| Page(s) : 1 ... 1512 1513 1514 1515 1516 1517 1518 1519 1520 1521 [1522] 1523 1524 1525 1526 1527 1528 1529 1530 1531 1532 ... | Result(s) : 329442 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2024-12-13 | CVE-2024-11835 | cve | Uncontrolled Resource Consumption vulnerability in PlexTrac allows WebSocket DoS.This issue affects PlexTrac: from 1.61.3 before 2.8.1. |
| N/A | 2024-12-13 | CVE-2024-11836 | cve | Server-Side Request Forgery (SSRF) vulnerability in PlexTrac allowing requests to internal system resources.This issue affects PlexTrac: from 1.61.3 before 2.8.1. |
| N/A | 2024-12-13 | CVE-2024-11837 | cve | Improper Neutralization of Special Elements used in an N1QL Command ('N1QL Injection') vulnerability in PlexTrac allows N1QL Injection.This issue affects PlexTrac: fr... |
| N/A | 2024-12-13 | CVE-2024-11838 | cve | External Control of File Name or Path vulnerability in PlexTrac allows Local Code Inclusion through use of an undocumented API endpoint.This issue affects PlexTrac: from 1.61.3 ... |
| N/A | 2024-12-13 | CVE-2024-11839 | cve | Deserialization of Untrusted Data vulnerability in PlexTrac (Runbooks modules) which allows Object Injection and arbitrary file writes.This issue affects PlexTrac: from 1.61.3 b... |
| 4.8 | 2024-12-13 | CVE-2024-12581 | cve | The Gutenberg Blocks with AI by Kadence WP – Page Builder Features plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, an... |
| N/A | 2024-12-13 | CVE-2024-55918 | cve | An issue was discovered in the Graphics::ColorNames package before 3.2.0 for Perl. There is an ambiguity between modules and filenames that can lead to HTML injection by an atta... |
| 4.3 | 2024-12-13 | CVE-2024-11275 | cve | The WP Timetics- AI-powered Appointment Booking Calendar and Online Scheduling Plugin plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability... |
| 6.4 | 2024-12-13 | CVE-2024-11754 | cve | The Booking System Trafft plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'trafftbooking' shortcode in all versions up to, and ... |
| 5.4 | 2024-12-13 | CVE-2024-11832 | cve | The Beaver Builder – WordPress Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the custom JavaScript row settings in all versions up to, and i... |
| 5.4 | 2024-12-13 | CVE-2024-11910 | cve | The WP Crowdfunding plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the wp-crowdfunding/search block in all versions up to, and including, 2.1.12 due to in... |
| 4.3 | 2024-12-13 | CVE-2024-11911 | cve | The WP Crowdfunding plugin for WordPress is vulnerable to unauthorized plugin installation due to a missing capability check on the install_woocommerce_plugin() function action ... |
| 5.4 | 2024-12-13 | CVE-2024-12042 | cve | The MStore API – Create Native Android & iOS Apps On The Cloud plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the profile picture upload functionality in ... |
| 5.3 | 2024-12-13 | CVE-2024-12309 | cve | The Rate My Post – Star Rating Plugin by FeedbackWP plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 4.2.4 via the ge... |
| 4.3 | 2024-12-13 | CVE-2024-12414 | cve | The Themify Store Locator plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.1.9. This is due to missing or incorrect nonce... |
| 6.5 | 2024-12-13 | CVE-2024-12417 | cve | The The Simple Link Directory plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 8.4.0. This is due to the software allowi... |
| 6.5 | 2024-12-13 | CVE-2024-12420 | cve | The The WPMobile.App — Android and iOS Mobile Application plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 11.52. This i... |
| 6.5 | 2024-12-13 | CVE-2024-12421 | cve | The The Coupon Affiliates – Affiliate Plugin for WooCommerce plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 5.16.7.1. ... |
| 6.4 | 2024-12-13 | CVE-2024-12465 | cve | The Property Hive Stamp Duty Calculator plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'stamp_duty_calculator_scotland' shortc... |
| 8.1 | 2024-12-13 | CVE-2024-10783 | cve | The MainWP Child – Securely Connects to the MainWP Dashboard to Manage Multiple Sites plugin for WordPress is vulnerable to privilege escalation due to a missing authorization c... |
| Page(s) : 1 ... 1512 1513 1514 1515 1516 1517 1518 1519 1520 1521 [1522] 1523 1524 1525 1526 1527 1528 1529 1530 1531 1532 ... | Result(s) : 329442 |
