| CVE-2020-36835 |
The Migration, Backup, Staging – WPvivid plugin for WordPress is vulnerable to sensitive informati... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-48030 |
Deserialization of Untrusted Data vulnerability in Gabriele Valenti Telecash Ricaricaweb allows Obje... |
|
2024-10-16 |
View Details |
| CVE-2024-8507 |
The File Manager Pro plugin for WordPress is vulnerable to Cross-Site Request Forgery in all version... |
HIGH |
2024-10-16 |
View Details |
| CVE-2020-36834 |
The Discount Rules for WooCommerce plugin for WordPress is vulnerable to missing authorization via s... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-48029 |
: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclus... |
|
2024-10-16 |
View Details |
| CVE-2023-7294 |
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized dat... |
HIGH |
2024-10-16 |
View Details |
| CVE-2020-36833 |
The Indeed Membership Pro plugin for WordPress is vulnerable to authorization bypass due to missing ... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-48028 |
Deserialization of Untrusted Data vulnerability in Boyan Raichev IP Loc8 allows Object Injection.Thi... |
|
2024-10-16 |
View Details |
| CVE-2023-7293 |
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized acc... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2020-36832 |
The Ultimate Membership Pro plugin for WordPress is vulnerable to Authentication Bypass in versions ... |
CRITICAL |
2024-10-16 |
View Details |
| CVE-2024-48027 |
Unrestricted Upload of File with Dangerous Type vulnerability in xaraartech External featured image ... |
|
2024-10-16 |
View Details |
| CVE-2023-7292 |
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized not... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2020-36831 |
The NextScripts: Social Networks Auto-Poster plugin for WordPress is vulnerable to authorization byp... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-48026 |
Deserialization of Untrusted Data vulnerability in Grayson Robbins Disc Golf Manager allows Object I... |
|
2024-10-16 |
View Details |
| CVE-2023-7291 |
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized mod... |
HIGH |
2024-10-16 |
View Details |
| CVE-2019-25217 |
The SiteGround Optimizer plugin for WordPress is vulnerable to authorization bypass leading to Remot... |
CRITICAL |
2024-10-16 |
View Details |
| CVE-2024-47649 |
Unrestricted Upload of File with Dangerous Type vulnerability in THATplugin Iconize.This issue affec... |
|
2024-10-16 |
View Details |
| CVE-2023-7290 |
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized acc... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2019-25216 |
The Rich Review plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the POST body ... |
HIGH |
2024-10-16 |
View Details |
| CVE-2024-47645 |
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Saji... |
|
2024-10-16 |
View Details |
| CVE-2023-7289 |
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized API... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2019-25215 |
The ARI-Adminer plugin for WordPress is vulnerable to authorization bypass due to a lack of file acc... |
HIGH |
2024-10-16 |
View Details |
| CVE-2024-47637 |
: Relative Path Traversal vulnerability in LiteSpeed Technologies LiteSpeed Cache allows Path Traver... |
|
2024-10-16 |
View Details |
| CVE-2023-7288 |
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized dat... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2019-25214 |
The ShopWP plugin for WordPress is vulnerable to authorization bypass due to a missing capability ch... |
HIGH |
2024-10-16 |
View Details |
| CVE-2024-47351 |
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in The ... |
|
2024-10-16 |
View Details |
| CVE-2023-7287 |
The Paytium: Mollie payment forms & donations plugin for WordPress is vulnerable to unauthorized sub... |
|
2024-10-16 |
View Details |
| CVE-2019-25213 |
The Advanced Access Manager plugin for WordPress is vulnerable to Unauthenticated Arbitrary File Rea... |
CRITICAL |
2024-10-16 |
View Details |
| CVE-2024-22034 |
Attackers could put the special files in .osc into the actual package sources (e.g. _apiurl). This a... |
|
2024-10-16 |
View Details |
| CVE-2023-7286 |
The plugin ACF Quick Edit Fields for WordPress is vulnerable to Insecure Direct Object Reference in ... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2018-25105 |
The File Manager plugin for WordPress is vulnerable to authorization bypass due to a missing capabi... |
CRITICAL |
2024-10-16 |
View Details |
| CVE-2024-22033 |
The OBS service obs-service-download_url was vulnerable to a command injection vulnerability. The at... |
|
2024-10-16 |
View Details |
| CVE-2022-4974 |
The Freemius SDK, as used by hundreds of WordPress plugin and theme developers, was vulnerable to Cr... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2017-20192 |
The Formidable Form Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via mu... |
HIGH |
2024-10-16 |
View Details |
| CVE-2024-22032 |
A vulnerability has been identified in which an RKE1 cluster keeps
constantly reconciling when secr... |
|
2024-10-16 |
View Details |
| CVE-2022-4973 |
WordPress Core, in versions up to 6.0.2, is vulnerable to Authenticated Stored Cross-Site Scripting ... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2016-15041 |
The MainWP Dashboard – The Private WordPress Manager for Multiple Website Maintenance plugin for W... |
HIGH |
2024-10-16 |
View Details |
| CVE-2024-22030 |
A vulnerability has been identified within Rancher that can be exploited
in narrow circumstances th... |
|
2024-10-16 |
View Details |
| CVE-2022-4972 |
The Download Monitor plugin for WordPress is vulnerable to authorization bypass due to a missing cap... |
HIGH |
2024-10-16 |
View Details |
| CVE-2016-15040 |
The Kento Post View Counter plugin for WordPress is vulnerable to SQL Injection via the 'kento_pvc_g... |
|
2024-10-16 |
View Details |
| CVE-2024-22029 |
Insecure permissions in the packaging of tomcat allow local users that win a race during package ins... |
|
2024-10-16 |
View Details |
| CVE-2022-4971 |
The Sassy Social Share plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2012-10018 |
The Mapplic and Mapplic Lite plugins for WordPress are vulnerable to Server-Side Request Forgery in ... |
HIGH |
2024-10-16 |
View Details |
| CVE-2023-32189 |
Insecure handling of ssh keys used to bootstrap clients allows local attackers to potentially gain a... |
|
2024-10-16 |
View Details |
| CVE-2021-4451 |
The NinjaFirewall plugin for WordPress is vulnerable to Authenticated PHAR Deserialization in versio... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-9937 |
The Woo Manage Fraud Orders plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-49271 |
: Improper Neutralization of Special Elements Used in a Template Engine vulnerability in Unlimited E... |
|
2024-10-16 |
View Details |
| CVE-2021-4450 |
The Post Grid plugin for WordPress is vulnerable to blind SQL Injection via post metadata in version... |
HIGH |
2024-10-16 |
View Details |
| CVE-2024-9888 |
The ElementInvader Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scri... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-49257 |
Unrestricted Upload of File with Dangerous Type vulnerability in Denis Azz Anonim Posting allows Upl... |
|
2024-10-16 |
View Details |