6.9

CVSS4.0

CVE-2024-13102 - D-Link DIR-816 A2 DDNS Service access control

A vulnerability classified as critical was found in D-Link DIR-816 A2 1.10CNB05_R1B011D88210. This vulnerability affects unknown code of the file /goform/DDNS of the component DDNS Service. The manipulation leads to improper access controls. The attack can be initiated remotely. The exploit has bee…

📅 Published: Jan. 2, 2025, 9:31 a.m. 🔄 Last Modified: May 2, 2025, 5:56 p.m.

0.0

CVE-2024-56027 - WordPress Leads CRM plugin <= 2.0.13 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in bizswoop Leads CRM leads-crm allows Reflected XSS.This issue affects Leads CRM: from n/a through <= 2.0.13.

📅 Published: Jan. 2, 2025, 9:23 a.m. 🔄 Last Modified: April 15, 2026, 12:35 a.m.

0.0

CVE-2024-56028 - WordPress Lemonade Social Networks Autoposter Pinterest plugin <= 2.0 - Reflected Cross Site Script…

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in lemonadestudio Lemonade Social Networks Autoposter Pinterest lemonade-sna-pinterest-edition allows Reflected XSS.This issue affects Lemonade Social Networks Autoposter Pinterest: from n/a through <…

📅 Published: Jan. 2, 2025, 9:23 a.m. 🔄 Last Modified: April 15, 2026, 12:35 a.m.

0.0

CVE-2024-56029 - WordPress Easy Language Switcher plugin <= 1.0 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in dreamwinner Easy Language Switcher easy-language-switcher allows Reflected XSS.This issue affects Easy Language Switcher: from n/a through <= 1.0.

📅 Published: Jan. 2, 2025, 9:22 a.m. 🔄 Last Modified: April 15, 2026, 12:35 a.m.

0.0

CVE-2024-56030 - WordPress 10CentMail plugin <= 2.1.50 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Carver Lab 10CentMail 10centmail-subscription-management-and-analytics allows Reflected XSS.This issue affects 10CentMail: from n/a through <= 2.1.50.

📅 Published: Jan. 2, 2025, 9:21 a.m. 🔄 Last Modified: April 15, 2026, 12:35 a.m.

0.0

CVE-2024-56032 - WordPress FV Descriptions plugin <= 1.4 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in FolioVision FV Descriptions fv-descriptions allows Reflected XSS.This issue affects FV Descriptions: from n/a through <= 1.4.

📅 Published: Jan. 2, 2025, 9:20 a.m. 🔄 Last Modified: April 15, 2026, 12:35 a.m.

0.0

CVE-2024-56033 - WordPress FAQs plugin <= 1.0.2 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Think201 FAQs faqs allows Reflected XSS.This issue affects FAQs: from n/a through <= 1.0.2.

📅 Published: Jan. 2, 2025, 9:19 a.m. 🔄 Last Modified: April 15, 2026, 12:35 a.m.

0.0

CVE-2024-56019 - WordPress Inline Footnotes Plugin <= 2.3.0 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in gavinr Inline Footnotes inline-footnotes allows Stored XSS.This issue affects Inline Footnotes: from n/a through <= 2.3.0.

📅 Published: Jan. 2, 2025, 9:18 a.m. 🔄 Last Modified: April 15, 2026, 12:35 a.m.

0.0

CVE-2024-56034 - WordPress Services updates for customers plugin <= 1.0 - Reflected Cross Site Scripting (XSS) vulne…

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Irshad A.Khan Services updates for customers service-updates-for-customers allows Reflected XSS.This issue affects Services updates for customers: from n/a through <= 1.0.