5.9

CVSS3.1

CVE-2024-31937 - WordPress TWIPLA (Visitor Analytics IO) plugin <= 1.2.0 - Cross-Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Visitor Analytics TWIPLA (Visitor Analytics IO) allows Stored XSS.This issue affects TWIPLA (Visitor Analytics IO): from n/a through 1.2.0.

πŸ“… Published: April 11, 2024, 12:13 p.m. πŸ”„ Last Modified: April 28, 2026, 4:09 p.m.

7.1

CVSS3.1

CVE-2024-31285 - WordPress WordPress Tooltips plugin <= 9.5.3 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery (CSRF) vulnerability in Tooltip WordPress Tooltips allows Stored XSS.This issue affects WordPress Tooltips: from n/a through 9.5.3.

πŸ“… Published: April 11, 2024, 12:10 p.m. πŸ”„ Last Modified: April 28, 2026, 4:09 p.m.

4.3

CVSS3.1

CVE-2024-32112 - WordPress Leadinfo plugin <= 1.0 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery (CSRF) vulnerability in Leadinfo leadinfo. The patch was released under the same version which was reported as vulnerable. We consider the current version as vulnerable.This issue affects Leadinfo: from n/a through 1.0.

πŸ“… Published: April 11, 2024, 12:01 p.m. πŸ”„ Last Modified: April 28, 2026, 4:09 p.m.

6.3

CVSS3.1

CVE-2023-32295 - WordPress Easy!Appointments plugin <= 1.3.3 - Arbitrary File Deletion vulnerability

Missing Authorization vulnerability in Alex Tselegidis Easy!Appointments.This issue affects Easy!Appointments: from n/a through 1.3.3.

πŸ“… Published: April 11, 2024, 11:54 a.m. πŸ”„ Last Modified: June 17, 2025, 8:51 p.m.

6.4

CVSS3.1

CVE-2024-3344 - Otter Blocks – Gutenberg Blocks, Page Builder for Gutenberg Editor & FSE <= 2.6.8 - Authenticated (…

The Otter Blocks – Gutenberg Blocks, Page Builder for Gutenberg Editor & FSE plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG file upload in all versions up to, and including, 2.6.8 due to insufficient input sanitization and output escaping. This makes it possible for authe…

πŸ“… Published: April 11, 2024, 11:03 a.m. πŸ”„ Last Modified: April 8, 2026, 7:21 p.m.

6.4

CVSS3.1

CVE-2024-3343 - Otter Blocks – Gutenberg Blocks, Page Builder for Gutenberg Editor & FSE <= 2.6.8 - Authenticated (…

The Otter Blocks – Gutenberg Blocks, Page Builder for Gutenberg Editor & FSE plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's block attributes in all versions up to, and including, 2.6.8 due to insufficient input sanitization and output escaping on user supplied at…

πŸ“… Published: April 11, 2024, 11:03 a.m. πŸ”„ Last Modified: April 8, 2026, 6:21 p.m.

7.8

CVSS3.1

CVE-2024-20797 - Out-of-bounds access vulnerability in Adobe Animate that directly changes the rip when parsing FLA …

Animate versions 23.0.4, 24.0.1 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the current user. …

πŸ“… Published: April 11, 2024, 10:53 a.m. πŸ”„ Last Modified: Dec. 4, 2024, 3:01 p.m.

5.5

CVSS3.1

CVE-2024-20794 - Adobe Animate 2024 WAV File Parsing Null Pointer Dereference

Animate versions 23.0.4, 24.0.1 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to an application denial-of-service. An attacker could leverage this vulnerability to cause a system crash, resulting in a denial of service. Exploitation of this issue requires user…

πŸ“… Published: April 11, 2024, 10:53 a.m. πŸ”„ Last Modified: Dec. 5, 2024, 2:35 p.m.

5.5

CVSS3.1

CVE-2024-20796 - Adobe Animation SWF File Parsing Memory Corruption

Animate versions 23.0.4, 24.0.1 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim …

πŸ“… Published: April 11, 2024, 10:53 a.m. πŸ”„ Last Modified: Dec. 4, 2024, 3:06 p.m.

7.8

CVSS3.1

CVE-2024-20795 - Animate has an arbitrary code execution vulnerability when parsing svg files

Animate versions 23.0.4, 24.0.1 and earlier are affected by an Integer Overflow or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.

πŸ“… Published: April 11, 2024, 10:53 a.m. πŸ”„ Last Modified: Dec. 4, 2024, 3:15 p.m.
Total resulsts: 349182
Page 10322 of 34,919
Β« previous page Β» next page
Filters