| Page(s) : 1 ... 834 835 836 837 838 839 840 841 842 843 [844] 845 846 847 848 849 850 851 852 853 854 ... | Result(s) : 300361 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 4.3 | 2025-02-28 | CVE-2025-1506 | cve | The Wp Social Login and Register Social Counter plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.1.0. This is due to miss... |
| 6.1 | 2025-02-28 | CVE-2025-1511 | cve | The User Registration & Membership – Custom Registration Form, Login Form, and User Profile plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 's&... |
| 6.1 | 2025-02-28 | CVE-2025-1513 | cve | The Photos, Files, YouTube, Twitter, Instagram, TikTok, Ecommerce Contest Gallery – Upload, Vote, Sell via PayPal or Stripe, Social Share Buttons plugin for WordPress is vulnera... |
| 6.5 | 2025-02-28 | CVE-2025-0764 | cve | The wpForo Forum plugin for WordPress is vulnerable to arbitrary file read due to insufficient input validation in the 'update' method of the 'Members' class... |
| 5.4 | 2025-02-28 | CVE-2025-1405 | cve | The Product Catalog Simple plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's show_products shortcode in all versions up to, and including, ... |
| 6.4 | 2025-02-28 | CVE-2025-1571 | cve | The Exclusive Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Animated Text and Image Comparison Widgets in all vers... |
| 8.8 | 2025-02-28 | CVE-2025-1572 | cve | The KiviCare – Clinic & Patient Management System (EHR) plugin for WordPress is vulnerable to SQL Injection via the ‘u_id’ parameter in all versions up to, and including, 3.6.7 ... |
| 5.4 | 2025-02-28 | CVE-2024-13469 | cve | The Pricing Table by PickPlugins plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Button Link in all versions up to, and including, 1.12.10 due to insuf... |
| 7.5 | 2025-02-28 | CVE-2024-13638 | cve | The Order Attachments for WooCommerce plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.5.1 via the 'uploads'... |
| 4.3 | 2025-02-28 | CVE-2024-13716 | cve | The Forex Calculators plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the ajax_settings_callback() function in all v... |
| 7.2 | 2025-02-28 | CVE-2024-13831 | cve | The Tabs for WooCommerce plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.0.0 via deserialization of untrusted input in the �... |
| 4.3 | 2025-02-28 | CVE-2024-13832 | cve | The Ultra Addons Lite for Elementor plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.1.8 via the 'ut_elementor' short... |
| 4.8 | 2025-02-28 | CVE-2024-13851 | cve | The Modal Portfolio plugin for WordPress is vulnerable to Stored Cross-Site Scripting in all versions up to, and including, 1.7.4.2 due to insufficient input sanitization and ou... |
| 9.8 | 2025-02-28 | CVE-2024-8420 | cve | The DHVC Form plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 2.4.7. This is due to the plugin allowing a user to supply the �... |
| 9.8 | 2025-02-28 | CVE-2024-8425 | cve | The WooCommerce Ultimate Gift Card plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in the 'mwb_wgm_preview_mail' ... |
| 5.4 | 2025-02-28 | CVE-2024-9019 | cve | The SecuPress Free — WordPress Security plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's secupress_check_ban_ips_form shortcode in all ver... |
| 9.8 | 2025-02-28 | CVE-2024-9193 | cve | The WHMpress - WHMCS WordPress Integration Plugin plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 6.3-revision-0 via the whmpres... |
| 8.8 | 2025-02-28 | CVE-2024-9195 | cve | The WHMPress - WHMCS Client Area plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check ... |
| N/A | 2025-02-28 | CVE-2025-1413 | cve | DaVinci Resolve on MacOS was found to be installed with incorrect file permissions (rwxrwxrwx). This is inconsistent with standard macOS security practices, where applications s... |
| 5.4 | 2025-02-28 | CVE-2025-1560 | cve | The WOW Entrance Effects (WEE!) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'wee' shortcode in all versions up to, and incl... |
| Page(s) : 1 ... 834 835 836 837 838 839 840 841 842 843 [844] 845 846 847 848 849 850 851 852 853 854 ... | Result(s) : 300361 |
