| Page(s) : 1 ... 240 241 242 243 244 245 246 247 248 249 [250] 251 252 253 254 255 256 257 258 259 260 ... | Result(s) : 324546 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-05-15 | CVE-2024-10145 | cve | The Hubbub Lite WordPress plugin before 1.34.4 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-S... |
| N/A | 2025-05-15 | CVE-2024-10149 | cve | The Social Slider Feed WordPress plugin before 2.2.9 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cr... |
| N/A | 2025-05-15 | CVE-2024-10362 | cve | The Social Media Share Buttons & Social Sharing Icons WordPress plugin before 2.9.1 does not sanitize and escape some of its settings, which could allow high-privilege users suc... |
| N/A | 2025-05-15 | CVE-2024-10475 | cve | The Responsive Contact Form Builder & Lead Generation Plugin WordPress plugin before 1.9.8 does not sanitise and escape some of its settings, which could allow high privilege us... |
| N/A | 2025-05-15 | CVE-2024-10504 | cve | The Contact Form, Survey, Quiz & Popup Form Builder WordPress plugin before 1.7.1 does not sanitise and escape some parameters when outputting them in the page, which could all... |
| N/A | 2025-05-15 | CVE-2024-10631 | cve | The Countdown Timer for WordPress Block Editor WordPress plugin through 1.0.5 does not validate and escape some of its block options before outputting them back in a page/post w... |
| N/A | 2025-05-15 | CVE-2024-10632 | cve | The Nokaut Offers Box WordPress plugin through 1.4.0 does not sanitize and escape some of its settings, which could allow high-privilege users such as admin to perform Stored Cr... |
| N/A | 2025-05-15 | CVE-2024-10634 | cve | The Nokaut Offers Box WordPress plugin through 1.4.0 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin reset th... |
| N/A | 2025-05-15 | CVE-2024-10639 | cve | The Auto Prune Posts WordPress plugin before 3.0.0 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cros... |
| N/A | 2025-05-15 | CVE-2024-10677 | cve | The BTEV WordPress plugin through 2.0.2 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSR... |
| N/A | 2025-05-15 | CVE-2024-10818 | cve | The JSFiddle Shortcode WordPress plugin before 1.1.3 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode... |
| N/A | 2025-05-15 | CVE-2024-11109 | cve | The WP Google Review Slider WordPress plugin before 15.6 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Store... |
| N/A | 2025-05-15 | CVE-2024-11140 | cve | The Real WP Shop Lite Ajax eCommerce Shopping Cart WordPress plugin through 2.0.8 does not sanitise and escape some of its settings, which could allow high privilege users such ... |
| N/A | 2025-05-15 | CVE-2024-11141 | cve | The Sailthru Triggermail WordPress plugin through 1.1 does not sanitise and escape some of its settings and is missing CSRF protection which could allow subscribers to perform S... |
| N/A | 2025-05-15 | CVE-2024-11189 | cve | The Social Share And Social Locker WordPress plugin before 1.4.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perf... |
| N/A | 2025-05-15 | CVE-2024-11190 | cve | The jwp-a11y WordPress plugin through 4.1.7 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site ... |
| N/A | 2025-05-15 | CVE-2024-11221 | cve | The Full Screen (Page) Background Image Slideshow WordPress plugin through 1.1 does not sanitise and escape some of its settings, which could allow high privilege users such as ... |
| N/A | 2025-05-15 | CVE-2024-11266 | cve | The Geocache Stat Bar Widget WordPress plugin through 0.911 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform St... |
| N/A | 2025-05-15 | CVE-2024-11267 | cve | The JSP Store Locator WordPress plugin through 1.0 does not sanitize and escape a parameter before using it in a SQL statement, allowing user with Contributor to perform SQL inj... |
| N/A | 2025-05-15 | CVE-2024-11269 | cve | The AHAthat Plugin WordPress plugin through 1.6 does not sanitize and escape a parameter before using it in a SQL statement, allowing Admin to perform SQL injection attacks. |
| Page(s) : 1 ... 240 241 242 243 244 245 246 247 248 249 [250] 251 252 253 254 255 256 257 258 259 260 ... | Result(s) : 324546 |
