| Page(s) : 1 ... 1004 1005 1006 1007 1008 1009 1010 1011 1012 1013 [1014] 1015 1016 1017 1018 1019 1020 1021 1022 1023 1024 ... | Result(s) : 43591 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2019-08-22 | CVE-2019-15319 | cve | The option-tree plugin before 2.7.0 for WordPress has Object Injection by leveraging a valid nonce. |
| 9.8 | 2019-08-22 | CVE-2015-9335 | cve | The limit-attempts plugin before 1.1.1 for WordPress has SQL injection during IP address handling. |
| 9.8 | 2019-08-22 | CVE-2014-10389 | cve | The wp-support-plus-responsive-ticket-system plugin before 4.2 for WordPress has incorrect authentication. |
| 10 | 2019-08-22 | CVE-2016-10927 | cve | The nelio-ab-testing plugin before 4.5.11 for WordPress has SSRF in ajax/iesupport.php. |
| 9.8 | 2019-08-22 | CVE-2015-9333 | cve | The cforms2 plugin before 14.6.10 for WordPress has SQL injection. |
| 9.8 | 2019-08-22 | CVE-2013-7483 | cve | The slidedeck2 plugin before 2.3.5 for WordPress has file inclusion. |
| 9.8 | 2019-08-22 | CVE-2016-10930 | cve | The wp-support-plus-responsive-ticket-system plugin before 7.1.0 for WordPress has insecure direct object reference via a ticket number. |
| 9.8 | 2019-08-22 | CVE-2014-10383 | cve | The memphis-documents-library plugin before 3.0 for WordPress has Remote File Inclusion. |
| 9.8 | 2019-08-22 | CVE-2018-20979 | cve | The contact-form-7 plugin before 5.0.4 for WordPress has privilege escalation because of capability_type mishandling in register_post_type. |
| 9.8 | 2019-08-22 | CVE-2019-11031 | cve | Mirasys VMS before V7.6.1 and 8.x before V8.3.2 mishandles the auto-update feature of IDVRUpdateService2 in DVRServer.exe. An attacker can upload files with a Setup-Files action... |
| 9.8 | 2019-08-22 | CVE-2017-18571 | cve | The search-everything plugin before 8.1.7 for WordPress has SQL injection related to WordPress 4.7.x, a different vulnerability than CVE-2014-2316. |
| 9.8 | 2019-08-22 | CVE-2016-10921 | cve | The gallery-photo-gallery plugin before 1.0.1 for WordPress has SQL injection. |
| 9.8 | 2019-08-22 | CVE-2014-10384 | cve | The memphis-documents-library plugin before 3.0 for WordPress has Local File Inclusion. |
| 9.8 | 2019-08-22 | CVE-2019-15320 | cve | The option-tree plugin before 2.7.3 for WordPress has Object Injection because the + character is mishandled. |
| 9.8 | 2019-08-22 | CVE-2016-10916 | cve | The appointment-booking-calendar plugin before 1.1.24 for WordPress has SQL injection, a different vulnerability than CVE-2015-7319. |
| 9.8 | 2019-08-22 | CVE-2015-9334 | cve | The email-newsletter plugin through 20.15 for WordPress has SQL injection. |
| 9.8 | 2019-08-22 | CVE-2019-15321 | cve | The option-tree plugin before 2.7.3 for WordPress has Object Injection because serialized classes are mishandled. |
| 9.8 | 2019-08-22 | CVE-2018-20987 | cve | The newsletters-lite plugin before 4.6.8.6 for WordPress has PHP object injection. |
| 9.8 | 2019-08-22 | CVE-2018-20985 | cve | The wp-payeezy-pay plugin before 2.98 for WordPress has local file inclusion in pay.php, donate.php, donate-rec, and pay-rec. |
| 9.8 | 2019-08-21 | CVE-2019-6177 | cve | A vulnerability reported in Lenovo Solution Center version 03.12.003, which is no longer supported, could allow log files to be written to non-standard locations, potentially le... |
| Page(s) : 1 ... 1004 1005 1006 1007 1008 1009 1010 1011 1012 1013 [1014] 1015 1016 1017 1018 1019 1020 1021 1022 1023 1024 ... | Result(s) : 43591 |
