| Page(s) : 1 ... 1564 1565 1566 1567 1568 1569 1570 1571 1572 1573 [1574] 1575 1576 1577 1578 1579 1580 1581 1582 1583 1584 ... | Result(s) : 329510 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 6.4 | 2024-12-07 | CVE-2024-11380 | cve | The Mini Program API plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'qvideo' shortcode in all versions up to, and including, 1... |
| 6.1 | 2024-12-07 | CVE-2024-11457 | cve | The Feedpress Generator – External RSS Frontend Customizer plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'tab' parameter in all versions... |
| 6.1 | 2024-12-07 | CVE-2024-11464 | cve | The Easy Code Snippets plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'page' parameter in all versions up to, and including, 1.0.2 due to... |
| 8.8 | 2024-12-07 | CVE-2024-11501 | cve | The Gallery plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.3 via deserialization of untrusted input from wd_gallery_$id param... |
| 5.3 | 2024-12-07 | CVE-2024-37071 | cve | IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 could allow an authenticated user to cause a denial of service with a specially crafted qu... |
| 7.8 | 2024-12-07 | CVE-2024-47115 | cve | IBM AIX 7.2, 7.3 and VIOS 3.1 and 4.1 could allow a local user to execute arbitrary commands on the system due to improper neutralization of input. |
| 6.5 | 2024-12-07 | CVE-2024-41762 | cve | IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to a denial of service as the server may crash under certain conditions with... |
| N/A | 2024-12-07 | CVE-2024-11183 | cve | The Simple Side Tab WordPress plugin before 2.2.0 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross... |
| N/A | 2024-12-07 | CVE-2024-53143 | cve | In the Linux kernel, the following vulnerability has been resolved: fsnotify: Fix ordering of iput() and watched_objects decrement Ensure the superblock is kept alive until we... |
| N/A | 2024-12-07 | CVE-2024-11010 | cve | The FileOrganizer – Manage WordPress and Website Files plugin for WordPress is vulnerable to Local JavaScript File Inclusion in all versions up to, and including, 1.1.4 via the ... |
| 6.1 | 2024-12-07 | CVE-2024-11367 | cve | The Smoove connector for Elementor forms plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the... |
| 6.1 | 2024-12-07 | CVE-2024-11374 | cve | The TWChat – Send or receive messages from users plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of remove_query_arg without appropriate esca... |
| 6.1 | 2024-12-07 | CVE-2024-12128 | cve | The Simple Ecommerce Shopping Cart Plugin- Sell products through Paypal plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘monthly_sales_current_year’... |
| 5.4 | 2024-12-07 | CVE-2024-12253 | cve | The Simple Ecommerce Shopping Cart Plugin- Sell products through Paypal plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the '... |
| 7.5 | 2024-12-07 | CVE-2024-12270 | cve | The Beautiful taxonomy filters plugin for WordPress is vulnerable to SQL Injection via the 'selects[0][term]' parameter in all versions up to, and including, 2.4.3 due... |
| 6.1 | 2024-12-07 | CVE-2024-10046 | cve | The ?????? ????? ??????? Persian WooCommerce SMS plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of remove_query_arg without appropriate esca... |
| 6.1 | 2024-12-07 | CVE-2024-11329 | cve | The Comfino Payment Gateway plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg & remove_query_arg without appropriate escaping ... |
| 4.3 | 2024-12-07 | CVE-2024-11353 | cve | The SMS for Lead Capture Forms plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the delete_message() function in all ... |
| 6.1 | 2024-12-07 | CVE-2024-11436 | cve | The Drag & Drop Builder, Human Face Detector, Pre-built Templates, Spam Protection, User Email Notifications & more! plugin for WordPress is vulnerable to Reflected Cross-Site S... |
| 6.4 | 2024-12-07 | CVE-2024-11451 | cve | The Zooom plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'zooom' shortcode in all versions up to, and including, 1.1.0 due to ... |
| Page(s) : 1 ... 1564 1565 1566 1567 1568 1569 1570 1571 1572 1573 [1574] 1575 1576 1577 1578 1579 1580 1581 1582 1583 1584 ... | Result(s) : 329510 |
