8.8

CVSS3.1

CVE-2023-51515 - WordPress Uncode Core plugin <= 2.8.8 - Privilege Escalation vulnerability

Missing Authorization vulnerability in Undsgn Uncode Core allows Privilege Escalation.This issue affects Uncode Core: from n/a through 2.8.8.

πŸ“… Published: April 12, 2024, 2:43 p.m. πŸ”„ Last Modified: April 28, 2026, 4:09 p.m.

4.3

CVSS3.1

CVE-2023-51499 - WordPress WooCommerce Shipping Per Product plugin <= 2.5.4 - Broken Access Control vulnerability

Missing Authorization vulnerability in WooCommerce WooCommerce Shipping Per Product.This issue affects WooCommerce Shipping Per Product: from n/a through 2.5.4.

πŸ“… Published: April 12, 2024, 2:37 p.m. πŸ”„ Last Modified: April 28, 2026, 4:09 p.m.

5.3

CVSS3.1

CVE-2023-52211 - WordPress WP Job Manager plugin <= 2.0.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in Automattic WP Job Manager.This issue affects WP Job Manager: from n/a through 2.0.0.

πŸ“… Published: April 12, 2024, 2:33 p.m. πŸ”„ Last Modified: April 28, 2026, 4:09 p.m.

3.7

CVSS3.1

CVE-2024-3689 - Zhejiang Land Zongheng Network Technology O2OA information disclosure

A vulnerability classified as problematic has been found in Zhejiang Land Zongheng Network Technology O2OA up to 20240403. Affected is an unknown function of the file /x_portal_assemble_surface/jaxrs/portal/list?v=8.2.3-4-43f4fe3. The manipulation leads to information disclosure. It is possible to …

πŸ“… Published: April 12, 2024, 2:31 p.m. πŸ”„ Last Modified: Sept. 19, 2025, 12:35 p.m.

6.3

CVSS3.1

CVE-2024-3688 - Xiamen Four-Faith RMP Router Management Platform sql injection

A vulnerability was found in Xiamen Four-Faith RMP Router Management Platform 5.2.2. It has been declared as critical. This vulnerability affects unknown code of the file /Device/Device/GetDeviceInfoList?deviceCode=&searchField=&deviceState=. The manipulation of the argument groupId leads to sql in…

πŸ“… Published: April 12, 2024, 2 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

3.5

CVSS3.1

CVE-2024-3687 - bihell Dice Comment cross site scripting

A vulnerability was found in bihell Dice 3.1.0 and classified as problematic. Affected by this issue is some unknown functionality of the component Comment Handler. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and …

πŸ“… Published: April 12, 2024, 2 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

5.3

CVSS3.1

CVE-2024-3707 - Exposure of Information Through Directory Listing vulnerability in OpenGnsys

Information exposure vulnerability in OpenGnsys affecting version 1.1.1d (Espeto). This vulnerability allows an attacker to enumerate all files in the web tree by accessing a php file.

πŸ“… Published: April 12, 2024, 1:52 p.m. πŸ”„ Last Modified: Nov. 4, 2025, 6:13 p.m.

5.9

CVSS3.1

CVE-2024-3706 - Exposure of Sensitive Information to an Unauthorized Actor vulnerability in OpenGnsys

Information exposure vulnerability in OpenGnsys affecting version 1.1.1d (Espeto). This vulnerability allows an attacker to view a php backup file (controlaccess.php-LAST) where database credentials are stored.

πŸ“… Published: April 12, 2024, 1:51 p.m. πŸ”„ Last Modified: Nov. 4, 2025, 6:15 p.m.

8.8

CVSS3.1

CVE-2024-3705 - Unrestricted Upload of File with Dangerous Type vulnerability in OpenGnsys

Unrestricted file upload vulnerability in OpenGnsys affecting version 1.1.1d (Espeto). This vulnerability allows an attacker to send a POST request to the endpoint '/opengnsys/images/M_Icons.php' modifying the file extension, due to lack of file extension verification, resulting in a webshell injec…

πŸ“… Published: April 12, 2024, 1:50 p.m. πŸ”„ Last Modified: Nov. 4, 2025, 6:23 p.m.

9.8

CVSS3.1

CVE-2024-3704 - SQL Injection vulnerability in OpenGnsys

SQL Injection Vulnerability has been found on OpenGnsys product affecting version 1.1.1d (Espeto). This vulnerability allows an attacker to inject malicious SQL code into login page to bypass it or even retrieve all the information stored in the database.

πŸ“… Published: April 12, 2024, 1:47 p.m. πŸ”„ Last Modified: Nov. 4, 2025, 6:33 p.m.
Total resulsts: 349182
Page 10311 of 34,919
Β« previous page Β» next page
Filters