4.6

CVSS3.1

CVE-2023-32228 -

A firmware bug which may lead to misinterpretation of data in the AMC2-4WCF and AMC2-2WCF allowing an adversary to grant access to the last authorized user.

πŸ“… Published: April 11, 2024, 9:05 a.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

5.9

CVSS3.1

CVE-2024-32080 - WordPress Search Keyword Redirect plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Nick Pelton Search Keyword Redirect allows Stored XSS.This issue affects Search Keyword Redirect: from n/a through 1.0.

πŸ“… Published: April 11, 2024, 8:41 a.m. πŸ”„ Last Modified: April 28, 2026, 4:09 p.m.

0.0

CVE-2024-31861 -

DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none.

πŸ“… Published: April 11, 2024, 8:19 a.m. πŸ”„ Last Modified: June 21, 2024, 10:15 a.m.

5.5

CVSS3.1

CVE-2024-20798 - Illustrator 2024 CDR File parsing Out of Bound Read Information disclosure vulnerability

Illustrator versions 28.3, 27.9.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victi…

πŸ“… Published: April 11, 2024, 8:19 a.m. πŸ”„ Last Modified: Dec. 5, 2024, 2:40 p.m.

5.5

CVSS3.1

CVE-2024-20771 - Bridge 2024 MOV File parsing memory corruption

Bridge versions 13.0.6, 14.0.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim m…

πŸ“… Published: April 11, 2024, 8:10 a.m. πŸ”„ Last Modified: Dec. 5, 2024, 2:45 p.m.

5.3

CVSS3.1

CVE-2024-2966 - Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arr…

The Element Pack Elementor Addons (Header Footer, Template Library, Dynamic Grid & Carousel, Remote Arrows) plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 5.5.6 via the element_pack_ajax_search function. This makes it possible for unauthe…

πŸ“… Published: April 11, 2024, 7:31 a.m. πŸ”„ Last Modified: April 8, 2026, 6:21 p.m.

6.4

CVSS3.1

CVE-2024-3285 - Slider, Gallery, and Carousel by MetaSlider – Responsive WordPress Slideshows <= 3.70.0 - Authentic…

The Slider, Gallery, and Carousel by MetaSlider – Responsive WordPress Slideshows plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'metaslider' shortcode in all versions up to, and including, 3.70.0 due to insufficient input sanitization and output escaping on user…

πŸ“… Published: April 11, 2024, 7:31 a.m. πŸ”„ Last Modified: April 8, 2026, 5:18 p.m.

4.3

CVSS3.1

CVE-2023-6257 - Inline Related Posts < 3.6.0 - Subscriber+ Password Protected Post Read

The Inline Related Posts WordPress plugin before 3.6.0 is missing authorization in an AJAX action to ensure that users are allowed to see the content of the posts displayed, allowing any authenticated user, such as subscriber to retrieve the content of password protected posts

πŸ“… Published: April 11, 2024, 5 a.m. πŸ”„ Last Modified: May 9, 2025, 1:38 p.m.

4.7

CVSS3.1

CVE-2024-3621 - SourceCodester Kortex Lite Advocate Office Management System register_case.php sql injection

A vulnerability was found in SourceCodester Kortex Lite Advocate Office Management System 1.0. It has been classified as critical. This affects an unknown part of the file /control/register_case.php. The manipulation of the argument title/case_no/client_name/court/case_type/case_stage/legel_acts/de…

πŸ“… Published: April 11, 2024, 3:31 a.m. πŸ”„ Last Modified: Jan. 30, 2025, 2:40 p.m.

4.7

CVSS3.1

CVE-2024-3620 - SourceCodester Kortex Lite Advocate Office Management System adds.php sql injection

A vulnerability was found in SourceCodester Kortex Lite Advocate Office Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /control/adds.php. The manipulation of the argument name/gender/dob/email/mobile/address leads to sql injection.…

πŸ“… Published: April 11, 2024, 3 a.m. πŸ”„ Last Modified: Jan. 28, 2025, 9:47 p.m.
Total resulsts: 349182
Page 10323 of 34,919
Β« previous page Β» next page
Filters