| Page(s) : 1 ... 1136 1137 1138 1139 1140 1141 1142 1143 1144 1145 [1146] 1147 1148 1149 1150 1151 1152 1153 1154 1155 1156 ... | Result(s) : 327308 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 6.4 | 2025-01-25 | CVE-2024-12817 | cve | The Etsy Importer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'product_link' shortcode in all versions up to, and including... |
| 4.3 | 2025-01-25 | CVE-2024-12826 | cve | The GoHero Store Customizer for WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the wooh_action_settings... |
| 6.5 | 2025-01-25 | CVE-2024-12885 | cve | The Connections Business Directory plugin for WordPress is vulnerable to arbitrary directory deletion due to insufficient file path validation when deleting a connections image ... |
| 4.3 | 2025-01-25 | CVE-2024-13368 | cve | The Youzify – BuddyPress Community, User Profile, Social Network & Membership Plugin for WordPress plugin for WordPress is vulnerable to unauthorized access due to a missing cap... |
| 6.5 | 2025-01-25 | CVE-2024-13370 | cve | The Youzify – BuddyPress Community, User Profile, Social Network & Membership Plugin for WordPress plugin for WordPress is vulnerable to unauthorized access due to a missing cap... |
| 5.4 | 2025-01-25 | CVE-2024-13441 | cve | The Bilingual Linker plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the bl_otherlang_link_1 parameter in all versions up to, and including, 2.4 due to ins... |
| 5.4 | 2025-01-25 | CVE-2024-13458 | cve | The WordPress SEO Friendly Accordion FAQ with AI assisted content generation plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'notice... |
| 6.1 | 2025-01-25 | CVE-2024-13467 | cve | The WP Contact Form7 Email Spam Blocker plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'post' parameter in all versions up to, and includ... |
| 5.4 | 2025-01-25 | CVE-2024-13548 | cve | The Power Ups for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'magic-button' shortcode in all versions up to, and... |
| 6.5 | 2025-01-25 | CVE-2024-13550 | cve | The ABC Notation plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 6.1.3 via the 'file' attribute of the 'abcjs' sho... |
| 5.4 | 2025-01-25 | CVE-2024-13551 | cve | The ABC Notation plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'abcjs' shortcode in all versions up to, and including, 6.1.3 ... |
| 5.4 | 2025-01-25 | CVE-2024-13586 | cve | The Masy Gallery plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'justified-gallery' shortcode in all versions up to, and inclu... |
| 5.4 | 2025-01-25 | CVE-2024-13599 | cve | The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 4.2.7.5 due to insufficient input s... |
| 4.3 | 2025-01-25 | CVE-2024-13449 | cve | The Boom Fest plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'bf_admin_action' function in all versio... |
| 6.5 | 2025-01-25 | CVE-2024-13450 | cve | The Contact Form by Bit Form: Multi Step Form, Calculation Contact Form, Payment Contact Form & Custom Contact Form builder plugin for WordPress is vulnerable to Server-Side Req... |
| 5.4 | 2025-01-25 | CVE-2025-0350 | cve | The Divi Carousel Maker – Image, Logo, Testimonial, Post Carousel & More plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Image Carousel a... |
| N/A | 2025-01-25 | CVE-2025-24360 | cve | Nuxt is an open-source web development framework for Vue.js. Starting in version 3.8.1 and prior to version 3.15.3, Nuxt allows any websites to send any requests to the developm... |
| N/A | 2025-01-25 | CVE-2025-24361 | cve | Nuxt is an open-source web development framework for Vue.js. Source code may be stolen during dev when using version 3.0.0 through 3.15.12 of the webpack builder or version 3.12... |
| 9.8 | 2025-01-25 | CVE-2025-0357 | cve | The WPBookit plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in the 'WPB_Profile_controller::handle_image_upload'... |
| 4.3 | 2025-01-25 | CVE-2024-13709 | cve | The Linear plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.8.1. This is due to missing or incorrect nonce validation on ... |
| Page(s) : 1 ... 1136 1137 1138 1139 1140 1141 1142 1143 1144 1145 [1146] 1147 1148 1149 1150 1151 1152 1153 1154 1155 1156 ... | Result(s) : 327308 |
