| Page(s) : 1 ... 1172 1173 1174 1175 1176 1177 1178 1179 1180 1181 [1182] 1183 1184 1185 1186 1187 1188 1189 1190 1191 1192 ... | Result(s) : 301664 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 5.3 | 2025-01-18 | CVE-2025-0318 | cve | The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugin for WordPress is vulnerable to Information Exposure in ... |
| 4 | 2025-01-18 | CVE-2025-0554 | cve | The Podlove Podcast Publisher plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Feed Name value in version |
| 6.1 | 2025-01-18 | CVE-2024-12385 | cve | The WP Abstracts plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.7.2. This is due to missing nonce validation on the wpa... |
| 6.4 | 2025-01-18 | CVE-2024-12696 | cve | The Picture Gallery – Frontend Image Uploads, AJAX Photo List plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's videowhisper_picture_upload... |
| 4.3 | 2025-01-18 | CVE-2024-13317 | cve | The ShipWorks Connector for Woocommerce plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 5.2.5. This is due to missing or i... |
| 6.4 | 2025-01-18 | CVE-2024-13385 | cve | The JSM Screenshot Machine Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'ssm' shortcode in all versions up to, and... |
| 6.4 | 2025-01-18 | CVE-2024-13391 | cve | The MicroPayments – Fans Paysite: Paid Creator Subscriptions, Digital Assets, Tokens Wallet plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin'... |
| 6.4 | 2025-01-18 | CVE-2024-13393 | cve | The Video Share VOD – Turnkey Video Site Builder Script plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'videowhisper_videos' s... |
| 6.1 | 2025-01-18 | CVE-2024-13432 | cve | The Webcamconsult plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.5.0. This is due to missing or incorrect nonce validat... |
| 6.4 | 2025-01-18 | CVE-2024-13433 | cve | The Utilities for MTG plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'mtglink' shortcode in all versions up to, and including,... |
| 4 | 2025-01-18 | CVE-2024-13517 | cve | The Easy Digital Downloads – eCommerce Payments and Subscriptions made easy plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Title value in all versions... |
| 4.4 | 2025-01-18 | CVE-2024-13519 | cve | The MarketKing — Ultimate WooCommerce Multivendor Marketplace Solution plugin for WordPress is vulnerable to Stored Cross-Site Scripting via plugin's settings in all versio... |
| 6.4 | 2025-01-18 | CVE-2025-0369 | cve | The JetEngine plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘list_tag’ parameter in all versions up to, and including, 3.6.2 due to insufficient inpu... |
| 4.3 | 2025-01-18 | CVE-2025-0515 | cve | The Buzz Club – Night Club, DJ and Music Festival Event WordPress Theme theme for WordPress is vulnerable to unauthorized modification of data that can lead to a denial of servi... |
| 6.4 | 2025-01-18 | CVE-2024-13392 | cve | The Rate Star Review Vote – AJAX Reviews, Votes, Star Ratings plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'videowhisper_reviews&... |
| 7.5 | 2025-01-18 | CVE-2024-13184 | cve | The The Ultimate WordPress Toolkit – WP Extended plugin for WordPress is vulnerable to time-based SQL Injection via the Login Attempts module in all versions up to, and includin... |
| 9.8 | 2025-01-18 | CVE-2024-13375 | cve | The Adifier System plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 3.1.7. This is due to the plugin not pro... |
| 4.3 | 2025-01-18 | CVE-2025-0557 | cve | A vulnerability classified as problematic has been found in Hyland Alfresco Community Edition and Alfresco Enterprise Edition up to 6.2.2. This affects an unknown part of the fi... |
| 8.1 | 2025-01-18 | CVE-2025-23209 | cve | Craft is a flexible, user-friendly CMS for creating custom digital experiences on the web and beyond. This is an remote code execution (RCE) vulnerability that affects Craft 4 a... |
| 5.3 | 2025-01-18 | CVE-2024-12071 | cve | The Evergreen Content Poster – Auto Post and Schedule Your Best Content to Social Media plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capabili... |
| Page(s) : 1 ... 1172 1173 1174 1175 1176 1177 1178 1179 1180 1181 [1182] 1183 1184 1185 1186 1187 1188 1189 1190 1191 1192 ... | Result(s) : 301664 |
