| Page(s) : 1 ... 114 115 116 117 118 119 120 121 122 123 [124] 125 126 127 128 129 130 131 132 133 134 ... | Result(s) : 114980 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 4.8 | 2025-03-01 | CVE-2024-13901 | cve | The Counter Box: Add Engaging Countdowns, Timers & Counters to Your WordPress Site plugin for WordPress is vulnerable to DOM-Based Stored Cross-Site Scripting via the ‘content’ ... |
| 6.4 | 2025-03-01 | CVE-2025-1459 | cve | The Page Builder by SiteOrigin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Embedded Video(PB) widget in all versions up to, and including, 2.31.4 d... |
| 5.3 | 2025-03-01 | CVE-2025-1502 | cve | The IP2Location Redirection plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'download_ip2location_redirection_bac... |
| 6.5 | 2025-03-01 | CVE-2025-1730 | cve | The Simple Download Counter plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 2.0 via the 'simple_download_counter_download_ha... |
| 6.5 | 2025-03-01 | CVE-2024-13806 | cve | The The Authors List plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 2.0.6. This is due to the software allowing users ... |
| 6.5 | 2025-03-01 | CVE-2024-13697 | cve | The Better Messages – Live Chat for WordPress, BuddyPress, PeepSo, Ultimate Member, BuddyBoss plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions u... |
| 6.4 | 2025-03-01 | CVE-2025-1291 | cve | The Gutenberg Blocks with AI by Kadence WP – Page Builder Features plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘icon’ parameter in all versions up ... |
| 4.3 | 2025-03-01 | CVE-2024-13546 | cve | The GenerateBlocks plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.9.1 via the 'get_image_description' fun... |
| 4.3 | 2025-03-01 | CVE-2024-13358 | cve | The BuddyPress WooCommerce My Account Integration. Create WooCommerce Member Pages plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on... |
| 4.3 | 2025-03-01 | CVE-2025-1780 | cve | The BuddyPress WooCommerce My Account Integration. Create WooCommerce Member Pages plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on... |
| 4.3 | 2025-03-01 | CVE-2024-13518 | cve | The Simple:Press Forum plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 6.10.11. This is due to missing or incorrect nonce ... |
| 6.4 | 2025-03-01 | CVE-2024-13559 | cve | The TemplatesNext ToolKit plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'tx_woo_wishlist_table' shortcode in all versions up ... |
| 6.5 | 2025-03-01 | CVE-2024-13746 | cve | The Booking Calendar and Notification plugin for WordPress is vulnerable to unauthorized access, modification, and loss of data due to missing capability checks on the wpcb_all_... |
| 6.5 | 2025-03-01 | CVE-2024-13750 | cve | The Multilevel Referral Affiliate Plugin for WooCommerce plugin for WordPress is vulnerable to SQL Injection via the 'orderby' parameter in all versions up to, and inc... |
| 6.1 | 2025-03-01 | CVE-2024-9212 | cve | The SKU Generator for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in... |
| 6.1 | 2025-03-01 | CVE-2024-9217 | cve | The Currency Switcher for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the UR... |
| 6.4 | 2025-03-01 | CVE-2025-0820 | cve | The Clicface Trombi plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘nom’ parameter in all versions up to, and including, 2.08 due to insufficient inpu... |
| 6.5 | 2025-02-28 | CVE-2025-27410 | cve | PwnDoc is a penetration test reporting application. Prior to version 1.2.0, the backup restore functionality is vulnerable to path traversal in the TAR entry's name, allowi... |
| 4.9 | 2025-02-28 | CVE-2025-27413 | cve | PwnDoc is a penetration test reporting application. Prior to version 1.2.0, the backup restore functionality allows an administrator to import raw data into the database, includ... |
| 5.9 | 2025-02-28 | CVE-2025-26466 | cve | A flaw was found in the OpenSSH package. For each ping packet the SSH server receives, a pong packet is allocated in a memory buffer and stored in a queue of packages. It is onl... |
| Page(s) : 1 ... 114 115 116 117 118 119 120 121 122 123 [124] 125 126 127 128 129 130 131 132 133 134 ... | Result(s) : 114980 |
