CVE Alert: CVE-2024-11457
Vulnerability Summary: CVE-2024-11457 The Feedpress Generator – External RSS Frontend Customizer plugin for WordPress is vulnerable to Reflected Cross-Site Scripting...
Vulnerabilities
CVE Alert: CVE-2024-53817
Vulnerability Summary: CVE-2024-53817 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Acowebs Product Labels...
CVE Alert: CVE-2024-54208
Vulnerability Summary: CVE-2024-54208 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Joni Halabi Block Controller allows...
CVE Alert: CVE-2024-54210
Vulnerability Summary: CVE-2024-54210 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CodexShaper Advanced Element Bucket Addons...
CVE Alert: CVE-2024-54209
Vulnerability Summary: CVE-2024-54209 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPFactory Awesome Shortcodes allows Reflected...
CVE Alert: CVE-2024-53815
Vulnerability Summary: CVE-2024-53815 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in PINPOINT.WORLD Pinpoint Booking...
CVE Alert: CVE-2024-54216
Vulnerability Summary: CVE-2024-54216 Path Traversal vulnerability in NotFound ARForms allows Path Traversal.This issue affects ARForms: from n/a through 6.4.1. Affected...
CVE Alert: CVE-2024-53826
Vulnerability Summary: CVE-2024-53826 Missing Authorization vulnerability in WPSight WPCasa allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects WPCasa:...
CVE Alert: CVE-2024-54205
Vulnerability Summary: CVE-2024-54205 Cross-Site Request Forgery (CSRF) vulnerability in Paloma Paloma Widget allows Cross Site Request Forgery.This issue affects Paloma...
CVE Alert: CVE-2024-54207
Vulnerability Summary: CVE-2024-54207 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Owen Cutajar & Hyder Jaffari...
CVE Alert: CVE-2024-54206
Vulnerability Summary: CVE-2024-54206 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in URBAN BASE Z-Downloads allows Stored...
CVE Alert: CVE-2024-54211
Vulnerability Summary: CVE-2024-54211 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Visualmodo Borderless allows Cross-Site Scripting...
CVE Alert: CVE-2024-11738
Vulnerability Summary: CVE-2024-11738 A flaw was found in Rustls 0.23.13 and related APIs. This vulnerability allows denial of service (panic)...
CVE Alert: CVE-2024-54213
Vulnerability Summary: CVE-2024-54213 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in zionbuilder.io WordPress Page Builder –...
CVE Alert: CVE-2024-54214
Vulnerability Summary: CVE-2024-54214 Unrestricted Upload of File with Dangerous Type vulnerability in NotFound Revy allows Upload a Web Shell to...
CVE Alert: CVE-2024-54212
Vulnerability Summary: CVE-2024-54212 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Noor alam Magical Addons For...
CVE Alert: CVE-2024-54137
Vulnerability Summary: CVE-2024-54137 liboqs is a C-language cryptographic library that provides implementations of post-quantum cryptography algorithms. A correctness error has...
CVE Alert: CVE-2024-54141
Vulnerability Summary: CVE-2024-54141 phpMyFAQ is an open source FAQ web application for PHP 8.1+ and MySQL, PostgreSQL and other databases....
CVE Alert: CVE-2024-50677
Vulnerability Summary: CVE-2024-50677 A cross-site scripting (XSS) vulnerability in OroPlatform CMS v5.1 allows attackers to execute arbitrary web scripts or...
CVE Alert: CVE-2024-30129
Vulnerability Summary: CVE-2024-30129 The HTTP host header can be manipulated and cause the application to behave in unexpected ways. Any...
CVE Alert: CVE-2024-42196
Vulnerability Summary: CVE-2024-42196 HCL Launch stores potentially sensitive information in log files that could be read by a local user...
CVE Alert: CVE-2024-11220
Vulnerability Summary: CVE-2024-11220 A local low-level user on the server machine with credentials to the running OAS services can create...
CVE Alert: CVE-2024-54135
Vulnerability Summary: CVE-2024-54135 ClipBucket V5 provides open source video hosting with PHP. ClipBucket-v5 Version 2.0 to Version 5.5.1 Revision 199...
CVE Alert: CVE-2024-54750
Vulnerability Summary: CVE-2024-54750 Ubiquiti U6-LR 6.6.65 was discovered to contain a hardcoded password vulnerability in /etc/shadow, which allows attackers to...
