| Page(s) : 1 ... 6 7 8 9 10 11 12 13 14 15 [16] 17 18 19 20 21 22 23 24 25 26 ... | Result(s) : 101545 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 4.3 | 2024-06-05 | CVE-2024-4088 | cve | The Gutenberg Blocks and Page Layouts – Attire Blocks plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the disable_fe... |
| 5.4 | 2024-06-05 | CVE-2024-5222 | cve | The Responsive Addons – Starter Templates, Advanced Features and Customizer Settings for Responsive Theme. plugin for WordPress is vulnerable to Stored Cross-Site Scripting via ... |
| 5.4 | 2024-06-05 | CVE-2024-4939 | cve | The Weaver Xtreme Theme Support plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's div shortcode in all versions up to, and including, 6.4 d... |
| 5.4 | 2024-06-05 | CVE-2024-5006 | cve | The Boostify Header Footer Builder for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘size’ parameter in all versions up to, and including,... |
| 5.4 | 2024-06-05 | CVE-2024-5439 | cve | The Blocksy theme for WordPress is vulnerable to Reflected Cross-Site Scripting via the custom_url parameter in all versions up to, and including, 2.0.50 due to insufficient inp... |
| 4.3 | 2024-06-05 | CVE-2024-5453 | cve | The ProfileGrid – User Profiles, Groups and Communities plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the pm_dismi... |
| 6.5 | 2024-06-05 | CVE-2024-4743 | cve | The LifterLMS – WordPress LMS Plugin for eLearning plugin for WordPress is vulnerable to SQL Injection via the orderBy attribute of the lifterlms_favorites shortcode in all vers... |
| 5.4 | 2024-06-05 | CVE-2024-4821 | cve | The WP Shortcodes Plugin — Shortcodes Ultimate plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's su_lightbox shortcode in all versions up t... |
| 5.4 | 2024-06-05 | CVE-2024-5571 | cve | The EmbedPress – Embed PDF, Google Docs, Vimeo, Wistia, Embed YouTube Videos, Audios, Maps & Embed Any Documents in Gutenberg & Elementor plugin for WordPress is vulnerable to S... |
| 6.1 | 2024-06-05 | CVE-2024-5317 | cve | The Newsletter plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'np1' parameter in all versions up to, and including, 8.3.4 due to insufficien... |
| 5.3 | 2024-06-05 | CVE-2024-5483 | cve | The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.2.6.8 due to incorrect impleme... |
| 5.5 | 2024-06-04 | CVE-2022-28652 | cve | ~/.config/apport/settings parsing is vulnerable to "billion laughs" attack |
| 5.5 | 2024-06-04 | CVE-2022-28654 | cve | is_closing_session() allows users to fill up apport.log |
| 5.5 | 2024-06-04 | CVE-2022-28656 | cve | is_closing_session() allows users to consume RAM in the Apport process |
| 5.5 | 2024-06-04 | CVE-2022-28658 | cve | Apport argument parsing mishandles filename splitting on older kernels resulting in argument spoofing |
| 5.4 | 2024-06-04 | CVE-2024-30889 | cve | Cross Site Scripting vulnerability in audimex audimexEE v.15.1.2 and fixed in 15.1.3.9 allows a remote attacker to execute arbitrary code via the service, method, widget_type, r... |
| 5.4 | 2024-06-04 | CVE-2024-34759 | cve | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in VideoWhisper Picture Gallery allows Stored XSS.This issue ... |
| 6.3 | 2024-06-04 | CVE-2024-30528 | cve | Missing Authorization vulnerability in Spiffy Plugins Spiffy Calendar.This issue affects Spiffy Calendar: from n/a through 4.9.10. |
| 6.1 | 2024-06-04 | CVE-2024-32464 | cve | Action Text brings rich text content and editing to Rails. Instances of ActionText::Attachable::ContentAttachment included within a rich_text_area tag could potentially contain ... |
| 5.9 | 2024-06-04 | CVE-2024-34362 | cve | Envoy is a cloud-native, open source edge and service proxy. There is a use-after-free in `HttpConnectionManager` (HCM) with `EnvoyQuicServerStream` that can crash Envoy. An att... |
| Page(s) : 1 ... 6 7 8 9 10 11 12 13 14 15 [16] 17 18 19 20 21 22 23 24 25 26 ... | Result(s) : 101545 |
