| Page(s) : 1 ... 5 6 7 8 9 10 11 12 13 14 [15] 16 17 18 19 20 21 22 23 24 25 ... | Result(s) : 101545 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 6.4 | 2024-06-06 | CVE-2024-5152 | cve | The ElementsReady Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘_id’ parameter in all versions up to, and including, 6.1.0 due ... |
| 6.4 | 2024-06-06 | CVE-2024-5161 | cve | The Magical Addons For Elementor ( Header Footer Builder, Free Elementor Widgets, Elementor Templates Library ) plugin for WordPress is vulnerable to Stored Cross-Site Scripting... |
| 6.4 | 2024-06-06 | CVE-2024-5162 | cve | The WordPress prettyPhoto plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘url’ parameter in all versions up to, and including, 1.2.3 due to insufficie... |
| 4.3 | 2024-06-06 | CVE-2024-5449 | cve | The WP Dark Mode – WordPress Dark Mode Plugin for Improved Accessibility, Dark Theme, Night Mode, and Social Sharing plugin for WordPress is vulnerable to unauthorized modificat... |
| 5.3 | 2024-06-06 | CVE-2024-5615 | cve | The Open Graph plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.11.2 via the 'opengraph_default_description'... |
| 4.3 | 2024-06-05 | CVE-2024-35673 | cve | Cross-Site Request Forgery (CSRF) vulnerability in Pure Chat by Ruby Pure Chat.This issue affects Pure Chat: from n/a through 2.22. |
| 5.3 | 2024-06-05 | CVE-2024-20404 | cve | A vulnerability in the web-based management interface of Cisco Finesse could allow an unauthenticated, remote attacker to conduct an SSRF attack on an affected system. This v... |
| 5.4 | 2024-06-05 | CVE-2024-5536 | cve | The GamiPress – Link plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's gamipress_link shortcode in all versions up to, and including, 1.1.4... |
| 5.4 | 2024-06-05 | CVE-2024-4001 | cve | The Download Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'wpdm_modal_login_form' shortcode in all versions up to, a... |
| 6.1 | 2024-06-05 | CVE-2024-3469 | cve | The GP Premium plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the message parameter in all versions up to, and including, 2.4.0 due to insufficient inp... |
| 4.3 | 2024-06-05 | CVE-2024-5459 | cve | The Restaurant Menu and Food Ordering plugin for WordPress is vulnerable to unauthorized creation of data due to a missing capability check on 'add_section', 'add... |
| 6.5 | 2024-06-05 | CVE-2024-34055 | cve | Cyrus IMAP before 3.8.3 and 3.10.x before 3.10.0-rc1 allows authenticated attackers to cause unbounded memory allocation by sending many LITERALs in a single command. |
| 5.3 | 2024-06-05 | CVE-2024-5149 | cve | The BuddyForms plugin for WordPress is vulnerable to Email Verification Bypass in all versions up to, and including, 2.8.9 via the use of an insufficiently random activation cod... |
| 5.4 | 2024-06-05 | CVE-2024-1161 | cve | The Brizy – Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Custom Attributes for blocks in all versions up to, and includin... |
| 5.4 | 2024-06-05 | CVE-2024-1940 | cve | The Brizy – Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via post content in all versions up to, and including, 2.4.41 due to insufficient inpu... |
| 6.1 | 2024-06-05 | CVE-2024-2087 | cve | The Brizy – Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the form name values in all versions up to, and including, 2.4.43 due to insuffici... |
| 5.4 | 2024-06-05 | CVE-2024-3667 | cve | The Brizy – Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'Link To' field of multiple widgets in all versions up to, and inclu... |
| 4.3 | 2024-06-05 | CVE-2024-4886 | cve | The contains an IDOR vulnerability that allows a user to comment on a private post by manipulating the ID included in the request |
| 5.4 | 2024-06-05 | CVE-2024-1164 | cve | The Brizy – Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's contact form widget error message and redirect URL in all versio... |
| 4.3 | 2024-06-05 | CVE-2024-2368 | cve | The Mollie Forms plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.6.13. This is due to missing or incorrect nonce validat... |
| Page(s) : 1 ... 5 6 7 8 9 10 11 12 13 14 [15] 16 17 18 19 20 21 22 23 24 25 ... | Result(s) : 101545 |
