CVE Alert: CVE-2024-54383
Vulnerability Summary: CVE-2024-54383 Incorrect Privilege Assignment vulnerability in wpweb WooCommerce PDF Vouchers allows Privilege Escalation.This issue affects WooCommerce PDF Vouchers:...
Vulnerabilities
CVE Alert: CVE-2024-56050
Vulnerability Summary: CVE-2024-56050 Unrestricted Upload of File with Dangerous Type vulnerability in VibeThemes WPLMS allows Upload a Web Shell to...
CVE Alert: CVE-2024-56049
Vulnerability Summary: CVE-2024-56049 Path Traversal: '.../...//' vulnerability in VibeThemes WPLMS allows Path Traversal.This issue affects WPLMS: from n/a before 1.9.9.5.2....
CVE Alert: CVE-2024-56051
Vulnerability Summary: CVE-2024-56051 Improper Control of Generation of Code ('Code Injection') vulnerability in VibeThemes WPLMS allows Code Injection.This issue affects...
CVE Alert: CVE-2024-54381
Vulnerability Summary: CVE-2024-54381 Missing Authorization vulnerability in theDotstore Advance Menu Manager.This issue affects Advance Menu Manager: from n/a through 3.1.1....
CVE Alert: CVE-2024-56052
Vulnerability Summary: CVE-2024-56052 Unrestricted Upload of File with Dangerous Type vulnerability in VibeThemes WPLMS allows Upload a Web Shell to...
CVE Alert: CVE-2024-56054
Vulnerability Summary: CVE-2024-56054 Unrestricted Upload of File with Dangerous Type vulnerability in VibeThemes WPLMS allows Upload a Web Shell to...
CVE Alert: CVE-2024-56047
Vulnerability Summary: CVE-2024-56047 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in VibeThemes WPLMS allows...
CVE Alert: CVE-2024-56057
Vulnerability Summary: CVE-2024-56057 Unrestricted Upload of File with Dangerous Type vulnerability in VibeThemes WPLMS allows Upload a Web Shell to...
CVE Alert: CVE-2024-56055
Vulnerability Summary: CVE-2024-56055 Path Traversal: '.../...//' vulnerability in VibeThemes WPLMS allows Path Traversal.This issue affects WPLMS: from n/a before 1.9.9.5.2....
CVE Alert: CVE-2024-56048
Vulnerability Summary: CVE-2024-56048 Missing Authorization vulnerability in VibeThemes WPLMS allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects WPLMS:...
CVE Alert: CVE-2024-51470
Vulnerability Summary: CVE-2024-51470 IBM MQ 9.1 LTS, 9.2 LTS, 9.3 LTS, 9.3 CD, 9.4 LTS, 9.4 CD, IBM MQ Appliance...
CVE Alert: CVE-2024-56053
Vulnerability Summary: CVE-2024-56053 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in VibeThemes WPLMS allows...
CVE Alert: CVE-2024-49363
Vulnerability Summary: CVE-2024-49363 Misskey is an open source, federated social media platform. In affected versions FileServerService (media proxy) in github.com/misskey-dev/misskey...
CVE Alert: CVE-2024-52579
Vulnerability Summary: CVE-2024-52579 Misskey is an open source, federated social media platform. Some APIs using `HttpRequestService` do not properly check...
CVE Alert: CVE-2024-12741
Vulnerability Summary: CVE-2024-12741 A deserialization of untrusted data vulnerability exists in NI DAQExpress that may result in remote code execution....
CVE Alert: CVE-2024-12686
Vulnerability Summary: CVE-2024-12686 A vulnerability has been discovered in Privileged Remote Access (PRA) and Remote Support (RS) which can allow...
CVE Alert: CVE-2024-56140
Vulnerability Summary: CVE-2024-56140 Astro is a web framework for content-driven websites. In affected versions a bug in Astro’s CSRF-protection middleware...
CVE Alert: CVE-2024-53271
Vulnerability Summary: CVE-2024-53271 Envoy is a cloud-native high-performance edge/middle/service proxy. In affected versions envoy does not properly handle http 1.1...
CVE Alert: CVE-2024-53269
Vulnerability Summary: CVE-2024-53269 Envoy is a cloud-native high-performance edge/middle/service proxy. When additional address are not ip addresses, then the Happy...
CVE Alert: CVE-2024-53270
Vulnerability Summary: CVE-2024-53270 Envoy is a cloud-native high-performance edge/middle/service proxy. In affected versions `sendOverloadError` is going to assume the active...
CVE Alert: CVE-2022-40733
Vulnerability Summary: CVE-2022-40733 An access violation vulnerability exists in the DirectComposition functionality win32kbase.sys driver version 10.0.22000.593 as part of Windows...
CVE Alert: CVE-2024-41138
Vulnerability Summary: CVE-2024-41138 A library injection vulnerability exists in the com.microsoft.teams2.modulehost.app helper app of Microsoft Teams (work or school) 24046.2813.2770.1094...
CVE Alert: CVE-2022-40732
Vulnerability Summary: CVE-2022-40732 An access violation vulnerability exists in the DirectComposition functionality win32kbase.sys driver version 10.0.22000.593 as part of Windows...
