| Page(s) : 1 ... 1325 1326 1327 1328 1329 1330 1331 1332 1333 1334 [1335] 1336 1337 1338 1339 1340 1341 1342 1343 1344 1345 ... | Result(s) : 328055 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 4.9 | 2025-01-07 | CVE-2024-11437 | cve | The Timeline Designer plugin for WordPress is vulnerable to SQL Injection via the 's' parameter in all versions up to, and including, 1.4 due to insufficient escaping ... |
| 6.4 | 2025-01-07 | CVE-2024-11777 | cve | The Sell Media plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'sell_media_search_form_gutenberg' shortcode in all versions up ... |
| 6.4 | 2025-01-07 | CVE-2024-11899 | cve | The Slider Pro Lite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'sliderpro' shortcode in all versions up to, and including,... |
| 6.4 | 2025-01-07 | CVE-2024-11934 | cve | The Formaloo Form Maker & Customer Analytics for WordPress & WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘address’ parameter in all ver... |
| N/A | 2025-01-07 | CVE-2024-12022 | cve | Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-52485. Reason: This candidate is a reservation duplicate of CVE-2024-52485. Notes: All CVE u... |
| 6.1 | 2025-01-07 | CVE-2024-12098 | cve | The ARS Affiliate Page Plugin plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'utm_keyword' parameter in all versions up to, and including... |
| 9.8 | 2025-01-07 | CVE-2024-12402 | cve | The Themes Coder – Create Android & iOS Apps For Your Woocommerce Site plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and... |
| 7.5 | 2025-01-07 | CVE-2024-12416 | cve | The Live Sales Notification for Woocommerce – Woomotiv plugin for WordPress is vulnerable to SQL Injection via the 'woomotiv_seen_products_.*' cookie in all versions u... |
| 6.5 | 2025-01-07 | CVE-2024-12419 | cve | The The Design for Contact Form 7 Style WordPress Plugin – CF7 WOW Styler plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and includin... |
| 6.4 | 2025-01-07 | CVE-2024-12528 | cve | The WordPress Survey & Poll – Quiz, Survey and Poll Plugin for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'wpsurveypo... |
| 4.3 | 2025-01-07 | CVE-2024-12538 | cve | The Duplicate Post, Page and Any Custom Post plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.5.3 via the 'dpp_d... |
| N/A | 2025-01-07 | CVE-2024-12540 | cve | Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-54288. Reason: This candidate is a reservation duplicate of CVE-2024-54288. Notes: All CVE u... |
| 5.4 | 2025-01-07 | CVE-2024-12541 | cve | The Chative Live chat and Chatbot plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.1. This is due to missing or incorrect... |
| 6.1 | 2025-01-07 | CVE-2024-12557 | cve | The Transporters.io plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.0.84. This is due to missing nonce validation on a f... |
| 5.3 | 2025-01-07 | CVE-2024-12559 | cve | The ClickDesigns plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'clickdesigns_add_api' and the '... |
| 6.4 | 2025-01-07 | CVE-2024-12590 | cve | The WP Youtube Gallery plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'id' parameter in all versions up to, and including, 1.9 due to insuff... |
| 6.4 | 2025-01-07 | CVE-2024-12592 | cve | The Sellsy plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'testSellsy' shortcode in all versions up to, and including, 2.3.3 d... |
| 3.1 | 2025-01-07 | CVE-2024-10527 | cve | The Spacer plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the motech_spacer_callback() function in all versions up to, an... |
| 5.3 | 2025-01-07 | CVE-2024-11290 | cve | The Member Access plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.1.6 via the WordPress core search feature. This ma... |
| 6.4 | 2025-01-07 | CVE-2024-11337 | cve | The Horoscope And Tarot plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'divine_horoscope' shortcode in all versions up to, and... |
| Page(s) : 1 ... 1325 1326 1327 1328 1329 1330 1331 1332 1333 1334 [1335] 1336 1337 1338 1339 1340 1341 1342 1343 1344 1345 ... | Result(s) : 328055 |
