| CVE-2021-4449 |
The ZoomSounds plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type... |
CRITICAL |
2024-10-16 |
View Details |
| CVE-2024-9873 |
The Community by PeepSo – Social Network, Membership, Registration, User Profiles, Premium – Mob... |
|
2024-10-16 |
View Details |
| CVE-2024-49247 |
: Authentication Bypass Using an Alternate Path or Channel vulnerability in sooskriszta, webforza Bu... |
|
2024-10-16 |
View Details |
| CVE-2021-4448 |
The Kaswara Modern VC Addons plugin for WordPress is vulnerable to authorization bypass in versions ... |
HIGH |
2024-10-16 |
View Details |
| CVE-2024-10018 |
Improper permission control in the mobile application (com.transsion.aivoiceassistant) can lead to t... |
|
2024-10-16 |
View Details |
| CVE-2024-48042 |
Improper Neutralization of Special Elements Used in a Template Engine vulnerability in Supsystic Con... |
|
2024-10-16 |
View Details |
| CVE-2021-4447 |
The Essential Addons for Elementor plugin for WordPress is vulnerable to privilege escalation in ve... |
HIGH |
2024-10-16 |
View Details |
| CVE-2024-9891 |
The Multiline files upload for contact form 7 plugin for WordPress is vulnerable to unauthorized plu... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-10024 |
A vulnerability, which was classified as critical, has been found in code-projects Pharmacy Manageme... |
|
2024-10-16 |
View Details |
| CVE-2021-4446 |
The Essential Addons for Elementor plugin for WordPress is vulnerable to authorization bypass in ver... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-9652 |
The Locatoraid Store Locator plugin for WordPress is vulnerable to Reflected Cross-Site Scripting vi... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-10023 |
A vulnerability classified as critical was found in code-projects Pharmacy Management System 1.0. Th... |
|
2024-10-16 |
View Details |
| CVE-2021-4445 |
The Premium Addons for Elementor plugin for WordPress is vulnerable to Arbitrary Option Updates in v... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-9649 |
The WP ULike – The Ultimate Engagement Toolkit for Websites plugin for WordPress is vulnerable to ... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2023-32196 |
A vulnerability has been identified whereby privilege escalation checks are not properly enforced fo... |
|
2024-10-16 |
View Details |
| CVE-2021-4444 |
The Product Filter by WooBeWoo plugin for WordPress is vulnerable to authorization bypass in version... |
|
2024-10-16 |
View Details |
| CVE-2024-9647 |
The Kama SpamBlock plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via $_POST v... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2023-32194 |
A vulnerability has been identified when granting a create or * global role for a resource type of "... |
|
2024-10-16 |
View Details |
| CVE-2021-4443 |
The WordPress Mega Menu plugin for WordPress is vulnerable to Arbitrary File Creation in versions up... |
CRITICAL |
2024-10-16 |
View Details |
| CVE-2024-9634 |
The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to PHP Ob... |
CRITICAL |
2024-10-16 |
View Details |
| CVE-2023-32193 |
A vulnerability has been identified in which unauthenticated cross-site
scripting (XSS) in Norman's... |
|
2024-10-16 |
View Details |
| CVE-2020-36839 |
The WP Lead Plus X plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up t... |
HIGH |
2024-10-16 |
View Details |
| CVE-2024-9521 |
The SEO Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via post meta in v... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2023-32192 |
A vulnerability has been identified in which unauthenticated cross-site
scripting (XSS) in the API ... |
|
2024-10-16 |
View Details |
| CVE-2020-36838 |
The Facebook Chat Plugin for WordPress is vulnerable to authorization bypass due to a missing capabi... |
HIGH |
2024-10-16 |
View Details |
| CVE-2024-9305 |
The AppPresser – Mobile App Framework plugin for WordPress is vulnerable to privilege escalation v... |
HIGH |
2024-10-16 |
View Details |
| CVE-2023-32191 |
When RKE provisions a cluster, it stores the cluster state in a configmap called `full-cluster-state... |
|
2024-10-16 |
View Details |
| CVE-2020-36837 |
The ThemeGrill Demo Importer plugin for WordPress is vulnerable to authentication bypass due to a mi... |
CRITICAL |
2024-10-16 |
View Details |
| CVE-2024-9105 |
The UltimateAI plugin for WordPress is vulnerable to authentication bypass in versions up to, and in... |
CRITICAL |
2024-10-16 |
View Details |
| CVE-2020-36841 |
The WooCommerce Smart Coupons plugin for WordPress is vulnerable to authorization bypass due to a mi... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2020-36836 |
The WP Fastest Cache plugin for WordPress is vulnerable to unauthorized arbitrary file deletion in v... |
|
2024-10-16 |
View Details |
| CVE-2024-9104 |
The UltimateAI plugin for WordPress is vulnerable to authentication bypass in all versions up to, an... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-8040 |
An authorization bypass through user-controlled key vulnerability affecting 3DSwym in 3DSwymer on Re... |
|
2024-10-16 |
View Details |
| CVE-2020-36835 |
The Migration, Backup, Staging – WPvivid plugin for WordPress is vulnerable to sensitive informati... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-8787 |
The Smart Online Order for Clover plugin for WordPress is vulnerable to Reflected Cross-Site Scripti... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-6380 |
A reflected Cross-site Scripting (XSS) vulnerability affecting ENOVIA Collaborative Industry Innovat... |
|
2024-10-16 |
View Details |
| CVE-2020-36834 |
The Discount Rules for WooCommerce plugin for WordPress is vulnerable to missing authorization via s... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-8541 |
The Discount Rules for WooCommerce – Create Smart WooCommerce Coupons & Discounts, Bulk Discount, ... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-10022 |
A vulnerability classified as critical has been found in code-projects Pharmacy Management System 1.... |
|
2024-10-16 |
View Details |
| CVE-2020-36833 |
The Indeed Membership Pro plugin for WordPress is vulnerable to authorization bypass due to missing ... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-49340 |
IBM Watson Studio Local 1.2.3 is vulnerable to cross-site request forgery which could allow an attac... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-10021 |
A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been rated as crit... |
|
2024-10-16 |
View Details |
| CVE-2020-36832 |
The Ultimate Membership Pro plugin for WordPress is vulnerable to Authentication Bypass in versions ... |
CRITICAL |
2024-10-16 |
View Details |
| CVE-2023-32190 |
mlocate's %post script allows RUN_UPDATEDB_AS user to make arbitrary files world readable by abusing... |
|
2024-10-16 |
View Details |
| CVE-2020-36831 |
The NextScripts: Social Networks Auto-Poster plugin for WordPress is vulnerable to authorization byp... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2024-8921 |
The Zita Elementor Site Library plugin for WordPress is vulnerable to Stored Cross-Site Scripting vi... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2019-25217 |
The SiteGround Optimizer plugin for WordPress is vulnerable to authorization bypass leading to Remot... |
CRITICAL |
2024-10-16 |
View Details |
| CVE-2024-9444 |
The ElementsReady Addons for Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scrip... |
MEDIUM |
2024-10-16 |
View Details |
| CVE-2019-25216 |
The Rich Review plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the POST body ... |
HIGH |
2024-10-16 |
View Details |
| CVE-2024-9858 |
There exists an insecure default user permission in Google Cloud Migrate to containers from version ... |
|
2024-10-16 |
View Details |