| Page(s) : 1 ... 1059 1060 1061 1062 1063 1064 1065 1066 1067 1068 [1069] 1070 1071 1072 1073 1074 1075 1076 1077 1078 1079 ... | Result(s) : 301104 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-02-01 | CVE-2024-13098 | cve | The WordPress Email Newsletter WordPress plugin through 1.1 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scr... |
| N/A | 2025-02-01 | CVE-2024-13099 | cve | The Widget4Call WordPress plugin through 1.0.7 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which ... |
| 6.5 | 2025-02-01 | CVE-2025-0365 | cve | The Jupiter X Core plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 4.8.7 via the inline SVG feature. This makes it possible for a... |
| 8.8 | 2025-02-01 | CVE-2025-0366 | cve | The Jupiter X Core plugin for WordPress is vulnerable to Local File Inclusion to Remote Code Execution in all versions up to, and including, 4.8.7 via the get_svg() function. Th... |
| 5.4 | 2025-02-01 | CVE-2024-11829 | cve | The The Plus Addons for Elementor – Elementor Addons, Page Templates, Widgets, Mega Menu, WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the T... |
| 6.5 | 2025-02-01 | CVE-2024-13341 | cve | The MultiLoca - WooCommerce Multi Locations Inventory Management plugin for WordPress is vulnerable to SQL Injection via the 'data-id' parameter in all versions up to,... |
| 6.3 | 2025-02-01 | CVE-2025-0939 | cve | The MagicForm plugin for WordPress is vulnerable to access and modification of data due to a missing capability check on the plugin's AJAX actions in all versions up to, an... |
| N/A | 2025-02-01 | CVE-2025-23091 | cve | An Improper Certificate Validation on UniFi OS devices, with Identity Enterprise configured, could allow a malicious actor to execute a man-in-the-middle (MitM) attack during ap... |
| 5.4 | 2025-02-01 | CVE-2024-12825 | cve | The Custom Related Posts plugin for WordPress is vulnerable to unauthorized access & modification of data due to a missing capability check on three AJAX actions in all versions... |
| 5.3 | 2025-02-01 | CVE-2024-13371 | cve | The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for WordPress is vulnerable to unauthorized arbitrary emails sending due to a missing c... |
| 5.3 | 2025-02-01 | CVE-2024-13372 | cve | The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, ... |
| 4.3 | 2025-02-01 | CVE-2024-13425 | cve | The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, ... |
| 5.3 | 2025-02-01 | CVE-2024-13428 | cve | The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, ... |
| 4.3 | 2025-02-01 | CVE-2024-13429 | cve | The WP Job Portal – A Complete Recruitment System for Company or Job Board website plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, ... |
| 5.4 | 2025-02-01 | CVE-2024-11780 | cve | The Site Search 360 plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'ss360-resultblock' shortcode in all versions up to, and in... |
| 8.8 | 2025-02-01 | CVE-2024-12171 | cve | The ELEX WordPress HelpDesk & Customer Ticketing System plugin for WordPress is vulnerable to privilege escalation due to a missing capability check on the 'eh_crm_agent_ad... |
| 5.3 | 2025-02-01 | CVE-2024-12184 | cve | The WordPress Contact Forms by Cimatti plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the accua_forms_download_submitted_... |
| 5.3 | 2025-02-01 | CVE-2024-12620 | cve | The AnimateGL Animations for WordPress – Elementor & Gutenberg Blocks Animations plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capabil... |
| 8.8 | 2025-02-01 | CVE-2024-13343 | cve | The WooCommerce Customers Manager plugin for WordPress is vulnerable to Privilege Escalation due to a missing capability check on the ajax_assign_new_roles() function in all ver... |
| 5.4 | 2025-02-01 | CVE-2024-13547 | cve | The aThemes Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Image Accordion widget in all versions up to, and including, 1.0.12 du... |
| Page(s) : 1 ... 1059 1060 1061 1062 1063 1064 1065 1066 1067 1068 [1069] 1070 1071 1072 1073 1074 1075 1076 1077 1078 1079 ... | Result(s) : 301104 |
