| Page(s) : 1 ... 50 51 52 53 54 55 56 57 58 59 [60] 61 62 63 64 65 66 67 68 69 70 ... | Result(s) : 250651 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 6.4 | 2024-05-14 | CVE-2024-4339 | cve | The Prime Slider – Addons For Elementor (Revolution of a slider, Hero Slider, Ecommerce Slider) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the General... |
| 6.4 | 2024-05-14 | CVE-2024-4383 | cve | The Simple Membership plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'swpm_paypal_subscription_cancel_link' shortcode in all v... |
| 6.4 | 2024-05-14 | CVE-2024-4386 | cve | The Gallery Block (Meow Gallery) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘data_atts’ parameter in versions up to, and including, 5.1.3 due to ... |
| 8.8 | 2024-05-14 | CVE-2024-4397 | cve | The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'save_post_materials' fun... |
| 6.4 | 2024-05-14 | CVE-2024-4398 | cve | The HTML5 Audio Player- Best WordPress Audio Player Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's widgets in all versions up to,... |
| 6.4 | 2024-05-14 | CVE-2024-4411 | cve | The Mihdan: Yandex Turbo Feed plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcode(s) in all versions up to, and including, 1.6.5.1 ... |
| 9.8 | 2024-05-14 | CVE-2024-4413 | cve | The Hotel Booking Lite plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 4.11.1 via deserialization of untrusted input. This makes... |
| 4.4 | 2024-05-14 | CVE-2024-4417 | cve | The Falang multilanguage for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.3.49 due to i... |
| N/A | 2024-05-14 | CVE-2024-4423 | cve | The access control in CemiPark software does not properly validate user-entered data, which allows the authentication bypass. An attacker who has network access to the login pan... |
| N/A | 2024-05-14 | CVE-2024-4424 | cve | The access control in CemiPark software does not properly validate user-entered data, which allows the stored cross-site scripting (XSS) attack. The parameters used to enter dat... |
| N/A | 2024-05-14 | CVE-2024-4425 | cve | The access control in CemiPark software stores integration (e.g. FTP or SIP) credentials in plain-text. An attacker who gained unauthorized access to the device can retrieve cle... |
| 6.4 | 2024-05-14 | CVE-2024-4430 | cve | The Beaver Builder – WordPress Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the photo widget crop attribute in all versions up to, and incl... |
| 9.8 | 2024-05-14 | CVE-2024-4434 | cve | The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to time-based SQL Injection via the ‘term_id’ parameter in versions up to, and including, 4.2.6.5 due to... |
| 8.1 | 2024-05-14 | CVE-2024-4441 | cve | The XML Sitemap & Google News plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 5.4.8 via the 'feed' parameter. This mak... |
| 5.3 | 2024-05-14 | CVE-2024-4444 | cve | The LearnPress – WordPress LMS Plugin plugin for WordPress is vulnerable to bypass to user registration in versions up to, and including, 4.2.6.5. This is due to missing checks ... |
| N/A | 2024-05-14 | CVE-2024-4446 | cve | The Content Views – Post Grid & Filter, Recent Posts, Category Posts, & More (Gutenberg Blocks and Shortcode) plugin for WordPress is vulnerable to Stored Cross-Site Scripting v... |
| 6.5 | 2024-05-14 | CVE-2024-4448 | cve | The Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plu... |
| 6.4 | 2024-05-14 | CVE-2024-4449 | cve | The Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plu... |
| 4.3 | 2024-05-14 | CVE-2024-4463 | cve | The Squelch Tabs and Accordions Shortcodes plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 0.4.7. This is due to missing o... |
| 6.4 | 2024-05-14 | CVE-2024-4481 | cve | The Gutenberg Blocks with AI by Kadence WP plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'link' attribute of the plugin's blocks in al... |
| Page(s) : 1 ... 50 51 52 53 54 55 56 57 58 59 [60] 61 62 63 64 65 66 67 68 69 70 ... | Result(s) : 250651 |
