9.8

CVSS3.1

CVE-2024-50487 - WordPress MaanStore API plugin <= 1.0.1 - Account Takeover vulnerability

Authentication Bypass Using an Alternate Path or Channel vulnerability in Acnoo MaanStore API maanstore-api allows Authentication Bypass.This issue affects MaanStore API: from n/a through <= 1.0.1.

πŸ“… Published: Oct. 28, 2024, 11:17 a.m. πŸ”„ Last Modified: April 1, 2026, 4:19 p.m.

9.8

CVSS3.1

CVE-2024-50489 - WordPress Realty Workstation plugin <= 1.0.45 - Account Takeover vulnerability

Authentication Bypass Using an Alternate Path or Channel vulnerability in realtyworkstation Realty Workstation realty-workstation allows Authentication Bypass.This issue affects Realty Workstation: from n/a through <= 1.0.45.

πŸ“… Published: Oct. 28, 2024, 11:16 a.m. πŸ”„ Last Modified: April 1, 2026, 4:19 p.m.

7.2

CVSS3.1

CVE-2024-50442 - WordPress Royal Elementor Addons and Templates plugin <= 1.3.980 - XML External Entity (XXE) vulner…

Improper Restriction of XML External Entity Reference vulnerability in WP Royal Royal Elementor Addons royal-elementor-addons allows XML Injection.This issue affects Royal Elementor Addons: from n/a through <= 1.3.980.

πŸ“… Published: Oct. 28, 2024, 11:14 a.m. πŸ”„ Last Modified: April 1, 2026, 4:19 p.m.

9.1

CVSS3.1

CVE-2024-38821 - Authorization Bypass of Static Resources in WebFlux Applications

Spring WebFlux applications that have Spring Security authorization rules on static resources can be bypassed under certain circumstances. For this to impact an application, all of the following must be true: * It must be a WebFlux application * It must be using Spring's static resources su…

πŸ“… Published: Oct. 28, 2024, 7:06 a.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

7.2

CVSS3.1

CVE-2024-9162 - All-in-One WP Migration and Backup <= 7.86 - Authenticated (Administrator+) Arbitrary PHP Code Inje…

The All-in-One WP Migration and Backup plugin for WordPress is vulnerable to arbitrary PHP Code Injection due to missing file type validation during the export in all versions up to, and including, 7.86. This makes it possible for authenticated attackers, with Administrator-level access and above, …

πŸ“… Published: Oct. 28, 2024, 5:32 a.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

5.5

CVSS3.1

CVE-2024-50307 -

Use of potentially dangerous function issue exists in Chatwork Desktop Application (Windows) versions prior to 2.9.2. If a user clicks a specially crafted link in the application, an arbitrary file may be downloaded from an external website and executed. As a result, arbitrary code may be executed …

πŸ“… Published: Oct. 28, 2024, 4:28 a.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

9.8

CVSS3.1

CVE-2024-10440 - Sunnet eHRD CTMS - SQL Injection

The eHDR CTMS from Sunnet has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL command to read, modify, and delete database contents.

πŸ“… Published: Oct. 28, 2024, 2:53 a.m. πŸ”„ Last Modified: Sept. 25, 2025, 2:13 p.m.

5.3

CVSS3.1

CVE-2024-10439 - Sunnet eHRD CTMS - Insecure Direct Object Reference

The eHRD CTMS from Sunnet has an Insecure Direct Object Reference (IDOR) vulnerability, allowing unauthenticated remote attackers to modify a specific parameter to access arbitrary files uploaded by any user.

πŸ“… Published: Oct. 28, 2024, 2:49 a.m. πŸ”„ Last Modified: Sept. 25, 2025, 2:13 p.m.

7.5

CVSS3.1

CVE-2024-10438 - Sunnet eHRD CTMS - Authentication Bypass

The eHRD CTMS from Sunnet has an Authentication Bypass vulnerability, allowing unauthenticated remote attackers to bypass authentication by satisfying specific conditions in order to access certain functionalities.

πŸ“… Published: Oct. 28, 2024, 2:46 a.m. πŸ”„ Last Modified: Sept. 25, 2025, 2:13 p.m.

2.2

CVSS3.1

CVE-2024-23843 -

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Genians Genian NAC V5.0, Genians Genian NAC LTS V5.0.This issue affects Genian NAC V5.0: from V5.0.0 through V5.0.60; Genian NAC LTS V5.0: from 5.0.0 LTS through 5.0.55 LTS(Revision 125558), from 5…

πŸ“… Published: Oct. 28, 2024, 2:07 a.m. πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.
Total resulsts: 344690
Page 7677 of 34,469
Β« previous page Β» next page
Filters