| CVE-2024-45844 |
BIG-IP monitor functionality may allow an attacker to bypass access control restrictions, regardless... |
|
2024-10-16 |
View Details |
| CVE-2024-45462 |
The logout operation in the CloudStack web interface does not expire the user session completely whi... |
|
2024-10-16 |
View Details |
| CVE-2024-4189 |
Improper Restriction of XML External Entity Reference vulnerability in OpenText Application Automati... |
|
2024-10-16 |
View Details |
| CVE-2024-9893 |
The Nextend Social Login Pro plugin for WordPress is vulnerable to authentication bypass in all vers... |
CRITICAL |
2024-10-16 |
View Details |
| CVE-2024-45461 |
The CloudStack Quota feature allows cloud administrators to implement a quota or usage limit system ... |
|
2024-10-16 |
View Details |
| CVE-2024-4184 |
Improper Restriction of XML External Entity Reference vulnerability in OpenText Application Automati... |
|
2024-10-16 |
View Details |
| CVE-2024-49270 |
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerab... |
|
2024-10-16 |
View Details |
| CVE-2024-45219 |
Account users in Apache CloudStack by default are allowed to upload and register templates for deplo... |
|
2024-10-16 |
View Details |
| CVE-2024-46606 |
A cross-site scripting (XSS) vulnerability in the component /admin.php?page=photo of Piwigo v14.5.0 ... |
|
2024-10-16 |
View Details |
| CVE-2024-49260 |
Unrestricted Upload of File with Dangerous Type vulnerability in Limb WordPress Gallery Plugin – L... |
|
2024-10-16 |
View Details |
| CVE-2024-45217 |
Insecure Default Initialization of Resource vulnerability in Apache Solr.
New ConfigSets that are c... |
|
2024-10-16 |
View Details |
| CVE-2024-46605 |
A cross-site scripting (XSS) vulnerability in the component /admin.php?page=album of Piwigo v14.5.0 ... |
|
2024-10-16 |
View Details |
| CVE-2024-49258 |
Path Traversal: '.../...//' vulnerability in Limb WordPress Gallery Plugin – Limb Image Gallery.Th... |
|
2024-10-16 |
View Details |
| CVE-2024-45216 |
Improper Authentication vulnerability in Apache Solr.
Solr instances using the PKIAuthenticationPlu... |
|
2024-10-16 |
View Details |
| CVE-2024-45072 |
IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to an XML External Entity Injection (XXE)... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-49254 |
Improper Control of Generation of Code ('Code Injection') vulnerability in Sunjianle allows Code Inj... |
|
2024-10-16 |
View Details |
| CVE-2023-7296 |
The BigBlueButton plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the the mode... |
|
2024-10-16 |
View Details |
| CVE-2024-45071 |
IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to stored cross-site scripting. This vuln... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-49253 |
Relative Path Traversal vulnerability in James Park Analyse Uploads allows Relative Path Traversal.T... |
|
2024-10-16 |
View Details |
| CVE-2023-7295 |
The Video Grid plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the search_t... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-38814 |
An authenticated SQL injection vulnerability in VMware HCX was privately reported to VMware. A
mali... |
|
2024-10-16 |
View Details |
| CVE-2024-49252 |
: Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Teplit... |
|
2024-10-16 |
View Details |
| CVE-2023-22649 |
A vulnerability has been identified which may lead to sensitive data being leaked into Rancher's aud... |
|
2024-10-16 |
View Details |
| CVE-2024-20512 |
A vulnerability in the web-based management interface of Cisco Unified Contact Center Management Por... |
|
2024-10-16 |
View Details |
| CVE-2024-49251 |
: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclus... |
|
2024-10-16 |
View Details |
| CVE-2021-4452 |
The Google Language Translator plugin for WordPress is vulnerable to Reflected Cross-Site Scripting ... |
HIGH |
2024-10-16 |
View Details |
| CVE-2024-20463 |
A vulnerability in the web-based management interface of Cisco ATA 190 Series Analog Telephone Adapt... |
|
2024-10-16 |
View Details |
| CVE-2024-49245 |
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Ahim... |
|
2024-10-16 |
View Details |
| CVE-2020-36842 |
The Migration, Backup, Staging – WPvivid plugin for WordPress is vulnerable to arbitrary file uplo... |
HIGH |
2024-10-16 |
View Details |
| CVE-2024-20462 |
A vulnerability in the web-based management interface of Cisco ATA 190 Series Multiplatform Analog T... |
|
2024-10-16 |
View Details |
| CVE-2024-49242 |
Unrestricted Upload of File with Dangerous Type vulnerability in Shafiq Digital Lottery allows Uploa... |
|
2024-10-16 |
View Details |
| CVE-2020-36840 |
The Timetable and Event Schedule by MotoPress plugin for WordPress is vulnerable to authorization by... |
HIGH |
2024-10-16 |
View Details |
| CVE-2024-20461 |
A vulnerability in the CLI of Cisco ATA 190 Series Analog Telephone Adapter firmware could allo... |
|
2024-10-16 |
View Details |
| CVE-2024-49227 |
Deserialization of Untrusted Data vulnerability in Innovaweb Sp. Z o.O. Free Stock Photos Foter allo... |
|
2024-10-16 |
View Details |
| CVE-2017-20194 |
The Formidable Form Builder plugin for WordPress is vulnerable to Sensitive Data Exposure in version... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-20460 |
A vulnerability in the web-based management interface of Cisco ATA 190 Series Analog Telephone Adapt... |
|
2024-10-16 |
View Details |
| CVE-2024-49226 |
Deserialization of Untrusted Data vulnerability in TAKETIN TAKETIN To WP Membership allows Object In... |
|
2024-10-16 |
View Details |
| CVE-2017-20193 |
The Product Vendors is vulnerable to Reflected Cross-Site Scripting via the 'vendor_description' par... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-20459 |
A vulnerability in the web-based management interface of Cisco ATA 190 Multiplatform Series Analog T... |
|
2024-10-16 |
View Details |
| CVE-2024-49218 |
Deserialization of Untrusted Data vulnerability in Al Imran Akash Recently allows Object Injection.T... |
|
2024-10-16 |
View Details |
| CVE-2016-15042 |
The Frontend File Manager (versions < 4.0), N-Media Post Front-end Form (versions < 1.1) plugins for... |
CRITICAL |
2024-10-16 |
View Details |
| CVE-2024-20458 |
A vulnerability in the web-based management interface of Cisco ATA 190 Series Analog Telephone Adapt... |
|
2024-10-16 |
View Details |
| CVE-2024-49216 |
Unrestricted Upload of File with Dangerous Type vulnerability in Joshua Clayton Feed Comments Number... |
|
2024-10-16 |
View Details |
| CVE-2024-9582 |
The Accordion Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘ht... |
|
2024-10-16 |
View Details |
| CVE-2024-20421 |
A vulnerability in the web-based management interface of Cisco ATA 190 Series Analog Telephone Adapt... |
|
2024-10-16 |
View Details |
| CVE-2024-48035 |
Unrestricted Upload of File with Dangerous Type vulnerability in Takayuki Imanishi ACF Images Search... |
|
2024-10-16 |
View Details |
| CVE-2024-8918 |
The File Manager Pro plugin for WordPress is vulnerable to Limited JavaScript File Upload in all ver... |
HIGH |
2024-10-16 |
View Details |
| CVE-2024-20420 |
A vulnerability in the web-based management interface of Cisco ATA 190 Series Analog Telephone Adapt... |
|
2024-10-16 |
View Details |
| CVE-2024-48034 |
Unrestricted Upload of File with Dangerous Type vulnerability in Fliperrr Team Creates 3D Flipbook, ... |
|
2024-10-16 |
View Details |
| CVE-2024-8746 |
The File Manager Pro plugin for WordPress is vulnerable to arbitrary backup file downloads and uploa... |
HIGH |
2024-10-16 |
View Details |