| Page(s) : 1 ... 1261 1262 1263 1264 1265 1266 1267 1268 1269 1270 [1271] 1272 1273 1274 1275 1276 1277 1278 1279 1280 1281 ... | Result(s) : 301843 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 6.4 | 2025-01-09 | CVE-2024-12493 | cve | The Files Download Delay plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'fddwrap' shortcode in all versions up to, and includi... |
| 6.4 | 2025-01-09 | CVE-2024-12496 | cve | The Linear plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'linear_block_buy_commissions' shortcode in all versions up to, and ... |
| 6.4 | 2025-01-09 | CVE-2024-12514 | cve | The 3DVieweronline plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's '3Dvo-model' shortcode in all versions up to, and including,... |
| 6.4 | 2025-01-09 | CVE-2024-12515 | cve | The Muslim Prayer Time-Salah/Iqamah plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Masjid ID parameter in all versions up to, and including, 1.8.8 due... |
| 8.6 | 2025-01-09 | CVE-2024-12542 | cve | The linkID plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check when including the 'phpinfo' function in all versions up... |
| N/A | 2025-01-09 | CVE-2024-12605 | cve | The AI Scribe – SEO AI Writer, Content Generator, Humanizer, Blog Writer, SEO Optimizer, DALLE-3, AI WordPress Plugin ChatGPT (GPT-4o 128K) plugin for WordPress is vulnerable to... |
| 4.3 | 2025-01-09 | CVE-2024-12616 | cve | The Bitly's WordPress Plugin plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on several AJAX actions in all versio... |
| 4.3 | 2025-01-09 | CVE-2024-12618 | cve | The Newsletter2Go plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'resetStyles' AJAX action in all ver... |
| 6.4 | 2025-01-09 | CVE-2024-12621 | cve | The Yumpu E-Paper publishing plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'YUMPU' shortcode in all versions up to, and inclu... |
| 6.4 | 2025-01-09 | CVE-2024-12819 | cve | The Searchie plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'sio_embed_media' shortcode in all versions up to, and including, ... |
| 8.8 | 2025-01-09 | CVE-2024-12848 | cve | The SKT Page Builder plugin for WordPress is vulnerable to arbitrary file uploads due to a missing capability check on the 'addLibraryByArchive' function in all versio... |
| 4.3 | 2025-01-09 | CVE-2024-5769 | cve | The MIMO Woocommerce Order Tracking plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on several functions in all version... |
| 5.4 | 2025-01-09 | CVE-2024-6155 | cve | The Greenshift – animation and page builder blocks plugin for WordPress is vulnerable to Authenticated (Subscriber+) Server-Side Request Forgery and Stored Cross Site Scripting ... |
| 9.8 | 2025-01-09 | CVE-2025-0349 | cve | A vulnerability classified as critical has been found in Tenda AC6 15.03.05.16. Affected is the function GetParentControlInfo of the file /goform/GetParentControlInfo. The manip... |
| N/A | 2025-01-09 | CVE-2022-22491 | cve | IBM App Connect Enterprise Certified Container 7.1, 7.2, 8.0, 8.1, 8.2, 9.0, 9.1, 9.2, 10.0, 10.1, 11.0, 11.1, 11.2, 11.3, 11.4, 11.5, 11.6, 12.0, 12.1, 12.2, 12.3, and 12.4 ope... |
| 5.4 | 2025-01-09 | CVE-2024-43176 | cve | IBM OpenPages 9.0 could allow an authenticated user to obtain sensitive information such as configurations that should only be available to privileged users. |
| N/A | 2025-01-09 | CVE-2024-10815 | cve | The PostLists WordPress plugin through 2.0.2 does not escape the $_SERVER['REQUEST_URI'] parameter before outputting it back in an attribute, which could lead to Refle... |
| N/A | 2025-01-09 | CVE-2024-12714 | cve | The Backlink Monitoring Manager WordPress plugin through 0.1.3 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site ... |
| N/A | 2025-01-09 | CVE-2024-12715 | cve | The Asgard Security Scanner WordPress plugin through 0.7 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Script... |
| N/A | 2025-01-09 | CVE-2024-12717 | cve | The Aklamator INfeed WordPress plugin through 2.0.0 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cro... |
| Page(s) : 1 ... 1261 1262 1263 1264 1265 1266 1267 1268 1269 1270 [1271] 1272 1273 1274 1275 1276 1277 1278 1279 1280 1281 ... | Result(s) : 301843 |
