| Page(s) : 1 ... 1426 1427 1428 1429 1430 1431 1432 1433 1434 1435 [1436] 1437 1438 1439 1440 1441 1442 1443 1444 1445 1446 ... | Result(s) : 328771 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2024-12-24 | CVE-2024-12096 | cve | The Exhibit to WP Gallery WordPress plugin through 0.0.2 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Script... |
| 6.1 | 2024-12-24 | CVE-2024-12100 | cve | The Bitcoin Lightning Publisher for WordPress plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping o... |
| 4.3 | 2024-12-24 | CVE-2024-12210 | cve | The Print Invoice & Delivery Notes for WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'wcdn_re... |
| 6.1 | 2024-12-24 | CVE-2024-12405 | cve | The Export Customers Data plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 't' parameter in all versions up to, and including, 1.2.3 due to... |
| 8.8 | 2024-12-24 | CVE-2024-12594 | cve | The Custom Login Page Styler – Login Protected Private Site , Change wp-admin login url , WordPress login logo , Temporary admin login access , Rename login , Login customizer, ... |
| 6.4 | 2024-12-24 | CVE-2024-12622 | cve | The WordPress Simple Shopping Cart plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'wp_cart_button' and 'wp_cart_display_p... |
| N/A | 2024-12-24 | CVE-2024-41882 | cve | Team ENVY, a Security Research TEAM has found a flaw that allows for a remote code execution on the NVR. An attacker can cause a stack overflow by entering large data into URL p... |
| N/A | 2024-12-24 | CVE-2024-41883 | cve | Team ENVY, a Security Research TEAM has found a flaw that allows for a remote code execution on the NVR . An attacker enters a special value for a specific URL parameter, res... |
| N/A | 2024-12-24 | CVE-2024-41884 | cve | Team ENVY, a Security Research TEAM has found a flaw that allows for a remote code execution on the NVR. If an attacker does not enter any value for a specific URL parameter, NU... |
| N/A | 2024-12-24 | CVE-2024-41885 | cve | Team ENVY, a Security Research TEAM has found a flaw that allows for a remote code execution on the NVR. The seed string for the encrypt key was hardcoding. The manufacturer has... |
| N/A | 2024-12-24 | CVE-2024-41886 | cve | Team ENVY, a Security Research TEAM has found a flaw that allows for a remote code execution on the NVR. An attacker could inject malformed data into url input parameters to reb... |
| N/A | 2024-12-24 | CVE-2024-41887 | cve | Team ENVY, a Security Research TEAM has found a flaw that allows for a remote code execution on the NVR. An attacker can create an NVR log file in a directory one level higher o... |
| 6.4 | 2024-12-24 | CVE-2024-12814 | cve | The Loan Comparison plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'loancomparison' shortcode in all versions up to, and inclu... |
| 6.4 | 2024-12-24 | CVE-2024-11896 | cve | The Text Prompter – Unlimited chatgpt text prompts for openai tasks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'text_prompter&#... |
| 6.1 | 2024-12-24 | CVE-2024-12468 | cve | The WP Datepicker plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'wpdp_get_selected_datepicker' parameter in all versions up to, and incl... |
| 6.5 | 2024-12-24 | CVE-2024-12031 | cve | The Advanced Floating Content plugin for WordPress is vulnerable to SQL Injection via the 'floating_content_duplicate_post' function in all versions up to, and includi... |
| 5.3 | 2024-12-24 | CVE-2024-12103 | cve | The Content No Cache: prevent specific content from being cached plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 0.1.2 via the e... |
| 4.9 | 2024-12-24 | CVE-2024-12850 | cve | The Database Backup and check Tables Automated With Scheduler 2024 plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.32 via the d... |
| 8.8 | 2024-12-24 | CVE-2024-12881 | cve | The PlugVersions – Easily rollback to previous versions of your plugins plugin for WordPress is vulnerable to arbitrary file uploads due to a missing capability check on the eos... |
| N/A | 2024-12-24 | CVE-2024-53240 | cve | In the Linux kernel, the following vulnerability has been resolved: xen/netfront: fix crash when removing device When removing a netfront device directly after a suspend/resum... |
| Page(s) : 1 ... 1426 1427 1428 1429 1430 1431 1432 1433 1434 1435 [1436] 1437 1438 1439 1440 1441 1442 1443 1444 1445 1446 ... | Result(s) : 328771 |
