CVE Alert: CVE-2024-11466
Vulnerability Summary: CVE-2024-11466 The Intro Tour Tutorial DeepPresentation plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'tab'...
Vulnerabilities
CVE Alert: CVE-2024-11814
Vulnerability Summary: CVE-2024-11814 The Additional Custom Order Status for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via...
CVE Alert: CVE-2024-10567
Vulnerability Summary: CVE-2024-10567 The TI WooCommerce Wishlist plugin for WordPress is vulnerable to unauthorized modification of data due to a...
CVE Alert: CVE-2024-11880
Vulnerability Summary: CVE-2024-11880 The B Testimonial – testimonial plugin for WP plugin for WordPress is vulnerable to Stored Cross-Site Scripting...
CVE Alert: CVE-2024-10787
Vulnerability Summary: CVE-2024-10787 The LA-Studio Element Kit for Elementor plugin for WordPress is vulnerable to Information Exposure in all versions...
CVE Alert: CVE-2024-11952
Vulnerability Summary: CVE-2024-11952 The Classic Addons – WPBakery Page Builder plugin for WordPress is vulnerable to Limited Local PHP File...
CVE Alert: CVE-2024-12107
Vulnerability Summary: CVE-2024-12107 Double-Free Vulnerability in uD3TN BPv7 Caused by Malformed Endpoint Identifier allows remote attacker to reliably cause DoS...
CVE Alert: CVE-2024-8962
Vulnerability Summary: CVE-2024-8962 The WPBITS Addons For Elementor Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via...
CVE Alert: CVE-2024-54158
Vulnerability Summary: CVE-2024-54158 In JetBrains YouTrack before 2024.3.52635 potential spoofing attack was possible via lack of Punycode encoding Affected Endpoints:...
CVE Alert: CVE-2024-54153
Vulnerability Summary: CVE-2024-54153 In JetBrains YouTrack before 2024.3.51866 unauthenticated database backup download was possible via vulnerable query parameter Affected Endpoints:...
CVE Alert: CVE-2024-11854
Vulnerability Summary: CVE-2024-11854 The Listdom – Business Directory and Classified Ads Listings WordPress Plugin plugin for WordPress is vulnerable to...
CVE Alert: CVE-2024-11935
Vulnerability Summary: CVE-2024-11935 The Email Address Obfuscation plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘class’ parameter...
CVE Alert: CVE-2024-54154
Vulnerability Summary: CVE-2024-54154 In JetBrains YouTrack before 2024.3.51866 system takeover was possible through path traversal in plugin sandbox Affected Endpoints:...
CVE Alert: CVE-2024-54155
Vulnerability Summary: CVE-2024-54155 In JetBrains YouTrack before 2024.3.51866 improper access control allowed listing of project names during app import without...
CVE Alert: CVE-2024-54157
Vulnerability Summary: CVE-2024-54157 In JetBrains YouTrack before 2024.3.52635 potential ReDoS was possible due to vulnerable RegExp in Ruby syntax detector...
CVE Alert: CVE-2024-54156
Vulnerability Summary: CVE-2024-54156 In JetBrains YouTrack before 2024.3.52635 multiple merge functions were vulnerable to prototype pollution attack Affected Endpoints: No...
CVE Alert: CVE-2024-40745
Vulnerability Summary: CVE-2024-40745 Reflected Cross site scripting vulnerability in Convert Forms component for Joomla in versions before 4.4.8. Affected Endpoints:...
CVE Alert: CVE-2024-11643
Vulnerability Summary: CVE-2024-11643 The Accessibility by AllAccessible plugin for WordPress is vulnerable to unauthorized modification of data that can lead...
CVE Alert: CVE-2024-51465
Vulnerability Summary: CVE-2024-51465 IBM App Connect Enterprise Certified Container 11.4, 11.5, 11.6, 12.0, 12.1, 12.2, and 12.3 could allow a...
CVE Alert: CVE-2024-7488
Vulnerability Summary: CVE-2024-7488 Improper Input Validation vulnerability in RestApp Inc. Online Ordering System allows Integer Attacks.This issue affects Online Ordering...
CVE Alert: CVE-2024-12138
Vulnerability Summary: CVE-2024-12138 A vulnerability classified as critical was found in horilla up to 1.2.1. This vulnerability affects the function...
CVE Alert: CVE-2024-54002
Vulnerability Summary: CVE-2024-54002 Dependency-Track is a Component Analysis platform that allows organizations to identify and reduce risk in the software...
CVE Alert: CVE-2024-53614
Vulnerability Summary: CVE-2024-53614 A hardcoded decryption key in Thinkware Cloud APK v4.3.46 allows attackers to access sensitive data and execute...
CVE Alert: CVE-2024-12196
Vulnerability Summary: CVE-2024-12196 Incorrect authorization in the permission component in Devolutions Server 2024.3.7.0 and earlier allows an authenticated user to...
