| CVE-2021-4449 |
The ZoomSounds plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type... |
CRITICAL |
2024-10-16 |
View Details |
| CVE-2024-49253 |
Relative Path Traversal vulnerability in James Park Analyse Uploads allows Relative Path Traversal.T... |
|
2024-10-16 |
View Details |
| CVE-2024-49247 |
: Authentication Bypass Using an Alternate Path or Channel vulnerability in sooskriszta, webforza Bu... |
|
2024-10-16 |
View Details |
| CVE-2021-4448 |
The Kaswara Modern VC Addons plugin for WordPress is vulnerable to authorization bypass in versions ... |
HIGH |
2024-10-16 |
View Details |
| CVE-2024-49252 |
: Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Teplit... |
|
2024-10-16 |
View Details |
| CVE-2024-48042 |
Improper Neutralization of Special Elements Used in a Template Engine vulnerability in Supsystic Con... |
|
2024-10-16 |
View Details |
| CVE-2021-4447 |
The Essential Addons for Elementor plugin for WordPress is vulnerable to privilege escalation in ve... |
HIGH |
2024-10-16 |
View Details |
| CVE-2024-49251 |
: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclus... |
|
2024-10-16 |
View Details |
| CVE-2024-9873 |
The Community by PeepSo – Social Network, Membership, Registration, User Profiles, Premium – Mob... |
|
2024-10-16 |
View Details |
| CVE-2024-10024 |
A vulnerability, which was classified as critical, has been found in code-projects Pharmacy Manageme... |
|
2024-10-16 |
View Details |
| CVE-2021-4446 |
The Essential Addons for Elementor plugin for WordPress is vulnerable to authorization bypass in ver... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-49245 |
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Ahim... |
|
2024-10-16 |
View Details |
| CVE-2024-9888 |
The ElementInvader Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scri... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-10023 |
A vulnerability classified as critical was found in code-projects Pharmacy Management System 1.0. Th... |
|
2024-10-16 |
View Details |
| CVE-2021-4445 |
The Premium Addons for Elementor plugin for WordPress is vulnerable to Arbitrary Option Updates in v... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-49242 |
Unrestricted Upload of File with Dangerous Type vulnerability in Shafiq Digital Lottery allows Uploa... |
|
2024-10-16 |
View Details |
| CVE-2024-9891 |
The Multiline files upload for contact form 7 plugin for WordPress is vulnerable to unauthorized plu... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2023-32196 |
A vulnerability has been identified whereby privilege escalation checks are not properly enforced fo... |
|
2024-10-16 |
View Details |
| CVE-2024-7994 |
A maliciously crafted RFA file, when parsed through Autodesk Revit, can force a Stack-Based Buffer O... |
|
2024-10-16 |
View Details |
| CVE-2021-4444 |
The Product Filter by WooBeWoo plugin for WordPress is vulnerable to authorization bypass in version... |
|
2024-10-16 |
View Details |
| CVE-2024-49227 |
Deserialization of Untrusted Data vulnerability in Innovaweb Sp. Z o.O. Free Stock Photos Foter allo... |
|
2024-10-16 |
View Details |
| CVE-2023-32194 |
A vulnerability has been identified when granting a create or * global role for a resource type of "... |
|
2024-10-16 |
View Details |
| CVE-2024-7993 |
A maliciously crafted PDF file, when parsed through Autodesk Revit, can force an Out-of-Bounds Write... |
|
2024-10-16 |
View Details |
| CVE-2021-4443 |
The WordPress Mega Menu plugin for WordPress is vulnerable to Arbitrary File Creation in versions up... |
CRITICAL |
2024-10-16 |
View Details |
| CVE-2024-49226 |
Deserialization of Untrusted Data vulnerability in TAKETIN TAKETIN To WP Membership allows Object In... |
|
2024-10-16 |
View Details |
| CVE-2023-32193 |
A vulnerability has been identified in which unauthenticated cross-site
scripting (XSS) in Norman's... |
|
2024-10-16 |
View Details |
| CVE-2024-48918 |
RDS Light is a simplified version of the Reflective Dialogue System (RDS), a self-reflecting AI fram... |
|
2024-10-16 |
View Details |
| CVE-2020-36839 |
The WP Lead Plus X plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up t... |
HIGH |
2024-10-16 |
View Details |
| CVE-2024-49218 |
Deserialization of Untrusted Data vulnerability in Al Imran Akash Recently allows Object Injection.T... |
|
2024-10-16 |
View Details |
| CVE-2024-49340 |
IBM Watson Studio Local 1.2.3 is vulnerable to cross-site request forgery which could allow an attac... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2023-32192 |
A vulnerability has been identified in which unauthenticated cross-site
scripting (XSS) in the API ... |
|
2024-10-16 |
View Details |
| CVE-2024-48758 |
dingfanzu CMS V1.0 was discovered to contain a Cross-Site Request Forgery (CSRF) via the addPro para... |
|
2024-10-16 |
View Details |
| CVE-2020-36838 |
The Facebook Chat Plugin for WordPress is vulnerable to authorization bypass due to a missing capabi... |
HIGH |
2024-10-16 |
View Details |
| CVE-2024-49216 |
Unrestricted Upload of File with Dangerous Type vulnerability in Joshua Clayton Feed Comments Number... |
|
2024-10-16 |
View Details |
| CVE-2023-32191 |
When RKE provisions a cluster, it stores the cluster state in a configmap called `full-cluster-state... |
|
2024-10-16 |
View Details |
| CVE-2024-48180 |
ClassCMS <=4.8 is vulnerable to file inclusion in the nowView method in/class/cms/cms.php, which can... |
|
2024-10-16 |
View Details |
| CVE-2020-36837 |
The ThemeGrill Demo Importer plugin for WordPress is vulnerable to authentication bypass due to a mi... |
CRITICAL |
2024-10-16 |
View Details |
| CVE-2024-48035 |
Unrestricted Upload of File with Dangerous Type vulnerability in Takayuki Imanishi ACF Images Search... |
|
2024-10-16 |
View Details |
| CVE-2020-36841 |
The WooCommerce Smart Coupons plugin for WordPress is vulnerable to authorization bypass due to a mi... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-47889 |
Action Mailer is a framework for designing email service layers. Starting in version 3.0.0 and prior... |
|
2024-10-16 |
View Details |
| CVE-2020-36836 |
The WP Fastest Cache plugin for WordPress is vulnerable to unauthorized arbitrary file deletion in v... |
|
2024-10-16 |
View Details |
| CVE-2024-48034 |
Unrestricted Upload of File with Dangerous Type vulnerability in Fliperrr Team Creates 3D Flipbook, ... |
|
2024-10-16 |
View Details |
| CVE-2024-8040 |
An authorization bypass through user-controlled key vulnerability affecting 3DSwym in 3DSwymer on Re... |
|
2024-10-16 |
View Details |
| CVE-2024-47888 |
Action Text brings rich text content and editing to Rails. Starting in version 6.0.0 and prior to ve... |
|
2024-10-16 |
View Details |
| CVE-2020-36835 |
The Migration, Backup, Staging – WPvivid plugin for WordPress is vulnerable to sensitive informati... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-48030 |
Deserialization of Untrusted Data vulnerability in Gabriele Valenti Telecash Ricaricaweb allows Obje... |
|
2024-10-16 |
View Details |
| CVE-2024-6380 |
A reflected Cross-site Scripting (XSS) vulnerability affecting ENOVIA Collaborative Industry Innovat... |
|
2024-10-16 |
View Details |
| CVE-2024-46213 |
REDAXO CMS v2.11.0 was discovered to contain a remote code execution (RCE) vulnerability.... |
|
2024-10-16 |
View Details |
| CVE-2020-36834 |
The Discount Rules for WooCommerce plugin for WordPress is vulnerable to missing authorization via s... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-48029 |
: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclus... |
|
2024-10-16 |
View Details |