| Page(s) : 1 ... 1077 1078 1079 1080 1081 1082 1083 1084 1085 1086 [1087] 1088 1089 1090 1091 1092 1093 1094 1095 1096 1097 ... | Result(s) : 301191 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 7.2 | 2025-01-30 | CVE-2024-11600 | cve | The Borderless – Widgets, Elements, Templates and Toolkit for Elementor & Gutenberg plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and includ... |
| 4.3 | 2025-01-30 | CVE-2024-12102 | cve | The Typer Core plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.9.6 via the 'elementor-template' shortcode due to ins... |
| 8.8 | 2025-01-30 | CVE-2024-12129 | cve | The Royal Core plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the 'royal... |
| 6.1 | 2025-01-30 | CVE-2024-12177 | cve | The Ai Image Alt Text Generator for WP plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'page' parameter in all versions up to, and includi... |
| 7.5 | 2025-01-30 | CVE-2024-12269 | cve | The Safe Ai Malware Protection for WP plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the export_db() function in all vers... |
| 6.1 | 2025-01-30 | CVE-2024-12299 | cve | The System Dashboard plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the Filename parameter in all versions up to, and including, 2.8.15 due to insuffic... |
| 6.1 | 2025-01-30 | CVE-2024-12320 | cve | The Team Rosters plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘tab’ parameter in all versions up to, and including, 4.7 due to insufficient input... |
| 5.4 | 2025-01-30 | CVE-2024-12444 | cve | The WP Dispensary plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'wpd_menu' shortcode in all versions up to, and including, 4.... |
| 5.4 | 2025-01-30 | CVE-2024-12451 | cve | The HTML5 chat plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'HTML5CHAT' shortcode in all versions up to, and including, 1.04... |
| 6.5 | 2025-01-30 | CVE-2024-12821 | cve | The Media Manager for UserPro plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on ... |
| 9.8 | 2025-01-30 | CVE-2024-12822 | cve | The Media Manager for UserPro plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on ... |
| 6.5 | 2025-01-30 | CVE-2024-12861 | cve | The W2S – Migrate WooCommerce to Shopify plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 1.2.1 via the 'viw2s_view_log'... |
| 5.4 | 2025-01-30 | CVE-2024-13349 | cve | The Stockdio Historical Chart plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'stockdio-historical-chart' shortcode in all vers... |
| 5.4 | 2025-01-30 | CVE-2024-13400 | cve | The Kona Gallery Block plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the "Kona: Instagram for Gutenberg" Block, specifically in the "align" attribute, in... |
| 5.4 | 2025-01-30 | CVE-2024-13460 | cve | The WE – Testimonial Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Testimonial Author Names in all versions up to, and including, 1.5 due to insuf... |
| 5.4 | 2025-01-30 | CVE-2024-13512 | cve | The Wonder FontAwesome plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 0.8. This is due to missing or incorrect nonce vali... |
| 5.4 | 2025-01-30 | CVE-2024-13549 | cve | The All Bootstrap Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the "Accordion" widget in all versions up to, and including, 1.3.26 due to insuffi... |
| 6.5 | 2025-01-30 | CVE-2024-13596 | cve | The WordPress Survey & Poll – Quiz, Survey and Poll Plugin for WordPress plugin for WordPress is vulnerable to SQL Injection via the 'id' attribute of the 'survey... |
| 8.1 | 2025-01-30 | CVE-2024-13646 | cve | The Single-user-chat plugin for WordPress is vulnerable to unauthorized modification of data that can lead to a denial of service due to insufficient validation on the 'sin... |
| 4.3 | 2025-01-30 | CVE-2024-13652 | cve | The ECPay Ecommerce for WooCommerce plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'clear_ecpay_debug_log' AJ... |
| Page(s) : 1 ... 1077 1078 1079 1080 1081 1082 1083 1084 1085 1086 [1087] 1088 1089 1090 1091 1092 1093 1094 1095 1096 1097 ... | Result(s) : 301191 |
