| CVE-2012-10018 |
The Mapplic and Mapplic Lite plugins for WordPress are vulnerable to Server-Side Request Forgery in ... |
HIGH |
2024-10-16 |
View Details |
| CVE-2023-32189 |
Insecure handling of ssh keys used to bootstrap clients allows local attackers to potentially gain a... |
|
2024-10-16 |
View Details |
| CVE-2024-10018 |
Improper permission control in the mobile application (com.transsion.aivoiceassistant) can lead to t... |
|
2024-10-16 |
View Details |
| CVE-2024-45710 |
SolarWinds Platform is susceptible to an Uncontrolled Search Path Element Local Privilege Escalation... |
|
2024-10-16 |
View Details |
| CVE-2024-4690 |
Improper Restriction of XML External Entity Reference vulnerability in OpenText Application Automati... |
|
2024-10-16 |
View Details |
| CVE-2024-9937 |
The Woo Manage Fraud Orders plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-49271 |
: Improper Neutralization of Special Elements Used in a Template Engine vulnerability in Unlimited E... |
|
2024-10-16 |
View Details |
| CVE-2024-45693 |
Users logged into the Apache CloudStack's web interface can be tricked to submit malicious CSRF requ... |
|
2024-10-16 |
View Details |
| CVE-2024-4211 |
Improper Validation of Specified Quantity in Input vulnerability in OpenText OpenText Application Au... |
|
2024-10-16 |
View Details |
| CVE-2024-9888 |
The ElementInvader Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scri... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-49257 |
Unrestricted Upload of File with Dangerous Type vulnerability in Denis Azz Anonim Posting allows Upl... |
|
2024-10-16 |
View Details |
| CVE-2024-45462 |
The logout operation in the CloudStack web interface does not expire the user session completely whi... |
|
2024-10-16 |
View Details |
| CVE-2024-4189 |
Improper Restriction of XML External Entity Reference vulnerability in OpenText Application Automati... |
|
2024-10-16 |
View Details |
| CVE-2024-9873 |
The Community by PeepSo – Social Network, Membership, Registration, User Profiles, Premium – Mob... |
|
2024-10-16 |
View Details |
| CVE-2024-49247 |
: Authentication Bypass Using an Alternate Path or Channel vulnerability in sooskriszta, webforza Bu... |
|
2024-10-16 |
View Details |
| CVE-2024-45461 |
The CloudStack Quota feature allows cloud administrators to implement a quota or usage limit system ... |
|
2024-10-16 |
View Details |
| CVE-2024-4184 |
Improper Restriction of XML External Entity Reference vulnerability in OpenText Application Automati... |
|
2024-10-16 |
View Details |
| CVE-2024-10018 |
Improper permission control in the mobile application (com.transsion.aivoiceassistant) can lead to t... |
|
2024-10-16 |
View Details |
| CVE-2024-48042 |
Improper Neutralization of Special Elements Used in a Template Engine vulnerability in Supsystic Con... |
|
2024-10-16 |
View Details |
| CVE-2024-9937 |
The Woo Manage Fraud Orders plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-45219 |
Account users in Apache CloudStack by default are allowed to upload and register templates for deplo... |
|
2024-10-16 |
View Details |
| CVE-2024-46606 |
A cross-site scripting (XSS) vulnerability in the component /admin.php?page=photo of Piwigo v14.5.0 ... |
|
2024-10-16 |
View Details |
| CVE-2024-9891 |
The Multiline files upload for contact form 7 plugin for WordPress is vulnerable to unauthorized plu... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-10024 |
A vulnerability, which was classified as critical, has been found in code-projects Pharmacy Manageme... |
|
2024-10-16 |
View Details |
| CVE-2024-8787 |
The Smart Online Order for Clover plugin for WordPress is vulnerable to Reflected Cross-Site Scripti... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-45217 |
Insecure Default Initialization of Resource vulnerability in Apache Solr.
New ConfigSets that are c... |
|
2024-10-16 |
View Details |
| CVE-2024-46605 |
A cross-site scripting (XSS) vulnerability in the component /admin.php?page=album of Piwigo v14.5.0 ... |
|
2024-10-16 |
View Details |
| CVE-2024-9652 |
The Locatoraid Store Locator plugin for WordPress is vulnerable to Reflected Cross-Site Scripting vi... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-10023 |
A vulnerability classified as critical was found in code-projects Pharmacy Management System 1.0. Th... |
|
2024-10-16 |
View Details |
| CVE-2024-45216 |
Improper Authentication vulnerability in Apache Solr.
Solr instances using the PKIAuthenticationPlu... |
|
2024-10-16 |
View Details |
| CVE-2024-45072 |
IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to an XML External Entity Injection (XXE)... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-9649 |
The WP ULike – The Ultimate Engagement Toolkit for Websites plugin for WordPress is vulnerable to ... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2023-32196 |
A vulnerability has been identified whereby privilege escalation checks are not properly enforced fo... |
|
2024-10-16 |
View Details |
| CVE-2023-7296 |
The BigBlueButton plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the the mode... |
|
2024-10-16 |
View Details |
| CVE-2024-45071 |
IBM WebSphere Application Server 8.5 and 9.0 is vulnerable to stored cross-site scripting. This vuln... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-9647 |
The Kama SpamBlock plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via $_POST v... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2023-32194 |
A vulnerability has been identified when granting a create or * global role for a resource type of "... |
|
2024-10-16 |
View Details |
| CVE-2023-7295 |
The Video Grid plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the search_t... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-38814 |
An authenticated SQL injection vulnerability in VMware HCX was privately reported to VMware. A
mali... |
|
2024-10-16 |
View Details |
| CVE-2024-9634 |
The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to PHP Ob... |
CRITICAL |
2024-10-16 |
View Details |
| CVE-2023-32193 |
A vulnerability has been identified in which unauthenticated cross-site
scripting (XSS) in Norman's... |
|
2024-10-16 |
View Details |
| CVE-2023-22649 |
A vulnerability has been identified which may lead to sensitive data being leaked into Rancher's aud... |
|
2024-10-16 |
View Details |
| CVE-2024-20512 |
A vulnerability in the web-based management interface of Cisco Unified Contact Center Management Por... |
|
2024-10-16 |
View Details |
| CVE-2024-9521 |
The SEO Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via post meta in v... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2023-32192 |
A vulnerability has been identified in which unauthenticated cross-site
scripting (XSS) in the API ... |
|
2024-10-16 |
View Details |
| CVE-2021-4452 |
The Google Language Translator plugin for WordPress is vulnerable to Reflected Cross-Site Scripting ... |
HIGH |
2024-10-16 |
View Details |
| CVE-2024-20463 |
A vulnerability in the web-based management interface of Cisco ATA 190 Series Analog Telephone Adapt... |
|
2024-10-16 |
View Details |
| CVE-2024-9305 |
The AppPresser – Mobile App Framework plugin for WordPress is vulnerable to privilege escalation v... |
HIGH |
2024-10-16 |
View Details |
| CVE-2023-32191 |
When RKE provisions a cluster, it stores the cluster state in a configmap called `full-cluster-state... |
|
2024-10-16 |
View Details |
| CVE-2020-36842 |
The Migration, Backup, Staging – WPvivid plugin for WordPress is vulnerable to arbitrary file uplo... |
HIGH |
2024-10-16 |
View Details |