5.9

CVSS3.1

CVE-2024-33639 - WordPress PopupAlly plugin <= 2.1.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in AccessAlly PopupAlly allows Stored XSS.This issue affects PopupAlly: from n/a through 2.1.1.

πŸ“… Published: April 26, 2024, 7:19 a.m. πŸ”„ Last Modified: April 28, 2026, 4:09 p.m.

5.9

CVSS3.1

CVE-2024-33598 - WordPress Annual Archive plugin <= 1.6.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Twinpictures Annual Archive allows Stored XSS.This issue affects Annual Archive: from n/a through 1.6.0.

πŸ“… Published: April 26, 2024, 7:17 a.m. πŸ”„ Last Modified: April 28, 2026, 4:09 p.m.

7.4

CVSS3.1

CVE-2023-6096 - using a inappropriate encryption logic

Vladimir Kononovich, a Security Researcher has found a flaw that using a inappropriate encryption logic on the DVR. firmware encryption is broken and allows to decrypt. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer's report for details and workarounds.…

πŸ“… Published: April 26, 2024, 7:16 a.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

5.4

CVSS3.1

CVE-2024-33638 - WordPress Smart Maintenance Mode plugin <= 1.4.4 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery (CSRF) vulnerability in Brijesh Kothari Smart Maintenance Mode.This issue affects Smart Maintenance Mode: from n/a through 1.4.4.

πŸ“… Published: April 26, 2024, 7:12 a.m. πŸ”„ Last Modified: April 28, 2026, 4:09 p.m.

4.3

CVSS3.1

CVE-2024-33650 - WordPress Serious Slider plugin <= 1.2.4 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery (CSRF) vulnerability in Cryout Creations Serious Slider.This issue affects Serious Slider: from n/a through 1.2.4.

πŸ“… Published: April 26, 2024, 7:11 a.m. πŸ”„ Last Modified: April 28, 2026, 4:09 p.m.

5.4

CVSS3.1

CVE-2024-33651 - WordPress MF Gig Calendar plugin <= 1.2.1 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery (CSRF) vulnerability in Matthew Fries MF Gig Calendar.This issue affects MF Gig Calendar : from n/a through 1.2.1.

πŸ“… Published: April 26, 2024, 7:09 a.m. πŸ”„ Last Modified: April 28, 2026, 4:09 p.m.

8.9

CVSS3.1

CVE-2023-6095 - Remote Code Execution without authentication using memory overflow

Vladimir Kononovich, a Security Researcher has found a flaw that allows for a remote code execution on the DVR. An attacker could inject malicious HTTP headers into request packets to execute arbitrary code. The manufacturer has released patch firmware for the flaw, please refer to the manufacture…

πŸ“… Published: April 26, 2024, 7:09 a.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

7.5

CVSS3.1

CVE-2024-4056 - Denial of service condition in M-Files Server

Denial of service condition in M-Files Server in versions before 24.4.13592.4Β and after 23.11 (excluding 24.2 LTS) allows unauthenticated user to consume computing resources.

πŸ“… Published: April 26, 2024, 6:02 a.m. πŸ”„ Last Modified: Feb. 23, 2026, 10:10 a.m.

6.3

CVSS3.1

CVE-2024-3188 - Shortcodes Ultimate < 7.1.0 - Contributor+ Stored XSS

The WP Shortcodes Plugin β€” Shortcodes Ultimate WordPress plugin before 7.1.0 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Sit…

πŸ“… Published: April 26, 2024, 5 a.m. πŸ”„ Last Modified: May 14, 2025, 5:31 p.m.

8.1

CVSS3.1

CVE-2024-3075 - MM-email2image <= 0.2.5 - Contributor+ Stored XSS

The MM-email2image WordPress plugin through 0.2.5 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks

πŸ“… Published: April 26, 2024, 5 a.m. πŸ”„ Last Modified: June 10, 2025, 1:23 a.m.
Total resulsts: 349182
Page 10158 of 34,919
Β« previous page Β» next page
Filters