Month: March 2024

Node.js Translate module security bypass | CVE-2024-29042

March 28, 2024

NAME__________Node.js Translate module security bypassPlatforms Affected:Node.js Translate 2.0.2Risk Level:5.3Exploitability:Proof of ConceptConsequences:Bypass Security DESCRIPTION__________Node.js Translate module could allow a remote attacker...

Dassault Systèmes SOLIDWORKS Desktop code execution | CVE-2024-1848

March 28, 2024

NAME__________Dassault Systèmes SOLIDWORKS Desktop code executionPlatforms Affected:Dassault Systemes SOLIDWORKS Desktop Release SOLIDWORKS 2024 SP0 Dassault Systemes SOLIDWORKS Desktop Release SOLIDWORKS...

Campcodes Online Shopping System Script cross-site scripting | CVE-2024-2832

March 28, 2024

NAME__________Campcodes Online Shopping System Script cross-site scriptingPlatforms Affected:Campcodes Online Shopping System 1.0Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Campcodes Online Shopping System is vulnerable...

KaTeX denial of service | CVE-2024-28243

March 28, 2024

NAME__________KaTeX denial of servicePlatforms Affected:KaTeX KaTeX 0.16.9Risk Level:6.5Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________KaTeX is vulnerable to a denial of service, caused by...

Campcodes Online Marriage Registration System cross-site scripting | CVE-2024-2779

March 28, 2024

NAME__________Campcodes Online Marriage Registration System cross-site scriptingPlatforms Affected:Campcodes Online Marriage Registration System 1.0Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Campcodes Online Marriage Registration System...

KaTeX code execution | CVE-2024-28245

March 28, 2024

NAME__________KaTeX code executionPlatforms Affected:KaTeX KaTeX 0.16.9Risk Level:6.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________KaTeX could allow a remote authenticated attacker to execute arbitrary code on...

KaTeX security bypass | CVE-2024-28246

March 28, 2024

NAME__________KaTeX security bypassPlatforms Affected:KaTeX KaTeX 0.16.9Risk Level:5.5Exploitability:UnprovenConsequences:Bypass Security DESCRIPTION__________KaTeX could allow a remote authenticated attacker to bypass security restrictions, caused...

Survey Maker Plugin for WordPress cross-site scripting | CVE-2023-34423

March 28, 2024

NAME__________Survey Maker Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Survey Maker Plugin for WordPress 3.6.3Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Survey Maker Plugin for...

Campcodes Complete Online DJ Booking System cross-site scripting | CVE-2024-2712

March 28, 2024

NAME__________Campcodes Complete Online DJ Booking System cross-site scriptingPlatforms Affected:Campcodes Complete Online DJ Booking System 1.0Risk Level:6.1Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Campcodes Complete Online...

Netty denial of service | CVE-2024-29025

March 28, 2024

NAME__________Netty denial of servicePlatforms Affected:Netty Netty 4.1.107.FinalRisk Level:5.3Exploitability:UnprovenConsequences:Denial of Service DESCRIPTION__________Netty is vulnerable to a denial of service, caused by...

Campcodes Online Marriage Registration System cross-site scripting | CVE-2024-2778

March 28, 2024

KaTeX denial of service | CVE-2024-28244

March 28, 2024

IBM App Connect Enterprise and IBM Integration Bus for z/OS information disclosure | CVE-2024-22356

March 28, 2024

NAME__________IBM App Connect Enterprise and IBM Integration Bus for z/OS information disclosurePlatforms Affected:IBM App Connect Enterprise 11.0.0.1 IBM App Connect...

Locatoraid Store Locator Plugin for WordPress cross-site scripting | CVE-2024-30181

March 28, 2024

NAME__________Locatoraid Store Locator Plugin for WordPress cross-site scriptingPlatforms Affected: WordPress Locatoraid Store Locator Plugin for WordPress 3.9.30Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Locatoraid...

Survey Maker Plugin for WordPress security bypass | CVE-2023-35764

March 28, 2024

NAME__________Survey Maker Plugin for WordPress security bypassPlatforms Affected:WordPress Survey Maker Plugin for WordPress 3.6.3Risk Level:5.3Exploitability:HighConsequences:Bypass Security DESCRIPTION__________Survey Maker Plugin for...

Easy Social Feed Plugin for WordPress cross-site scripting | CVE-2024-30180

March 28, 2024

NAME__________Easy Social Feed Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Easy Social Feed Plugin for WordPress 6.5.3Risk Level:6.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Easy Social...

Element Pack Elementor Addons Plugin for WordPress cross-site scripting | CVE-2024-30185

March 28, 2024

NAME__________Element Pack Elementor Addons Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Element Pack Elementor Addons Plugin for WordPress 5.5.3Risk Level:6.5Exploitability:HighConsequences:Cross-Site Scripting...

IBM QRadar cross-site scripting | CVE-2024-28784

March 28, 2024

NAME__________IBM QRadar cross-site scriptingPlatforms Affected:IBM QRadar SIEM 7.5Risk Level:5.4Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________IBM QRadar SIEM 7.5 is vulnerable to cross-site scripting. This...

HT Mega Plugin for WordPress cross-site scripting | CVE-2024-30182

March 28, 2024

NAME__________ HT Mega Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress HT Mega Plugin for WordPress 2.4.3Risk Level:6.5Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________ HT Mega...

IBM QRadar cross-site scripting | CVE-2023-50960

March 28, 2024

NAME__________IBM QRadar cross-site scriptingPlatforms Affected:IBM QRadar SIEM 7.5Risk Level:4.8Exploitability:UnprovenConsequences:Cross-Site Scripting DESCRIPTION__________IBM QRadar SIEM 7.5 is vulnerable to stored cross-site scripting....

Breeze Plugin for WordPress cross-site scripting | CVE-2024-30188

March 28, 2024

NAME__________Breeze Plugin for WordPress cross-site scriptingPlatforms Affected:WordPress Breeze Plugin for WordPress 2.1.3Risk Level:5.9Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________Breeze Plugin for WordPress is vulnerable...

Express.js Express open redirect | CVE-2024-29041

March 28, 2024

NAME__________Express.js Express open redirectPlatforms Affected:Express.js Express 4.19.1 Express.js Express 5.0.0-alpha.1 Express.js Express 5.0.0-beta.2Risk Level:6.1Exploitability:UnprovenConsequences:Other DESCRIPTION__________Express.js Express could allow a remote...

TinyMCE cross-site scripting | CVE-2024-29203

March 28, 2024

NAME__________TinyMCE cross-site scriptingPlatforms Affected:TinyMCE TinyMCE 6.8.0Risk Level:4.3Exploitability:HighConsequences:Cross-Site Scripting DESCRIPTION__________TinyMCE is vulnerable to cross-site scripting, caused by improper validation of user-supplied...

Eclipse ThreadX buffer overflow | CVE-2024-2212

March 28, 2024

NAME__________Eclipse ThreadX buffer overflowPlatforms Affected:Eclipse ThreadX 6.0.0Risk Level:7.3Exploitability:UnprovenConsequences:Gain Access DESCRIPTION__________Eclipse ThreadX is vulnerable to a heap-based buffer overflow, caused by...

Month: March 2024

Node.js Translate module security bypass | CVE-2024-29042

Dassault Systèmes SOLIDWORKS Desktop code execution | CVE-2024-1848

Campcodes Online Shopping System Script cross-site scripting | CVE-2024-2832

KaTeX denial of service | CVE-2024-28243

Campcodes Online Marriage Registration System cross-site scripting | CVE-2024-2779

KaTeX code execution | CVE-2024-28245

KaTeX security bypass | CVE-2024-28246

Survey Maker Plugin for WordPress cross-site scripting | CVE-2023-34423

Campcodes Complete Online DJ Booking System cross-site scripting | CVE-2024-2712

Netty denial of service | CVE-2024-29025

Campcodes Online Marriage Registration System cross-site scripting | CVE-2024-2778

KaTeX denial of service | CVE-2024-28244

IBM App Connect Enterprise and IBM Integration Bus for z/OS information disclosure | CVE-2024-22356

Locatoraid Store Locator Plugin for WordPress cross-site scripting | CVE-2024-30181

Survey Maker Plugin for WordPress security bypass | CVE-2023-35764

Easy Social Feed Plugin for WordPress cross-site scripting | CVE-2024-30180

Element Pack Elementor Addons Plugin for WordPress cross-site scripting | CVE-2024-30185

IBM QRadar cross-site scripting | CVE-2024-28784

HT Mega Plugin for WordPress cross-site scripting | CVE-2024-30182

IBM QRadar cross-site scripting | CVE-2023-50960

Breeze Plugin for WordPress cross-site scripting | CVE-2024-30188

Express.js Express open redirect | CVE-2024-29041

TinyMCE cross-site scripting | CVE-2024-29203

Eclipse ThreadX buffer overflow | CVE-2024-2212

CVE Alert: CVE-2024-8856

CVE Alert: CVE-2024-10614

CVE Alert: CVE-2024-10645

CVE Alert: CVE-2024-11094

CVE Alert: CVE-2024-10592

You may have missed