6.5

CVSS3.1

CVE-2024-37465 - WordPress AI Power: Complete AI Pack – Powered by GPT-4 plugin <= 1.8.66 - Cross Site Scripting (XS…

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Senol Sahin GPT3 AI Content Writer allows Stored XSS.This issue affects GPT3 AI Content Writer: from n/a through 1.8.66.

πŸ“… Published: July 21, 2024, 9:24 p.m. πŸ”„ Last Modified: Nov. 21, 2024, 9:23 a.m.

6.5

CVSS3.1

CVE-2024-37466 - WordPress Mega Elements plugin <= 1.2.2 - Contributor+ Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Kraftplugins Mega Elements.This issue affects Mega Elements: from n/a through 1.2.2.

πŸ“… Published: July 21, 2024, 9:22 p.m. πŸ”„ Last Modified: Nov. 21, 2024, 9:23 a.m.

6.5

CVSS3.1

CVE-2024-37480 - WordPress Apollo13 Framework Extensions plugin <= 1.9.3 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Apollo13Themes Apollo13 Framework Extensions apollo13-framework-extensions allows Stored XSS.This issue affects Apollo13 Framework Extensions: from n/a through 1.9.3.

πŸ“… Published: July 21, 2024, 9:21 p.m. πŸ”„ Last Modified: Nov. 21, 2024, 9:23 a.m.

7.1

CVSS3.1

CVE-2024-37485 - WordPress bbPress Notify (No-Spam) plugin <= 2.18.3 - Reflected Cross Site Scripting (XSS) vulnerab…

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Vinny Alves (UseStrict Consulting) bbPress Notify allows Reflected XSS.This issue affects bbPress Notify: from n/a through 2.18.3.

πŸ“… Published: July 21, 2024, 9:19 p.m. πŸ”„ Last Modified: Nov. 21, 2024, 9:23 a.m.

7.1

CVSS3.1

CVE-2024-38781 - WordPress CopySafe Web Protection plugin <= 3.15 - Reflected Cross Site Scripting (XSS) vulnerabili…

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in ArtistScope CopySafe Web Protection allows Reflected XSS.This issue affects CopySafe Web Protection: from n/a through 3.15.

πŸ“… Published: July 21, 2024, 9:15 p.m. πŸ”„ Last Modified: Nov. 21, 2024, 9:26 a.m.

6.5

CVSS3.1

CVE-2024-38782 - WordPress Leaflet Maps Marker plugin <= 3.12.9 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in MapsMarker.Com e.U. Leaflet Maps Marker allows Stored XSS.This issue affects Leaflet Maps Marker: from n/a through 3.12.9.

πŸ“… Published: July 21, 2024, 9:13 p.m. πŸ”„ Last Modified: Nov. 21, 2024, 9:26 a.m.

5.9

CVSS3.1

CVE-2024-38784 - WordPress Livemesh Addons for Beaver Builder plugin <= 3.6.1 - Cross Site Scripting (XSS) vulnerabi…

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Livemesh Livemesh Addons for Beaver Builder allows Stored XSS.This issue affects Livemesh Addons for Beaver Builder: from n/a through 3.6.1.

πŸ“… Published: July 21, 2024, 9:11 p.m. πŸ”„ Last Modified: Nov. 21, 2024, 9:26 a.m.

6.5

CVSS3.1

CVE-2024-38785 - WordPress Gutenverse plugin <= 1.9.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Jegstudio Gutenverse allows Stored XSS.This issue affects Gutenverse: from n/a through 1.9.2.

πŸ“… Published: July 21, 2024, 9:10 p.m. πŸ”„ Last Modified: Nov. 21, 2024, 9:26 a.m.

6.5

CVSS3.1

CVE-2024-38786 - WordPress CoziPress theme <= 1.0.30 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in BurgerThemes CoziPress allows Stored XSS.This issue affects CoziPress: from n/a through 1.0.30.

πŸ“… Published: July 21, 2024, 9:08 p.m. πŸ”„ Last Modified: Nov. 21, 2024, 9:26 a.m.

5.3

CVSS4.0

CVE-2024-6958 - itsourcecode University Management System Avatar File st_update.php unrestricted upload

A vulnerability classified as critical was found in itsourcecode University Management System 1.0. This vulnerability affects unknown code of the file /st_update.php of the component Avatar File Handler. The manipulation of the argument personal_image leads to unrestricted upload. The attack can be…

πŸ“… Published: July 21, 2024, 3 p.m. πŸ”„ Last Modified: Nov. 21, 2024, 9:50 a.m.
Total resulsts: 349182
Page 9085 of 34,919
Β« previous page Β» next page
Filters