| Page(s) : 1 ... 1275 1276 1277 1278 1279 1280 1281 1282 1283 1284 [1285] 1286 1287 1288 1289 1290 1291 1292 1293 1294 1295 ... | Result(s) : 327848 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 4.3 | 2025-01-11 | CVE-2024-12116 | cve | The Unlimited Theme Addon For Elementor and WooCommerce plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.2.1 via the 'uta-... |
| 6.1 | 2025-01-11 | CVE-2024-12407 | cve | The Push Notification for Post and BuddyPress plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'pushnotificationid' parameter in all versio... |
| 6.1 | 2025-01-11 | CVE-2024-12412 | cve | The Rental and Booking Manager for Bike, Car, Dress, Resort with WooCommerce Integration – WpRently | WordPress plugin plugin for WordPress is vulnerable to Stored Cross-Site Sc... |
| 6.4 | 2025-01-11 | CVE-2024-12519 | cve | The TCBD Auto Refresher plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'tcbd_auto_refresh' shortcode in all versions up to, an... |
| 6.4 | 2025-01-11 | CVE-2024-12520 | cve | The Dominion – Domain Checker for WPBakery plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'dominion_shortcodes_domain_search_6'... |
| 6.4 | 2025-01-11 | CVE-2024-12527 | cve | The Perfect Portal Widgets plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'perfect_portal_intake_form' shortcode in all versio... |
| 9.8 | 2025-01-11 | CVE-2024-12877 | cve | The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 3.19.2 via deserialization... |
| 9.8 | 2025-01-11 | CVE-2024-42175 | cve | HCL MyXalytics is affected by a weak input validation vulnerability. The application accepts special characters and there is no length validation. This can lead to security vul... |
| N/A | 2025-01-11 | CVE-2025-0390 | cve | A vulnerability classified as critical was found in Guangzhou Huayi Intelligent Technology Jeewms up to 20241229. This vulnerability affects unknown code of the file /wmOmNotice... |
| N/A | 2025-01-11 | CVE-2025-0391 | cve | A vulnerability, which was classified as critical, has been found in Guangzhou Huayi Intelligent Technology Jeewms up to 20241229. This issue affects the function saveOrUpdate o... |
| 6.1 | 2025-01-11 | CVE-2024-11327 | cve | The ClickWhale – Link Manager, Link Shortener and Click Tracker for Affiliate Links & Link Pages plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the ... |
| 5.4 | 2025-01-11 | CVE-2024-12204 | cve | The Coupon X: Discount Pop Up, Promo Code Pop Ups, Announcement Pop Up, WooCommerce Popups plugin for WordPress is vulnerable to unauthorized access due to missing capability ch... |
| 7.5 | 2025-01-11 | CVE-2024-12404 | cve | The CF Internal Link Shortcode plugin for WordPress is vulnerable to SQL Injection via the 'post_title' parameter in all versions up to, and including, 1.1.0 due to in... |
| 5.3 | 2025-01-11 | CVE-2024-12472 | cve | The Post Duplicator plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 2.36 via the mtphr_duplicate_post() due to insufficient rest... |
| 6.4 | 2025-01-11 | CVE-2024-12505 | cve | The Trackserver plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'tsmap' shortcode in all versions up to, and including, 5.0.2 d... |
| 7.5 | 2025-01-11 | CVE-2024-12627 | cve | The Coupon X: Discount Pop Up, Promo Code Pop Ups, Announcement Pop Up, WooCommerce Popups plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and ... |
| 9.4 | 2025-01-11 | CVE-2024-42168 | cve | HCL MyXalytics is affected by out-of-band resource load (HTTP) vulnerability. An attacker can deploy a web server that returns malicious content, and then induce the applicatio... |
| 8.1 | 2025-01-11 | CVE-2024-42169 | cve | HCL MyXalytics is affected by insecure direct object references. It occurs due to missing access control checks, which fail to verify whether a user should be allowed to access... |
| N/A | 2025-01-11 | CVE-2025-0103 | cve | An SQL injection vulnerability in Palo Alto Networks Expedition enables an authenticated attacker to reveal Expedition database contents, such as password hashes, usernames, dev... |
| N/A | 2025-01-11 | CVE-2025-0104 | cve | A reflected cross-site scripting (XSS) vulnerability in Palo Alto Networks Expedition enables attackers to execute malicious JavaScript code in the context of an authenticated E... |
| Page(s) : 1 ... 1275 1276 1277 1278 1279 1280 1281 1282 1283 1284 [1285] 1286 1287 1288 1289 1290 1291 1292 1293 1294 1295 ... | Result(s) : 327848 |
