| CVE-2024-10022 |
A vulnerability classified as critical has been found in code-projects Pharmacy Management System 1.... |
|
2024-10-16 |
View Details |
| CVE-2024-46212 |
An issue in the component /index.php?page=backup/export of REDAXO CMS v5.17.1 allows attackers to ex... |
|
2024-10-16 |
View Details |
| CVE-2020-36833 |
The Indeed Membership Pro plugin for WordPress is vulnerable to authorization bypass due to missing ... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-48028 |
Deserialization of Untrusted Data vulnerability in Boyan Raichev IP Loc8 allows Object Injection.Thi... |
|
2024-10-16 |
View Details |
| CVE-2024-10021 |
A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been rated as crit... |
|
2024-10-16 |
View Details |
| CVE-2024-44762 |
A discrepancy in error messages for invalid login attempts in Webmin Usermin v2.100 allows attackers... |
|
2024-10-16 |
View Details |
| CVE-2020-36832 |
The Ultimate Membership Pro plugin for WordPress is vulnerable to Authentication Bypass in versions ... |
CRITICAL |
2024-10-16 |
View Details |
| CVE-2024-48027 |
Unrestricted Upload of File with Dangerous Type vulnerability in xaraartech External featured image ... |
|
2024-10-16 |
View Details |
| CVE-2023-32190 |
mlocate's %post script allows RUN_UPDATEDB_AS user to make arbitrary files world readable by abusing... |
|
2024-10-16 |
View Details |
| CVE-2024-47887 |
Action Pack is a framework for handling and responding to web requests. Starting in version 4.0.0 an... |
|
2024-10-16 |
View Details |
| CVE-2020-36831 |
The NextScripts: Social Networks Auto-Poster plugin for WordPress is vulnerable to authorization byp... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-48026 |
Deserialization of Untrusted Data vulnerability in Grayson Robbins Disc Golf Manager allows Object I... |
|
2024-10-16 |
View Details |
| CVE-2024-8921 |
The Zita Elementor Site Library plugin for WordPress is vulnerable to Stored Cross-Site Scripting vi... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-47836 |
Admidio is an open-source user management solution. Prior to version 4.3.12, an unsafe deserializati... |
|
2024-10-16 |
View Details |
| CVE-2019-25217 |
The SiteGround Optimizer plugin for WordPress is vulnerable to authorization bypass leading to Remot... |
CRITICAL |
2024-10-16 |
View Details |
| CVE-2024-47649 |
Unrestricted Upload of File with Dangerous Type vulnerability in THATplugin Iconize.This issue affec... |
|
2024-10-16 |
View Details |
| CVE-2024-9444 |
The ElementsReady Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scrip... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-47522 |
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security M... |
|
2024-10-16 |
View Details |
| CVE-2019-25216 |
The Rich Review plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the POST body ... |
HIGH |
2024-10-16 |
View Details |
| CVE-2024-47645 |
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Saji... |
|
2024-10-16 |
View Details |
| CVE-2024-9858 |
There exists an insecure default user permission in Google Cloud Migrate to containers from version ... |
|
2024-10-16 |
View Details |
| CVE-2024-47188 |
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security M... |
|
2024-10-16 |
View Details |
| CVE-2019-25215 |
The ARI-Adminer plugin for WordPress is vulnerable to authorization bypass due to a lack of file acc... |
HIGH |
2024-10-16 |
View Details |
| CVE-2024-47637 |
: Relative Path Traversal vulnerability in LiteSpeed Technologies LiteSpeed Cache allows Path Traver... |
|
2024-10-16 |
View Details |
| CVE-2023-32188 |
A user can reverse engineer the JWT token (JSON Web Token) used in authentication for Manager and AP... |
|
2024-10-16 |
View Details |
| CVE-2024-47187 |
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security M... |
|
2024-10-16 |
View Details |
| CVE-2019-25214 |
The ShopWP plugin for WordPress is vulnerable to authorization bypass due to a missing capability ch... |
HIGH |
2024-10-16 |
View Details |
| CVE-2024-47351 |
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in The ... |
|
2024-10-16 |
View Details |
| CVE-2023-22650 |
A vulnerability has been identified in which Rancher does not automatically clean up a user which ha... |
|
2024-10-16 |
View Details |
| CVE-2024-45797 |
LibHTP is a security-aware parser for the HTTP protocol and the related bits and pieces. Prior to ve... |
|
2024-10-16 |
View Details |
| CVE-2019-25213 |
The Advanced Access Manager plugin for WordPress is vulnerable to Unauthenticated Arbitrary File Rea... |
CRITICAL |
2024-10-16 |
View Details |
| CVE-2024-22034 |
Attackers could put the special files in .osc into the actual package sources (e.g. _apiurl). This a... |
|
2024-10-16 |
View Details |
| CVE-2024-9540 |
The Sina Extension for Elementor plugin for WordPress is vulnerable to Sensitive Information Exposur... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-45796 |
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security M... |
|
2024-10-16 |
View Details |
| CVE-2018-25105 |
The File Manager plugin for WordPress is vulnerable to authorization bypass due to a missing capabi... |
CRITICAL |
2024-10-16 |
View Details |
| CVE-2024-22033 |
The OBS service obs-service-download_url was vulnerable to a command injection vulnerability. The at... |
|
2024-10-16 |
View Details |
| CVE-2024-9061 |
The The WP Popup Builder – Popup Forms and Marketing Lead Generation plugin for WordPress is vulne... |
HIGH |
2024-10-16 |
View Details |
| CVE-2024-45795 |
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security M... |
|
2024-10-16 |
View Details |
| CVE-2017-20192 |
The Formidable Form Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via mu... |
HIGH |
2024-10-16 |
View Details |
| CVE-2024-22032 |
A vulnerability has been identified in which an RKE1 cluster keeps
constantly reconciling when secr... |
|
2024-10-16 |
View Details |
| CVE-2024-45715 |
The SolarWinds Platform was susceptible to a Cross-Site Scripting vulnerability when performing an e... |
HIGH |
2024-10-16 |
View Details |
| CVE-2024-41128 |
Action Pack is a framework for handling and responding to web requests. Starting in version 3.1.0 an... |
|
2024-10-16 |
View Details |
| CVE-2016-15041 |
The MainWP Dashboard – The Private WordPress Manager for Multiple Website Maintenance plugin for W... |
HIGH |
2024-10-16 |
View Details |
| CVE-2024-22030 |
A vulnerability has been identified within Rancher that can be exploited
in narrow circumstances th... |
|
2024-10-16 |
View Details |
| CVE-2024-45714 |
Application is vulnerable to Cross Site Scripting (XSS) an authenticated attacker with users’ perm... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-9143 |
Issue summary: Use of the low-level GF(2^m) elliptic curve APIs with untrusted
explicit values for t... |
|
2024-10-16 |
View Details |
| CVE-2016-15040 |
The Kento Post View Counter plugin for WordPress is vulnerable to SQL Injection via the 'kento_pvc_g... |
|
2024-10-16 |
View Details |
| CVE-2024-22029 |
Insecure permissions in the packaging of tomcat allow local users that win a race during package ins... |
|
2024-10-16 |
View Details |
| CVE-2024-45711 |
SolarWinds Serv-U is vulnerable to a directory traversal vulnerability where remote code execution... |
HIGH |
2024-10-16 |
View Details |
| CVE-2024-4692 |
Improper Validation of Specified Quantity in Input vulnerability in OpenText OpenText Application Au... |
|
2024-10-16 |
View Details |