| Page(s) : 1 ... 1332 1333 1334 1335 1336 1337 1338 1339 1340 1341 [1342] 1343 1344 1345 1346 1347 1348 1349 1350 1351 1352 ... | Result(s) : 328192 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 6.4 | 2025-01-07 | CVE-2024-11934 | cve | The Formaloo Form Maker & Customer Analytics for WordPress & WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘address’ parameter in all ver... |
| N/A | 2025-01-07 | CVE-2024-12022 | cve | Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-52485. Reason: This candidate is a reservation duplicate of CVE-2024-52485. Notes: All CVE u... |
| 6.1 | 2025-01-07 | CVE-2024-12098 | cve | The ARS Affiliate Page Plugin plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'utm_keyword' parameter in all versions up to, and including... |
| 9.8 | 2025-01-07 | CVE-2024-12402 | cve | The Themes Coder – Create Android & iOS Apps For Your Woocommerce Site plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and... |
| 7.5 | 2025-01-07 | CVE-2024-12416 | cve | The Live Sales Notification for Woocommerce – Woomotiv plugin for WordPress is vulnerable to SQL Injection via the 'woomotiv_seen_products_.*' cookie in all versions u... |
| 6.5 | 2025-01-07 | CVE-2024-12419 | cve | The The Design for Contact Form 7 Style WordPress Plugin – CF7 WOW Styler plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and includin... |
| 6.4 | 2025-01-07 | CVE-2024-12528 | cve | The WordPress Survey & Poll – Quiz, Survey and Poll Plugin for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'wpsurveypo... |
| 4.3 | 2025-01-07 | CVE-2024-12538 | cve | The Duplicate Post, Page and Any Custom Post plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.5.3 via the 'dpp_d... |
| N/A | 2025-01-07 | CVE-2024-12540 | cve | Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-54288. Reason: This candidate is a reservation duplicate of CVE-2024-54288. Notes: All CVE u... |
| 5.4 | 2025-01-07 | CVE-2024-12541 | cve | The Chative Live chat and Chatbot plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.1. This is due to missing or incorrect... |
| 6.1 | 2025-01-07 | CVE-2024-12557 | cve | The Transporters.io plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.0.84. This is due to missing nonce validation on a f... |
| 5.3 | 2025-01-07 | CVE-2024-12559 | cve | The ClickDesigns plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'clickdesigns_add_api' and the '... |
| 6.4 | 2025-01-07 | CVE-2024-12590 | cve | The WP Youtube Gallery plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'id' parameter in all versions up to, and including, 1.9 due to insuff... |
| 6.4 | 2025-01-07 | CVE-2024-12592 | cve | The Sellsy plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'testSellsy' shortcode in all versions up to, and including, 2.3.3 d... |
| 3.1 | 2025-01-07 | CVE-2024-10527 | cve | The Spacer plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the motech_spacer_callback() function in all versions up to, an... |
| 5.3 | 2025-01-07 | CVE-2024-11290 | cve | The Member Access plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.1.6 via the WordPress core search feature. This ma... |
| 6.4 | 2025-01-07 | CVE-2024-11337 | cve | The Horoscope And Tarot plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'divine_horoscope' shortcode in all versions up to, and... |
| 6.4 | 2025-01-07 | CVE-2024-11338 | cve | The PIXNET Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'gtm' and 'venue' parameters in all versions up to, and including... |
| 6.1 | 2025-01-07 | CVE-2024-11363 | cve | The Same but Different – Related Posts by Taxonomy plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg & remove_query_arg withou... |
| 6.1 | 2025-01-07 | CVE-2024-11375 | cve | The WC1C plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and ... |
| Page(s) : 1 ... 1332 1333 1334 1335 1336 1337 1338 1339 1340 1341 [1342] 1343 1344 1345 1346 1347 1348 1349 1350 1351 1352 ... | Result(s) : 328192 |
