9.3
CVE-2024-21546 -
Versions of the package unisharp/laravel-filemanager before 2.9.1 are vulnerable to Remote Code Execution (RCE) through using a valid mimetype and inserting the . character after the php file extension. This allows the attacker to execute malicious code.
7.5
CVE-2024-4464 -
Authorization bypass through user-controlled key vulnerability in streaming service in Synology Media Server before 1.4-2680, 2.0.5-3152 and 2.2.0-3325 allows remote attackers to read specific files via unspecified vectors.
5.4
CVE-2024-10892 - Cost Calculator Builder < 3.2.43 - Settings update via CSRF
The Cost Calculator Builder WordPress plugin before 3.2.43 does not have CSRF checks in some AJAX actions, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks.
4.3
CVE-2024-12061 - Events Addon for Elementor <= 2.2.3 - Authenticated (Contributor+) Post Disclosure
The Events Addon for Elementor plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 2.2.3 via the naevents_elementor_template shortcode due to insufficient restrictions on which posts can be included. This makes it possible for authenticated attackers, wiβ¦
5.3
CVE-2024-12250 - Accept Authorize.NET Payments Using Contact Form 7 <= 2.2 - Unauthenticated Information Exposure
The Accept Authorize.NET Payments Using Contact Form 7 plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 2.2 via the cf7adn-info.php file. This makes it possible for unauthenticated attackers to extract configuration data which can be used to aid in otβ¦
6.4
CVE-2024-12449 - Video Share VOD β Turnkey Video Site Builder Script <= 2.6.30 - Authenticated (Contributor+) Storedβ¦
The Video Share VOD β Turnkey Video Site Builder Script plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'videowhisper_player_html' shortcode in all versions up to, and including, 2.6.30 due to insufficient input sanitization and output escaping on user supplied atβ¦
4.3
CVE-2024-12596 - LifterLMS β WP LMS for eLearning, Online Courses, & Quizzes <= 7.8.5 - Missing Authorization to Autβ¦
The LifterLMS β WP LMS for eLearning, Online Courses, & Quizzes plugin for WordPress is vulnerable to arbitrary post deletion due to a missing capability check on the 'llms_delete_cert' action in all versions up to, and including, 7.8.5. This makes it possible for authenticated attackers, with Subsβ¦
8.8
CVE-2024-12259 - CRM WordPress Plugin β RepairBuddy <= 3.8120 - Missing Authorization to Account Takeover/Privilege β¦
The CRM WordPress Plugin β RepairBuddy plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 3.8120. This is due to the plugin not properly validating a user's identity prior to updating their email through the wc_update_user_data AJAXβ¦
6.1
CVE-2024-11254 - AMP for WP β Accelerated Mobile Pages <= 1.1.1 - Reflected Cross-Site Scripting
The AMP for WP β Accelerated Mobile Pages plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the disqus_name parameter in all versions up to, and including, 1.1.1 due to insufficient input validation. This makes it possible for unauthenticated attackers to inject arbitrary webβ¦
7.5
CVE-2024-12025 - Collapsing Categories <= 3.0.8 - Unauthenticated SQL Injection
The Collapsing Categories plugin for WordPress is vulnerable to SQL Injection via the 'taxonomy' parameter of the /wp-json/collapsing-categories/v1/get REST API in all versions up to, and including, 3.0.8 due to insufficient escaping on the user supplied parameter and lack of sufficient preparationβ¦