CVE Alert: CVE-2024-8786
Vulnerability Summary: CVE-2024-8786 The Auto Featured Image from Title plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to...
Vulnerabilities
CVE Alert: CVE-2024-9224
Vulnerability Summary: CVE-2024-9224 The Hello World plugin for WordPress is vulnerable to Arbitrary File Reading in all versions up to,...
CVE Alert: CVE-2024-9265
Vulnerability Summary: CVE-2024-9265 The Echo RSS Feed Post Generator plugin for WordPress is vulnerable to privilege escalation in all versions...
CVE Alert: CVE-2024-9228
Vulnerability Summary: CVE-2024-9228 The Loggedin – Limit Active Logins plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to...
CVE Alert: CVE-2024-9209
Vulnerability Summary: CVE-2024-9209 The WP Search Analytics plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use...
CVE Alert: CVE-2024-9220
Vulnerability Summary: CVE-2024-9220 The LH Copy Media File plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the...
CVE Alert: CVE-2024-9241
Vulnerability Summary: CVE-2024-9241 The PDF Image Generator plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use...
CVE Alert: CVE-2024-9060
Vulnerability Summary: CVE-2024-9060 The AVIF & SVG Uploader plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File...
CVE Alert: CVE-2024-9118
Vulnerability Summary: CVE-2024-9118 The QS Dark Mode Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File...
CVE Alert: CVE-2023-3441
Vulnerability Summary: CVE-2023-3441 An issue has been discovered in GitLab EE/CE affecting all versions starting from 8.0 before 16.4. The...
CVE Alert: CVE-2024-9289
Vulnerability Summary: CVE-2024-9289 The WordPress & WooCommerce Affiliate Program plugin for WordPress is vulnerable to authentication bypass in all versions...
CVE Alert: CVE-2024-30132
Vulnerability Summary: CVE-2024-30132 HCL Nomad server on Domino did not configure certain HTTP Security headers by default which could allow...
CVE Alert: CVE-2024-41276
Vulnerability Summary: CVE-2024-41276 A vulnerability in Kaiten version 57.131.12 and earlier allows attackers to bypass the PIN code authentication mechanism....
CVE Alert: CVE-2024-9405
Vulnerability Summary: CVE-2024-9405 An incorrect limitation of a path to a restricted directory (path traversal) has been detected in Pluck...
CVE Alert: CVE-2024-44744
Vulnerability Summary: CVE-2024-44744 An issue in Malwarebytes Premium Security v5.0.0.883 allows attackers to execute arbitrary code via placing crafted binaries...
CVE Alert: CVE-2023-7273
Vulnerability Summary: CVE-2023-7273 Cross site request forgery in Kiteworks OwnCloud allows an unauthenticated attacker to forge requests. If a request...
CVE Alert: CVE-2024-45967
Vulnerability Summary: CVE-2024-45967 Pagekit 1.0.18 is vulnerable to Cross Site Scripting (XSS) in index.php/admin/site/widget. Affected Endpoints: No affected endpoints listed....
CVE Alert: CVE-2024-25632
Vulnerability Summary: CVE-2024-25632 eLabFTW is an open source electronic lab notebook for research labs. In the context of eLabFTW, an...
CVE Alert: CVE-2024-25661
Vulnerability Summary: CVE-2024-25661 In Infinera TNMS (Transcend Network Management System) 19.10.3, cleartext storage of sensitive information in memory of the...
CVE Alert: CVE-2024-45408
Vulnerability Summary: CVE-2024-45408 eLabFTW is an open source electronic lab notebook for research labs. An incorrect permission check has been...
CVE Alert: CVE-2024-41673
Vulnerability Summary: CVE-2024-41673 Decidim is a participatory democracy framework. The version control feature used in resources is subject to potential...
CVE Alert: CVE-2024-25659
Vulnerability Summary: CVE-2024-25659 In Infinera TNMS (Transcend Network Management System) 19.10.3, an insecure default configuration of the internal SFTP server...
CVE Alert: CVE-2024-44610
Vulnerability Summary: CVE-2024-44610 PCAN-Ethernet Gateway FD before 1.3.0 and PCAN-Ethernet Gateway before 2.11.0 are vulnerable to Command injection. Affected Endpoints:...
CVE Alert: CVE-2024-47534
Vulnerability Summary: CVE-2024-47534 go-tuf is a Go implementation of The Update Framework (TUF). The go-tuf client inconsistently traces the delegations....
