9.8
CVE-2024-38944 -
An issue in Intelight X-1L Traffic controller Maxtime v.1.9.6 allows a remote attacker to execute arbitrary code via the /cgi-bin/generateForm.cgi?formID=142 component.
9.8
CVE-2024-28698 -
Directory Traversal vulnerability in Marimer LLC CSLA .Net before 8.0 allows a remote attacker to execute arbitrary code via a crafted script to the MobileFormatter component.
8.7
CVE-2024-6962 - Tenda O3 formQosSet stack-based overflow
A vulnerability classified as critical was found in Tenda O3 1.0.0.10. This vulnerability affects the function formQosSet. The manipulation of the argument remark/ipRange/upSpeed/downSpeed/enable leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been discloβ¦
5.9
CVE-2024-37446 - WordPress Chained Quiz plugin <= 1.3.2.8 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Kiboko Labs Chained Quiz allows Stored XSS.This issue affects Chained Quiz: from n/a through 1.3.2.8.
5.9
CVE-2024-37447 - WordPress PixelYourSite plugin <= 9.6.1.1 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in PixelYourSite PixelYourSite β Your smart PIXEL (TAG) Manager allows Stored XSS.This issue affects PixelYourSite β Your smart PIXEL (TAG) Manager: from n/a through 9.6.1.1.
5.9
CVE-2024-37449 - WordPress Slider Revolution plugin <= 6.7.13 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in ThemePunch OHG Slider Revolution.This issue affects Slider Revolution: from n/a through 6.7.13.
6.5
CVE-2024-37457 - WordPress Ultimate Blocks β WordPress Blocks Plugin plugin <= 3.1.9 - Cross Site Scripting (XSS) vuβ¦
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Ultimate Blocks Ultimate Blocks β Gutenberg Blocks Plugin allows Stored XSS.This issue affects Ultimate Blocks β Gutenberg Blocks Plugin: from n/a through 3.1.9.
7.1
CVE-2024-37459 - WordPress PayPlus Payment Gateway plugin <= 6.6.8 - Reflected Cross Site Scripting (XSS) vulnerabilβ¦
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in PayPlus LTD PayPlus Payment Gateway allows Reflected XSS.This issue affects PayPlus Payment Gateway: from n/a through 6.6.8.
6.5
CVE-2024-37460 - WordPress SuperSaaS β online appointment scheduling plugin <= 2.1.9 - Cross Site Scripting (XSS) vuβ¦
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in SuperSaaS SuperSaaS β online appointment scheduling allows Stored XSS.This issue affects SuperSaaS β online appointment scheduling: from n/a through 2.1.9.
7.1
CVE-2024-37461 - WordPress IdeaPush plugin <= 8.65 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Martin Gibson IdeaPush allows Stored XSS.This issue affects IdeaPush: from n/a through 8.65.