7.8

CVSS3.0

CVE-2024-30336 - Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability

Foxit PDF Reader AcroForm Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page…

πŸ“… Published: April 2, 2024, 8:10 p.m. πŸ”„ Last Modified: Aug. 7, 2025, 7:04 p.m.

4.9

CVSS3.1

CVE-2024-30531 - WordPress Nelio Content plugin <= 3.2.0 - Server Side Request Forgery (SSRF) vulnerability

Server-Side Request Forgery (SSRF) vulnerability in Nelio Software Nelio Content.This issue affects Nelio Content: from n/a through 3.2.0.

πŸ“… Published: April 2, 2024, 6:42 p.m. πŸ”„ Last Modified: April 28, 2026, 4:09 p.m.

4.9

CVSS3.1

CVE-2024-30532 - WordPress Builderall Builder for WordPress plugin <= 2.0.1 - Server Side Request Forgery (SSRF) vul…

Server-Side Request Forgery (SSRF) vulnerability in Builderall Team Builderall Builder for WordPress.This issue affects Builderall Builder for WordPress: from n/a through 2.0.1.

πŸ“… Published: April 2, 2024, 6:18 p.m. πŸ”„ Last Modified: April 28, 2026, 4:09 p.m.

6.4

CVSS3.1

CVE-2024-24888 - WordPress Gutenberg Blocks by Kadence Blocks plugin <= 3.2.25 - Server Side Request Forgery (SSRF) …

Server-Side Request Forgery (SSRF) vulnerability in StellarWP Gutenberg Blocks by Kadence Blocks kadence-blocks.This issue affects Gutenberg Blocks by Kadence Blocks: from n/a through <= 3.2.25.

πŸ“… Published: April 2, 2024, 6:16 p.m. πŸ”„ Last Modified: April 28, 2026, 12:10 p.m.

7.1

CVSS3.1

CVE-2024-30335 - Foxit PDF Reader AcroForm Annotation Out-Of-Bounds Read Information Disclosure Vulnerability

Foxit PDF Reader AcroForm Annotation Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target mus…

πŸ“… Published: April 2, 2024, 5:48 p.m. πŸ”„ Last Modified: Aug. 7, 2025, 7 p.m.

7.1

CVSS3.1

CVE-2024-31105 - WordPress Tax Rate Upload plugin <= 2.4.5 - CSRF leading to Cross Site Scripting (XSS) vulnerability

Cross-Site Request Forgery (CSRF) vulnerability in Adam Bowen Tax Rate Upload allows Reflected XSS.This issue affects Tax Rate Upload: from n/a through 2.4.5.

πŸ“… Published: April 2, 2024, 5:33 p.m. πŸ”„ Last Modified: April 28, 2026, 4:09 p.m.

7.1

CVSS3.1

CVE-2024-31109 - WordPress Woocommerce Social Media Share Buttons plugin <= 1.3.0 - CSRF to Cross Site Scripting (XS…

Cross-Site Request Forgery (CSRF) vulnerability in Toastie Studio Woocommerce Social Media Share Buttons allows Stored XSS.This issue affects Woocommerce Social Media Share Buttons: from n/a through 1.3.0.

πŸ“… Published: April 2, 2024, 5:31 p.m. πŸ”„ Last Modified: April 28, 2026, 4:09 p.m.

4.3

CVSS3.1

CVE-2024-3151 - Bdtask Multi-Store Inventory Management System Stock Movement Page cross-site request forgery

A vulnerability, which was classified as problematic, was found in Bdtask Multi-Store Inventory Management System up to 20240325. Affected is an unknown function of the file /stockmovment/stockmovment/delete/ of the component Stock Movement Page. The manipulation leads to cross-site request forgery…

πŸ“… Published: April 2, 2024, 5 p.m. πŸ”„ Last Modified: June 27, 2025, 6:29 p.m.

4.3

CVSS3.1

CVE-2024-2435 - Stored XSS in Timeline View

For an attacker with pre-existing access to send a signal to a workflow, the attacker can make the signal name a script that executes when a victim views that signal. The XSS is in the timeline page displaying the workflow execution details of the workflow that was sent the crafted signal. Access t…

πŸ“… Published: April 2, 2024, 4:40 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

7.1

CVSS3.1

CVE-2024-22248 -

VMware SD-WAN Orchestrator contains an open redirect vulnerability. A malicious actor may be able to redirect a victim to an attacker controlled domain due to improper path handling leading to sensitive information disclosure.

πŸ“… Published: April 2, 2024, 3:51 p.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.
Total resulsts: 349182
Page 10471 of 34,919
Β« previous page Β» next page
Filters