7.1

CVSS3.1

CVE-2024-23459 - Multiple Arbitrary Creates/Overwrites by link following

An Improper Link Resolution Before File Access ('Link Following') vulnerability in Zscaler Client Connector on Mac allows a system file to be overwritten.This issue affects Zscaler Client Connector on Mac : before 3.7.

πŸ“… Published: May 2, 2024, 1:11 p.m. πŸ”„ Last Modified: Feb. 17, 2026, 5:58 p.m.

5.3

CVSS3.1

CVE-2023-41971 - Windows ZCC Upgrade DoS And Privilege Escalation Through RPC Control

An Improper Link Resolution Before File Access ('Link Following') vulnerability in Zscaler Client Connector on Windows allows a system file to be overwritten.This issue affects Client Connector on Windows: before 3.7.

πŸ“… Published: May 2, 2024, 1:11 p.m. πŸ”„ Last Modified: March 2, 2026, 7:14 p.m.

6

CVSS3.1

CVE-2023-41970 - Repair App local code execution with arbitrary privileges

An Improper Validation of Integrity Check Value vulnerability in Zscaler Client Connector on Windows during the Repair App functionality may allow Local Execution of Code.This issue affects Client Connector on Windows: before 4.1.0.62.

πŸ“… Published: May 2, 2024, 1:10 p.m. πŸ”„ Last Modified: Feb. 19, 2026, 7:33 p.m.

6.5

CVSS3.1

CVE-2023-28798 - Out-of-bounds write to heap in pacparser

An out-of-bounds write to heap in the pacparser library on Zscaler Client Connector on Mac may lead to arbitrary code execution.

πŸ“… Published: May 2, 2024, 1:10 p.m. πŸ”„ Last Modified: Feb. 20, 2026, 9:23 p.m.

5.9

CVSS3.1

CVE-2024-33950 - WordPress Archives Calendar Widget plugin <= 1.0.15 - Cross Site Scripting (XSS) vulnerability

Administrator Cross Site Scripting (XSS) in Archives Calendar Widget <= 1.0.15 versions.

πŸ“… Published: May 2, 2024, 11:32 a.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

6.5

CVSS3.1

CVE-2024-33951 - WordPress Perfect Pullquotes plugin <= 1.7.5 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Adam DeHaven Perfect Pullquotes allows Stored XSS.This issue affects Perfect Pullquotes: from n/a through 1.7.5.

πŸ“… Published: May 2, 2024, 11:31 a.m. πŸ”„ Last Modified: April 28, 2026, 4:09 p.m.

4.3

CVSS3.1

CVE-2024-33942 - WordPress Google Typography plugin <= 1.1.2 - Broken Access Control vulnerability

Missing Authorization vulnerability in Eric Alli Google Typography.This issue affects Google Typography: from n/a through 1.1.2.

πŸ“… Published: May 2, 2024, 11:29 a.m. πŸ”„ Last Modified: April 28, 2026, 4:09 p.m.

6.5

CVSS3.1

CVE-2024-33944 - WordPress WooCommerce AWeber Newsletter Subscription plugin <= 4.0.2 - Unauthenticated Access Token…

Missing Authorization vulnerability in Kestrel WooCommerce AWeber Newsletter Subscription.This issue affects WooCommerce AWeber Newsletter Subscription: from n/a through 4.0.2.

πŸ“… Published: May 2, 2024, 11:26 a.m. πŸ”„ Last Modified: April 28, 2026, 4:09 p.m.

4.3

CVSS3.1

CVE-2024-33956 - WordPress Custom WooCommerce Checkout Fields Editor plugin <= 1.3.0 - Broken Access Control vulnera…

Missing Authorization vulnerability in ThemeLocation Custom WooCommerce Checkout Fields Editor.This issue affects Custom WooCommerce Checkout Fields Editor: from n/a through 1.3.0.

πŸ“… Published: May 2, 2024, 11:24 a.m. πŸ”„ Last Modified: April 28, 2026, 4:09 p.m.

6.5

CVSS3.1

CVE-2024-33952 - WordPress Unique theme <= 0.3.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Justin Tadlock Unique allows Stored XSS.This issue affects Unique: from n/a through 0.3.0.

πŸ“… Published: May 2, 2024, 11:22 a.m. πŸ”„ Last Modified: April 28, 2026, 4:09 p.m.
Total resulsts: 349182
Page 10089 of 34,919
Β« previous page Β» next page
Filters