8.1

CVSS3.1

CVE-2024-3183 - Freeipa: user can obtain a hash of the passwords of all domain users and perform offline brute force

A vulnerability was found in FreeIPA in a way when a Kerberos TGS-REQ is encrypted using the client’s session key. This key is different for each new session, which protects it from brute force attacks. However, the ticket it contains is encrypted using the target principal key directly. For user p…

πŸ“… Published: June 10, 2024, midnight πŸ”„ Last Modified: Nov. 20, 2025, 7:16 a.m.

6.5

CVSS3.1

CVE-2024-35474 -

A Directory Traversal vulnerability in iceice666 ResourcePack Server before v1.0.8 allows a remote attacker to disclose files on the server, via setPath in ResourcePackFileServer.kt.

πŸ“… Published: June 10, 2024, midnight πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

8.1

CVSS3.1

CVE-2024-5389 - Insufficient Access Control in lunary-ai/lunary

In lunary-ai/lunary version 1.2.13, an insufficient granularity of access control vulnerability allows users to create, update, get, and delete prompt variations for datasets not owned by their organization. This issue arises due to the application not properly validating the ownership of dataset p…

πŸ“… Published: June 9, 2024, 10:22 p.m. πŸ”„ Last Modified: Nov. 21, 2024, 9:47 a.m.

5.3

CVSS3.1

CVE-2024-35748 - WordPress WooCommerce Dropshipping plugin <= 5.0.4 - Unauthenticated Arbitrary Email Sending vulner…

Missing Authorization vulnerability in OPMC WooCommerce Dropshipping.This issue affects WooCommerce Dropshipping: from n/a through 5.0.4.

πŸ“… Published: June 9, 2024, 6:41 p.m. πŸ”„ Last Modified: Nov. 21, 2024, 9:20 a.m.

4.3

CVSS3.1

CVE-2024-32081 - WordPress Filter Custom Fields & Taxonomies Light plugin <= 1.05 - Broken Access Control vulnerabil…

Missing Authorization vulnerability in Websupporter Filter Custom Fields & Taxonomies Light.This issue affects Filter Custom Fields & Taxonomies Light: from n/a through 1.05.

πŸ“… Published: June 9, 2024, 6:37 p.m. πŸ”„ Last Modified: Nov. 21, 2024, 9:14 a.m.

5.3

CVSS3.1

CVE-2024-34802 - WordPress AdFoxly plugin <= 1.8.5 - Broken Access Control vulnerability

Missing Authorization vulnerability in AdFoxly AdFoxly – Ad Manager, AdSense Ads & Ads.Txt.This issue affects AdFoxly – Ad Manager, AdSense Ads & Ads.Txt: from n/a through 1.8.5.

πŸ“… Published: June 9, 2024, 6:35 p.m. πŸ”„ Last Modified: Nov. 21, 2024, 9:19 a.m.

5.3

CVSS3.1

CVE-2024-35661 - WordPress Upload Fields for WPForms plugin <= 1.0.2 - Broken Access Control vulnerability

Missing Authorization vulnerability in SoftLab Upload Fields for WPForms.This issue affects Upload Fields for WPForms: from n/a through 1.0.2.

πŸ“… Published: June 9, 2024, 6:33 p.m. πŸ”„ Last Modified: Nov. 21, 2024, 9:20 a.m.

5.4

CVSS3.1

CVE-2024-35662 - WordPress Simple COD Fees for WooCommerce plugin <= 2.0.2 - Broken Access Control vulnerability

Missing Authorization vulnerability in Andreas Sofantzis Simple COD Fees for WooCommerce.This issue affects Simple COD Fees for WooCommerce: from n/a through 2.0.2.

πŸ“… Published: June 9, 2024, 6:31 p.m. πŸ”„ Last Modified: Nov. 21, 2024, 9:20 a.m.

8.2

CVSS3.1

CVE-2024-31275 - WordPress EventPrime plugin <= 3.3.4 - Booking Price Manipulation vulnerability

Missing Authorization vulnerability in Metagauss EventPrime.This issue affects EventPrime: from n/a through 3.3.4.

πŸ“… Published: June 9, 2024, 6:16 p.m. πŸ”„ Last Modified: Nov. 21, 2024, 9:13 a.m.

5.3

CVSS3.1

CVE-2024-31276 - WordPress Products, Order & Customers Export for WooCommerce plugin <= 2.0.8 - Broken Access Contro…

Missing Authorization vulnerability in WPFactory Products, Order & Customers Export for WooCommerce.This issue affects Products, Order & Customers Export for WooCommerce: from n/a through 2.0.8.

πŸ“… Published: June 9, 2024, 6:14 p.m. πŸ”„ Last Modified: Nov. 21, 2024, 9:13 a.m.
Total resulsts: 349182
Page 9529 of 34,919
Β« previous page Β» next page
Filters