| Page(s) : 1 ... 230 231 232 233 234 235 236 237 238 239 [240] 241 242 243 244 245 246 247 248 249 250 ... | Result(s) : 298984 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-05-15 | CVE-2024-9882 | cve | The Salon Booking System, Appointment Scheduling for Salons, Spas & Small Businesses WordPress plugin before 1.9.4 does not sanitise and escape some of its settings, which could... |
| N/A | 2025-05-15 | CVE-2024-9879 | cve | The Melapress File Monitor WordPress plugin before 2.1.1 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection at... |
| N/A | 2025-05-15 | CVE-2024-9838 | cve | The Auto Affiliate Links WordPress plugin before 6.4.7 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks |
| N/A | 2025-05-15 | CVE-2024-9831 | cve | The Taskbuilder WordPress plugin before 3.0.9 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks |
| N/A | 2025-05-15 | CVE-2024-9765 | cve | The EKC Tournament Manager WordPress plugin before 2.2.2 allows a logged in admin to download system files outside of the WordPress directory |
| N/A | 2025-05-15 | CVE-2024-9711 | cve | The EKC Tournament Manager WordPress plugin before 2.2.2 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin chan... |
| N/A | 2025-05-15 | CVE-2024-9709 | cve | The EKC Tournament Manager WordPress plugin before 2.2.2 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin chan... |
| N/A | 2025-05-15 | CVE-2024-9663 | cve | The CYAN Backup WordPress plugin before 2.5.3 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Sit... |
| N/A | 2025-05-15 | CVE-2024-9662 | cve | The CYAN Backup WordPress plugin before 2.5.3 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Sit... |
| N/A | 2025-05-15 | CVE-2024-9645 | cve | The Post Grid, Posts Slider, Posts Carousel, Post Filter, Post Masonry WordPress plugin before 2.2.93 does not validate and escape some of its block options before outputting th... |
| N/A | 2025-05-15 | CVE-2024-9599 | cve | The Popup Box WordPress plugin before 4.7.8 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site... |
| N/A | 2025-05-15 | CVE-2024-9450 | cve | The Free Booking Plugin for Hotels, Restaurants and Car Rentals WordPress plugin before 1.3.15 does not have CSRF check in place when updating its settings, which could allow a... |
| N/A | 2025-05-15 | CVE-2024-9390 | cve | The RegistrationMagic WordPress plugin before 6.0.2.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored ... |
| N/A | 2025-05-15 | CVE-2024-9238 | cve | The AVIF Uploader WordPress plugin before 1.1.1 does not sanitise uploaded SVG files, which could allow users with a role as low as Author to upload a malicious SVG containing X... |
| N/A | 2025-05-15 | CVE-2024-9236 | cve | The Team WordPress plugin before 4.4.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scri... |
| N/A | 2025-05-15 | CVE-2024-9233 | cve | The Logo Slider WordPress plugin before 3.7.1 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them vi... |
| N/A | 2025-05-15 | CVE-2024-9227 | cve | The PowerPress Podcasting plugin by Blubrry WordPress plugin before 11.9.18 does not sanitise and escape some of its settings when adding a podcast, which could allow admin user... |
| N/A | 2025-05-15 | CVE-2024-9182 | cve | The Maspik WordPress plugin before 2.1.3 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting... |
| N/A | 2025-05-15 | CVE-2024-8854 | cve | The Polls CP WordPress plugin before 1.0.77 does not sanitise and escape some of its poll settings, which could allow high privilege users such as admin to perform Stored Cross-... |
| N/A | 2025-05-15 | CVE-2024-8851 | cve | The Polls CP WordPress plugin before 1.0.77 does not sanitise and escape some of its poll settings, which could allow high privilege users such as admin to perform Stored Cross-... |
| Page(s) : 1 ... 230 231 232 233 234 235 236 237 238 239 [240] 241 242 243 244 245 246 247 248 249 250 ... | Result(s) : 298984 |
