adobe Commerce versions 2.4.7, 2.4.6-p5, 2.4.5-p7, 2.4.4-p8 and earlier are affected by an Improper Restriction of XML External Entity Reference ('XXE') vulnerability ... |
| 9.1 | 2024-06-13 | CVE-2024-34108 | cve | Adobe Commerce versions 2.4.7, 2.4.6-p5, 2.4.5-p7, 2.4.4-p8 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution ... |
| 10 | 2024-06-13 | CVE-2024-3922 | cve | The Dokan Pro plugin for WordPress is vulnerable to SQL Injection via the 'code' parameter in all versions up to, and including, 3.10.3 due to insufficient escaping on... |
| 9.8 | 2024-06-12 | CVE-2024-4898 | cve | The InstaWP Connect – 1-click WP Staging & Migration plugin for WordPress is vulnerable to arbitrary option updates due to a missing authorization checks on the REST API calls i... |
| 9.8 | 2024-06-11 | CVE-2024-30080 | cve | Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability |
| 9.9 | 2024-06-11 | CVE-2024-3549 | cve | The Blog2Social: Social Media Auto Post & Scheduler plugin for WordPress is vulnerable to SQL Injection via the 'b2sSortPostType' parameter in all versions up to, and ... |
| 9.1 | 2024-06-10 | CVE-2024-32167 | cve | Sourcecodester Online Medicine Ordering System 1.0 is vulnerable to Arbitrary file deletion vulnerability as the backend settings have the function of deleting pictures to delet... |
| 9.8 | 2024-06-10 | CVE-2024-36412 | cve | SuiteCRM is an open-source Customer Relationship Management (CRM) software application. Prior to versions 7.14.4 and 8.6.1, a vulnerability in events response entry point allows... |
| 9 | 2024-06-10 | CVE-2024-36417 | cve | SuiteCRM is an open-source Customer Relationship Management (CRM) software application. Prior to versions 7.14.4 and 8.6.1, an unverified IFrame can be added some some inputs, w... |
| 9.8 | 2024-06-10 | CVE-2024-37014 | cve | Langflow through 0.6.19 allows remote code execution if untrusted users are able to reach the "POST /api/v1/custom_component" endpoint and provide a Python script. |
| 9.1 | 2024-06-10 | CVE-2024-35658 | cve | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in ThemeHigh Checkout Field Editor for WooCommerce (Pro) allows Functional... |
| Page(s) : [1] 2 3 4 5 6 7 8 9 10 11 ... | Result(s) : 39842 |
