CVE Alert: CVE-2024-9241
Vulnerability Summary: CVE-2024-9241 The PDF Image Generator plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use...
CVE
CVE Alert: CVE-2024-9060
Vulnerability Summary: CVE-2024-9060 The AVIF & SVG Uploader plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File...
CVE Alert: CVE-2024-9118
Vulnerability Summary: CVE-2024-9118 The QS Dark Mode Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File...
CVE Alert: CVE-2023-3441
Vulnerability Summary: CVE-2023-3441 An issue has been discovered in GitLab EE/CE affecting all versions starting from 8.0 before 16.4. The...
CVE Alert: CVE-2024-9289
Vulnerability Summary: CVE-2024-9289 The WordPress & WooCommerce Affiliate Program plugin for WordPress is vulnerable to authentication bypass in all versions...
CVE Alert: CVE-2024-41276
Vulnerability Summary: CVE-2024-41276 A vulnerability in Kaiten version 57.131.12 and earlier allows attackers to bypass the PIN code authentication mechanism....
CVE Alert: CVE-2024-9405
Vulnerability Summary: CVE-2024-9405 An incorrect limitation of a path to a restricted directory (path traversal) has been detected in Pluck...
CVE Alert: CVE-2024-44744
Vulnerability Summary: CVE-2024-44744 An issue in Malwarebytes Premium Security v5.0.0.883 allows attackers to execute arbitrary code via placing crafted binaries...
CVE Alert: CVE-2023-7273
Vulnerability Summary: CVE-2023-7273 Cross site request forgery in Kiteworks OwnCloud allows an unauthenticated attacker to forge requests. If a request...
CVE Alert: CVE-2024-30132
Vulnerability Summary: CVE-2024-30132 HCL Nomad server on Domino did not configure certain HTTP Security headers by default which could allow...
CVE Alert: CVE-2024-45967
Vulnerability Summary: CVE-2024-45967 Pagekit 1.0.18 is vulnerable to Cross Site Scripting (XSS) in index.php/admin/site/widget. Affected Endpoints: No affected endpoints listed....
CVE Alert: CVE-2024-25632
Vulnerability Summary: CVE-2024-25632 eLabFTW is an open source electronic lab notebook for research labs. In the context of eLabFTW, an...
CVE Alert: CVE-2024-25661
Vulnerability Summary: CVE-2024-25661 In Infinera TNMS (Transcend Network Management System) 19.10.3, cleartext storage of sensitive information in memory of the...
CVE Alert: CVE-2024-45408
Vulnerability Summary: CVE-2024-45408 eLabFTW is an open source electronic lab notebook for research labs. An incorrect permission check has been...
CVE Alert: CVE-2024-41673
Vulnerability Summary: CVE-2024-41673 Decidim is a participatory democracy framework. The version control feature used in resources is subject to potential...
CVE Alert: CVE-2024-25659
Vulnerability Summary: CVE-2024-25659 In Infinera TNMS (Transcend Network Management System) 19.10.3, an insecure default configuration of the internal SFTP server...
CVE Alert: CVE-2024-44610
Vulnerability Summary: CVE-2024-44610 PCAN-Ethernet Gateway FD before 1.3.0 and PCAN-Ethernet Gateway before 2.11.0 are vulnerable to Command injection. Affected Endpoints:...
CVE Alert: CVE-2024-47534
Vulnerability Summary: CVE-2024-47534 go-tuf is a Go implementation of The Update Framework (TUF). The go-tuf client inconsistently traces the delegations....
CVE Alert: CVE-2024-47071
Vulnerability Summary: CVE-2024-47071 OSS Endpoint Manager is an endpoint manager module for FreePBX. OSS Endpoint Manager module activation can allow...
CVE Alert: CVE-2024-25660
Vulnerability Summary: CVE-2024-25660 The WebDAV service in Infinera TNMS (Transcend Network Management System) 19.10.3 allows a low-privileged remote attacker to...
CVE Alert: CVE-2024-9403
Vulnerability Summary: CVE-2024-9403 Memory safety bugs present in Firefox 130. Some of these bugs showed evidence of memory corruption and...
CVE Alert: CVE-2024-9402
Vulnerability Summary: CVE-2024-9402 Memory safety bugs present in Firefox 130, Firefox ESR 128.2, and Thunderbird 128.2. Some of these bugs...
CVE Alert: CVE-2024-9392
Vulnerability Summary: CVE-2024-9392 A compromised content process could have allowed for the arbitrary loading of cross-origin pages. This vulnerability affects...
CVE Alert: CVE-2024-9396
Vulnerability Summary: CVE-2024-9396 It is currently unknown if this issue is exploitable but a condition may arise where the structured...
