| Page(s) : 1 ... 244 245 246 247 248 249 250 251 252 253 [254] 255 256 257 258 259 260 261 262 263 264 ... | Result(s) : 324592 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-05-15 | CVE-2024-12726 | cve | The ClipArt WordPress plugin through 0.2 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could ... |
| N/A | 2025-05-15 | CVE-2024-12732 | cve | The AffiliateImporterEb WordPress plugin through 1.0.6 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scriptin... |
| N/A | 2025-05-15 | CVE-2024-12733 | cve | The AffiliateImporterEb WordPress plugin through 1.0.6 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scriptin... |
| N/A | 2025-05-15 | CVE-2024-12734 | cve | The Advance Post Prefix WordPress plugin through 1.1.1, Advance Post Prefix WordPress plugin through 1.1.1 does not sanitise and escape a parameter before outputting it back in ... |
| N/A | 2025-05-15 | CVE-2024-12735 | cve | The Advance Post Prefix WordPress plugin through 1.1.1 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins and above to perform SQL inje... |
| N/A | 2025-05-15 | CVE-2024-12739 | cve | The Mobile Contact Bar WordPress plugin before 3.0.5 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cr... |
| N/A | 2025-05-15 | CVE-2024-12743 | cve | The MailPoet WordPress plugin before 5.5.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site ... |
| N/A | 2025-05-15 | CVE-2024-12750 | cve | The Competition Form WordPress plugin through 2.0 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them... |
| N/A | 2025-05-15 | CVE-2024-12770 | cve | The WP ULike WordPress plugin before 4.7.6 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site ... |
| N/A | 2025-05-15 | CVE-2024-12800 | cve | The IP Based Login WordPress plugin before 2.4.1 does not sanitise values when importing, which could allow high privilege users such as admin to perform Stored Cross-Site Scrip... |
| N/A | 2025-05-15 | CVE-2024-12808 | cve | The WP ERP | Complete HR solution with recruitment & job listings | WooCommerce CRM & Accounting WordPress plugin before 1.13.4 does not sanitise and escape some of its settings... |
| N/A | 2025-05-15 | CVE-2024-12812 | cve | The WP ERP | Complete HR solution with recruitment & job listings | WooCommerce CRM & Accounting WordPress plugin before 1.13.4 has an issue where employees can manipulate param... |
| N/A | 2025-05-15 | CVE-2024-12873 | cve | The Custom Field Manager WordPress plugin through 1.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting... |
| N/A | 2025-05-15 | CVE-2024-12874 | cve | The Top Comments WordPress plugin through 1.0 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Sit... |
| N/A | 2025-05-15 | CVE-2024-13053 | cve | The Form Maker by 10Web WordPress plugin before 1.15.33 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Store... |
| N/A | 2025-05-15 | CVE-2024-13127 | cve | The LearnPress WordPress plugin before 4.2.7.5.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross... |
| N/A | 2025-05-15 | CVE-2024-13128 | cve | The LearnPress WordPress plugin before 4.2.7.5.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross... |
| N/A | 2025-05-15 | CVE-2024-13313 | cve | The AWeber WordPress plugin through 7.3.20 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site ... |
| N/A | 2025-05-15 | CVE-2024-13357 | cve | The Ditty WordPress plugin before 3.1.52 does not sanitise and escape some of its settings, which could allow high privilege users such as author to perform Stored Cross-Site S... |
| 4.8 | 2025-05-15 | CVE-2024-13382 | cve | The Calculated Fields Form WordPress plugin before 5.2.64 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stor... |
| Page(s) : 1 ... 244 245 246 247 248 249 250 251 252 253 [254] 255 256 257 258 259 260 261 262 263 264 ... | Result(s) : 324592 |
