7.5

CVSS3.1

CVE-2024-11495 - Buffer overflow in OllyDbg

Buffer overflow vulnerability in OllyDbg, version 1.10, which could allow a local attacker to execute arbitrary code due to lack of proper bounds checking.

πŸ“… Published: Nov. 20, 2024, 12:28 p.m. πŸ”„ Last Modified: Nov. 4, 2025, 5:54 p.m.

0.0

CVE-2024-52437 - WordPress Banner System plugin <= 1.0.0 - Privilege Escalation vulnerability

Missing Authentication for Critical Function vulnerability in Saul Morales Pacheco Banner System banner-system allows Privilege Escalation.This issue affects Banner System: from n/a through <= 1.0.0.

πŸ“… Published: Nov. 20, 2024, noon πŸ”„ Last Modified: April 1, 2026, 4:20 p.m.

6.9

CVSS3.1

CVE-2024-11406 - Stored XSS in django CMS Attributes Fields

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in django CMS Association django CMS Attributes Fields allows Stored XSS.This issue affects django CMS Attributes Fields: before 4.0.

πŸ“… Published: Nov. 20, 2024, noon πŸ”„ Last Modified: Nov. 21, 2024, 1:57 p.m.

0.0

CVE-2024-52438 - WordPress de:branding plugin <= 1.0.2 - Privilege Escalation vulnerability

Missing Authentication for Critical Function vulnerability in deco.agency de:branding debranding allows Privilege Escalation.This issue affects de:branding: from n/a through <= 1.0.2.

πŸ“… Published: Nov. 20, 2024, 11:59 a.m. πŸ”„ Last Modified: April 1, 2026, 4:20 p.m.

0.0

CVE-2024-52442 - WordPress UserPlus plugin <= 2.0 - Privilege Escalation vulnerability

Incorrect Privilege Assignment vulnerability in userplus UserPlus userplus allows Privilege Escalation.This issue affects UserPlus: from n/a through <= 2.0.

πŸ“… Published: Nov. 20, 2024, 11:56 a.m. πŸ”„ Last Modified: April 1, 2026, 4:20 p.m.

5.5

CVSS3.1

CVE-2024-11404 - File Upload Bypass in django Filer

Unrestricted Upload of File with Dangerous Type, Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in django CMS Association django Filer allows Input Data Manipulation, Stored XSS.This issue affects django Filer: from 3 before 3.3.

πŸ“… Published: Nov. 20, 2024, 11:55 a.m. πŸ”„ Last Modified: Oct. 14, 2025, 1:15 p.m.

0.0

CVE-2024-52451 - WordPress Post Ideas plugin <= 2 - CSRF to SQL Injection vulnerability

Cross-Site Request Forgery (CSRF) vulnerability in aaronrobbins Post Ideas post-ideas allows SQL Injection.This issue affects Post Ideas: from n/a through <= 2.

πŸ“… Published: Nov. 20, 2024, 11:54 a.m. πŸ”„ Last Modified: April 1, 2026, 4:20 p.m.

0.0

CVE-2024-52448 - WordPress Ultimate Classified Listings plugin <= 1.7 - Local File Inclusion vulnerability

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in webcodingplace Ultimate Classified Listings ultimate-classified-listings allows PHP Local File Inclusion.This issue affects Ultimate Classified Listings: from n/a through <= 1.7.

πŸ“… Published: Nov. 20, 2024, 11:52 a.m. πŸ”„ Last Modified: April 1, 2026, 4:20 p.m.

5.3

CVSS3.1

CVE-2024-10520 - WP Project Manager <= 2.6.14 - Missing Authorization to Project Milestone and Task Creation/Deletion

The WP Project Manager plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check in the 'check' method of the 'Create_Milestone', 'Create_Task_List', 'Create_Task', and 'Delete_Task' classes in version 2.6.14. This makes it possible for unauthenticate…

πŸ“… Published: Nov. 20, 2024, 11:33 a.m. πŸ”„ Last Modified: Feb. 5, 2025, 4:51 p.m.

7.5

CVSS3.1

CVE-2024-52449 - WordPress WordPress Bootscraper plugin <= 2.1.0 - Local File Inclusion vulnerability

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Navneil Naicer Bootscraper allows PHP Local File Inclusion.This issue affects Bootscraper: from n/a through 2.1.0.

πŸ“… Published: Nov. 20, 2024, 11:30 a.m. πŸ”„ Last Modified: Nov. 21, 2024, 1:57 p.m.
Total resulsts: 343048
Page 7164 of 34,305
Β« previous page Β» next page
Filters