6.5
CVE-2024-38167 - .NET and Visual Studio Information Disclosure Vulnerability
.NET and Visual Studio Information Disclosure Vulnerability
5.3
CVE-2024-37930 - WordPress SmartMag theme < 10.1.0 - Sensitive Data Exposure via Log File vulnerability
Insertion of Sensitive Information into Log File vulnerability in ThemeSphere SmartMag smartmag-responsive-retina-wordpress-magazine.This issue affects SmartMag: from n/a through < 10.1.0.
5.3
CVE-2024-37924 - WordPress WP2Speed Faster β Optimize PageSpeed Insights Score 90-100 plugin <= 1.0.1 - Sensitive Daβ¦
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wp2speed WP2Speed Faster allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects WP2Speed Faster: from n/a through 1.0.1.
5.9
CVE-2024-35775 - WordPress Slider by Soliloquy plugin <= 2.7.6 - Broken Access Control to XSS vulnerability
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting'), Improper Authentication vulnerability in Soliloquy Team Slider by Soliloquy allows Cross-Site Scripting (XSS).This issue affects Slider by Soliloquy: from n/a through 2.7.6.
6.5
CVE-2024-43123 - WordPress Card Elements for Elementor plugin <= 1.2.2 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Techeshta Card Elements for Elementor allows Stored XSS.This issue affects Card Elements for Elementor: from n/a through 1.2.2.
6.5
CVE-2024-43124 - WordPress Graphina plugin <= 1.8.10 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Iqonic Design Graphina allows Stored XSS.This issue affects Graphina: from n/a through 1.8.10.
6.5
CVE-2024-43125 - WordPress WP Table Builder plugin <= 1.4.15 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WP Table Builder WP Table Builder β WordPress Table Plugin allows Stored XSS.This issue affects WP Table Builder β WordPress Table Plugin: from n/a through 1.4.15.
7.1
CVE-2024-43126 - WordPress Sender β Newsletter, SMS and Email Marketing Automation for WooCommerce plugin <= 2.6.14 β¦
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Sender Sender β Newsletter, SMS and Email Marketing Automation for WooCommerce allows Reflected XSS.This issue affects Sender β Newsletter, SMS and Email Marketing Automation for WooCommerceβ¦
7.1
CVE-2024-43127 - WordPress Products, Order & Customers Export for WooCommerce plugin <= 2.0.11 - Reflected Cross Siβ¦
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WPFactory Products, Order & Customers Export for WooCommerce allows Reflected XSS.This issue affects Products, Order & Customers Export for WooCommerce: from n/a through 2.0.11.
5.1
CVE-2024-7706 - Fujian mwcms uploadfile.html uploadimage unrestricted upload
A vulnerability was found in Fujian mwcms 1.0.0. It has been rated as critical. Affected by this issue is the function uploadimage of the file /uploadfile.html. The manipulation of the argument upfile leads to unrestricted upload. The attack may be launched remotely. The exploit has been disclosed β¦