| Page(s) : 1 ... 962 963 964 965 966 967 968 969 970 971 [972] 973 974 975 976 977 978 979 980 981 982 ... | Result(s) : 326647 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 4.3 | 2025-02-19 | CVE-2024-13405 | cve | The Apptivo Business Site CRM plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 5.3. This is due to missing or incorrect non... |
| 6.4 | 2025-02-19 | CVE-2024-13462 | cve | The WP Wiki Tooltip plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'wiki' shortcode in all versions up to, and including, 2.0.... |
| 7.5 | 2025-02-19 | CVE-2024-13468 | cve | The Trash Duplicate and 301 Redirect plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'duplicates-action-top' a... |
| 6.4 | 2025-02-19 | CVE-2024-13589 | cve | The YouTube Playlists with Schema plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'yt_grid' shortcode in all versions up to, an... |
| 5.4 | 2025-02-19 | CVE-2024-13591 | cve | The Team Builder For WPBakery Page Builder(Formerly Visual Composer) plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'team-builder-v... |
| 8.8 | 2025-02-19 | CVE-2024-13592 | cve | The Team Builder For WPBakery Page Builder(Formerly Visual Composer) plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.0 via the... |
| 6.4 | 2025-02-19 | CVE-2024-13657 | cve | The Store Locator Widget plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'storelocatorwidget' shortcode in all versions up to, ... |
| 6.4 | 2025-02-19 | CVE-2024-13660 | cve | The Responsive Flickr Slideshow plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'fshow' shortcode in all versions up to, and in... |
| 6.4 | 2025-02-19 | CVE-2024-13663 | cve | The Coaching Staffs plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'mstw-cs-table' shortcode in all versions up to, and includ... |
| 6.4 | 2025-02-19 | CVE-2024-13674 | cve | The Cosmic Blocks (40+) Content Editor Blocks Collection plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'cwp_social_share' sho... |
| 6.5 | 2025-02-19 | CVE-2024-13676 | cve | The Categorized Gallery Plugin plugin for WordPress is vulnerable to SQL Injection via the 'field' attribute of the 'image_gallery' shortcode in all versions... |
| 5.4 | 2025-02-19 | CVE-2024-13679 | cve | The Widget BUY.BOX plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'buybox-widget' shortcode in all versions up to, and includi... |
| 6.1 | 2025-02-19 | CVE-2024-13711 | cve | The Pollin plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'question' parameter in all versions up to, and including, 1.01.1 due to insuff... |
| 4.9 | 2025-02-19 | CVE-2024-13712 | cve | The Pollin plugin for WordPress is vulnerable to SQL Injection via the 'question' parameter in all versions up to, and including, 1.01.1 due to insufficient escaping o... |
| 5.3 | 2025-02-19 | CVE-2024-13719 | cve | The PeproDev Ultimate Invoice plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 2.0.8 via the invoicing viewer due to ... |
| 6.1 | 2025-02-19 | CVE-2024-13736 | cve | The Pure Chat – Live Chat & More! plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘purechatWidgetName’ parameter in all versions up to, and including, ... |
| 4.3 | 2025-02-19 | CVE-2024-13854 | cve | The Education Addon for Elementor plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 1.3.1 via the naedu_elementor_temp... |
| 6.5 | 2025-02-19 | CVE-2025-0865 | cve | The WP Media Category Management plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions 2.0 to 2.3.3. This is due to missing or incorrect nonce validation ... |
| 5.3 | 2025-02-19 | CVE-2024-13231 | cve | The WordPress Portfolio Builder – Portfolio Gallery plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'add_vi... |
| 4.3 | 2025-02-19 | CVE-2024-13336 | cve | The Disable Auto Updates plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.4. This is due to missing or incorrect nonce va... |
| Page(s) : 1 ... 962 963 964 965 966 967 968 969 970 971 [972] 973 974 975 976 977 978 979 980 981 982 ... | Result(s) : 326647 |
