| Page(s) : 1 ... 1106 1107 1108 1109 1110 1111 1112 1113 1114 1115 [1116] 1117 1118 1119 1120 1121 1122 1123 1124 1125 1126 ... | Result(s) : 301260 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 8.8 | 2025-01-25 | CVE-2024-39750 | cve | IBM Analytics Content Hub 2.0 is vulnerable to a buffer overflow due to improper return length checking. A remote authenticated attacker could overflow a buffer and execute arbi... |
| 6.4 | 2025-01-25 | CVE-2024-13721 | cve | The Plethora Plugins Tabs + Accordions plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the anchor parameter in all versions up to, and including, 1.1.8 due... |
| 8.8 | 2025-01-25 | CVE-2025-0682 | cve | The ThemeREX Addons plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 2.33.0 via the 'trx_sc_reviews' shortcode 'ty... |
| 6.4 | 2025-01-25 | CVE-2024-10552 | cve | The Flexmls® IDX Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘api_key’ and 'api_secret' parameters in all versions up to, and incl... |
| 7.2 | 2025-01-25 | CVE-2024-12600 | cve | The Custom Product Tabs Lite for WooCommerce plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.9.0 via deserialization of untrus... |
| 6.4 | 2025-01-25 | CVE-2024-11825 | cve | The Broadstreet plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘zone’ parameter in all versions up to, and including, 1.50.3 due to insufficient input... |
| 6.1 | 2025-01-25 | CVE-2024-12076 | cve | The Target Video Easy Publish plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.8.3. This is due to missing or incorrect n... |
| 4.3 | 2025-01-25 | CVE-2024-12113 | cve | The Youzify – BuddyPress Community, User Profile, Social Network & Membership Plugin for WordPress plugin for WordPress is vulnerable to unauthorized loss of data due to a missi... |
| 6.4 | 2025-01-25 | CVE-2024-12512 | cve | The Ask Me Anything (Anonymously) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'askmeanythingpeople' shortcode in all versio... |
| 6.4 | 2025-01-25 | CVE-2024-12529 | cve | The brodos.net Onlineshop Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'BrodosCategory' shortcode in all versions up ... |
| 6.4 | 2025-01-25 | CVE-2024-12816 | cve | The NOTICE BOARD BY TOWKIR plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'notice-board' shortcode in all versions up to, and ... |
| 6.4 | 2025-01-25 | CVE-2024-12817 | cve | The Etsy Importer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'product_link' shortcode in all versions up to, and including... |
| 4.3 | 2025-01-25 | CVE-2024-12826 | cve | The GoHero Store Customizer for WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the wooh_action_settings... |
| 6.5 | 2025-01-25 | CVE-2024-12885 | cve | The Connections Business Directory plugin for WordPress is vulnerable to arbitrary directory deletion due to insufficient file path validation when deleting a connections image ... |
| 4.3 | 2025-01-25 | CVE-2024-13368 | cve | The Youzify – BuddyPress Community, User Profile, Social Network & Membership Plugin for WordPress plugin for WordPress is vulnerable to unauthorized access due to a missing cap... |
| 6.5 | 2025-01-25 | CVE-2024-13370 | cve | The Youzify – BuddyPress Community, User Profile, Social Network & Membership Plugin for WordPress plugin for WordPress is vulnerable to unauthorized access due to a missing cap... |
| 5.4 | 2025-01-25 | CVE-2024-13441 | cve | The Bilingual Linker plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the bl_otherlang_link_1 parameter in all versions up to, and including, 2.4 due to ins... |
| 5.4 | 2025-01-25 | CVE-2024-13458 | cve | The WordPress SEO Friendly Accordion FAQ with AI assisted content generation plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'notice... |
| 6.1 | 2025-01-25 | CVE-2024-13467 | cve | The WP Contact Form7 Email Spam Blocker plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'post' parameter in all versions up to, and includ... |
| 5.4 | 2025-01-25 | CVE-2024-13548 | cve | The Power Ups for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'magic-button' shortcode in all versions up to, and... |
| Page(s) : 1 ... 1106 1107 1108 1109 1110 1111 1112 1113 1114 1115 [1116] 1117 1118 1119 1120 1121 1122 1123 1124 1125 1126 ... | Result(s) : 301260 |
