| Page(s) : 1 ... 1327 1328 1329 1330 1331 1332 1333 1334 1335 1336 [1337] 1338 1339 1340 1341 1342 1343 1344 1345 1346 1347 ... | Result(s) : 328055 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 5.3 | 2025-01-07 | CVE-2024-12159 | cve | The Optimize Your Campaigns – Google Shopping – Google Ads – Google Adwords plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 3.1 ... |
| 5.4 | 2025-01-07 | CVE-2024-12170 | cve | The ViewMedica 9 plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.4.15. This is due to missing or incorrect nonce validat... |
| 5.3 | 2025-01-07 | CVE-2024-12176 | cve | The WordLift – AI powered SEO – Schema plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the 'wl_config_plugin' AJAX actio... |
| 4.4 | 2025-01-07 | CVE-2024-12207 | cve | The Toggles Shortcode and Widget plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘content’ parameter in all versions up to, and including, 1.14 due to ... |
| N/A | 2025-01-07 | CVE-2024-12208 | cve | Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-43269. Reason: This candidate is a reservation duplicate of CVE-2024-43269. Notes: All CVE u... |
| 6.1 | 2025-01-07 | CVE-2024-12214 | cve | The WooCommerce HSS Extension for Streaming Video plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘videolink’ parameter in all versions up to, and i... |
| 9.8 | 2025-01-07 | CVE-2024-12252 | cve | The SEO LAT Auto Post plugin for WordPress is vulnerable to file overwrite due to a missing capability check on the remote_update AJAX action in all versions up to, and includin... |
| 6.1 | 2025-01-07 | CVE-2024-12256 | cve | The Simple Video Management System plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'analytics_video' parameter in all versions up to, and ... |
| 9.8 | 2025-01-07 | CVE-2024-12264 | cve | The PayU CommercePro Plugin plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 3.8.3. This is due to /wp-json/payu/v1/generate-user... |
| 6.1 | 2025-01-07 | CVE-2024-12288 | cve | The Simple add pages or posts plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.0.0. This is due to missing or incorrect n... |
| 6.1 | 2025-01-07 | CVE-2024-12290 | cve | The Infility Global plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘set_type’ parameter in all versions up to, and including, 2.9.8 due to insuffic... |
| 6.1 | 2025-01-07 | CVE-2024-12291 | cve | The ViewMedica 9 plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.4.15. This is due to missing or incorrect nonce validat... |
| 8.1 | 2025-01-07 | CVE-2024-12313 | cve | The Compare Products for WooCommerce plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 3.2.1 via deserialization of untrusted inpu... |
| 8.8 | 2025-01-07 | CVE-2024-12322 | cve | The ThePerfectWedding.nl Widget plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.8. This is due to missing or incorrect n... |
| 6.1 | 2025-01-07 | CVE-2024-12324 | cve | The Unilevel MLM Plan plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘page’ parameter in all versions up to, and including, 1.1.0 due to insufficie... |
| 4.3 | 2025-01-07 | CVE-2024-12327 | cve | The LazyLoad Background Images plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the pblzbg_save_settings() function i... |
| 6.5 | 2025-01-07 | CVE-2024-12332 | cve | The School Management System – WPSchoolPress plugin for WordPress is vulnerable to SQL Injection via the 'cid' parameter in all versions up to, and including, 2.2.14 d... |
| 6.1 | 2025-01-07 | CVE-2024-12435 | cve | The Compare Products for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘s_feature’ parameter in all versions up to, and including, 3.2... |
| 6.4 | 2025-01-07 | CVE-2024-12445 | cve | The RightMessage WP plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'rm_area' shortcode in all versions up to, and including, 0... |
| 6.4 | 2025-01-07 | CVE-2024-12453 | cve | The Uptodown APK Download Widget plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'utd-widget' shortcode in all versions up to, ... |
| Page(s) : 1 ... 1327 1328 1329 1330 1331 1332 1333 1334 1335 1336 [1337] 1338 1339 1340 1341 1342 1343 1344 1345 1346 1347 ... | Result(s) : 328055 |
