| Page(s) : 1 ... 1299 1300 1301 1302 1303 1304 1305 1306 1307 1308 [1309] 1310 1311 1312 1313 1314 1315 1316 1317 1318 1319 ... | Result(s) : 327892 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 9.8 | 2025-01-08 | CVE-2024-11613 | cve | The WordPress File Upload plugin for WordPress is vulnerable to Remote Code Execution, Arbitrary File Read, and Arbitrary File Deletion in all versions up to, and including, 4.2... |
| 6.5 | 2025-01-08 | CVE-2024-12584 | cve | The 140+ Widgets | Xpro Addons For Elementor – FREE plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.4.6.2 via the &#... |
| 5.4 | 2025-01-08 | CVE-2024-12851 | cve | The Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid, Carousel and Remote Arrows) plugin for WordPress is vulnerable to Stored Cross-Site Scripting v... |
| 5.4 | 2025-01-08 | CVE-2024-12852 | cve | The Happy Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'ha_cmc_text' parameter of the Happy Mouse Cursor in all versi... |
| N/A | 2025-01-08 | CVE-2024-8002 | cve | A vulnerability has been found in VIWIS LMS 9.11 and classified as problematic. Affected by this vulnerability is an unknown functionality of the component File Upload. The mani... |
| N/A | 2025-01-08 | CVE-2024-9673 | cve | Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2025-22333. Reason: This candidate is a reservation duplicate of CVE-2025-22333. Notes: All CVE u... |
| N/A | 2025-01-08 | CVE-2025-22215 | cve | VMware Aria Automation contains a server-side request forgery (SSRF) vulnerability. A malicious actor with "Organization Member" access to Aria Automation may exploit this vulne... |
| 9.8 | 2025-01-08 | CVE-2024-11635 | cve | The WordPress File Upload plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 4.24.12 via the 'wfu_ABSPATH' cookie parame... |
| 4.8 | 2025-01-08 | CVE-2024-12045 | cve | The Essential Blocks – Page Builder Gutenberg Blocks, Patterns & Templates plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the maker title value of the Goo... |
| N/A | 2025-01-08 | CVE-2024-13173 | cve | The health module has insufficient restrictions on loading URLs, which may lead to some information leakage. |
| 9.8 | 2025-01-08 | CVE-2024-11350 | cve | The AdForest theme for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 5.1.6. This is due to the plugin not properly v... |
| 7.5 | 2025-01-08 | CVE-2024-11939 | cve | The Cost Calculator Builder PRO plugin for WordPress is vulnerable to blind time-based SQL Injection via the ‘data’ parameter in all versions up to, and including, 3.2.15 due to... |
| 6.4 | 2025-01-08 | CVE-2024-12328 | cve | The MAS Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.1.7 due to insufficient input sa... |
| 4.3 | 2025-01-08 | CVE-2024-12855 | cve | The AdForest theme for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on several AJAX actions like 'sb_remove_ad' in al... |
| N/A | 2025-01-08 | CVE-2024-13185 | cve | The MinigameCenter module has insufficient restrictions on loading URLs, which may lead to some information leakage. |
| N/A | 2025-01-08 | CVE-2024-13186 | cve | The MinigameCenter module has insufficient restrictions on loading URLs, which may lead to some information leakage. |
| N/A | 2025-01-08 | CVE-2024-45033 | cve | Insufficient Session Expiration vulnerability in Apache Airflow Fab Provider. This issue affects Apache Airflow Fab Provider: before 1.5.2. When user password has been changed... |
| 9.8 | 2025-01-08 | CVE-2024-54676 | cve | Vendor: The Apache Software Foundation Versions Affected: Apache OpenMeetings from 2.1.0 before 8.0.0 Description: Default clustering instructions at https://openmeetings.apa... |
| 7.5 | 2025-01-08 | CVE-2024-9939 | cve | The WordPress File Upload plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 4.24.13 via wfu_file_downloader.php. This makes it possible ... |
| 5.3 | 2025-01-08 | CVE-2024-12712 | cve | The Shopping Cart & eCommerce Store plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the webhook function in all vers... |
| Page(s) : 1 ... 1299 1300 1301 1302 1303 1304 1305 1306 1307 1308 [1309] 1310 1311 1312 1313 1314 1315 1316 1317 1318 1319 ... | Result(s) : 327892 |
