| CVE-2024-2199 | 389-ds-base: malformed userpassword may cause crash at do_modify in slapd/modify.c | - | - | Medium | 5.7 | 2024-05-28 12:04:07 | Deep Dive |
| CVE-2024-4443 | Business Directory Plugin – Easy Listing Directories for WordPress <= 6.4.2 - Unauthenticated SQL Injection via listingfields Parameter | strategy11team | Business Directory Plugin – Easy Listing Directories for WordPress | Critical | 9.8 | 2024-05-22 05:32:48 | Deep Dive |
| CVE-2024-5137 | PHPGurukul Directory Management System Searchbar admin-profile.php cross site scripting | PHPGurukul | Directory Management System | Low | 2.4 | 2024-05-20 09:31:04 | Deep Dive |
| CVE-2024-5136 | PHPGurukul Directory Management System search-directory.php. cross site scripting | PHPGurukul | Directory Management System | Low | 2.4 | 2024-05-20 09:00:04 | Deep Dive |
| CVE-2024-5135 | PHPGurukul Directory Management System index.php sql injection | PHPGurukul | Directory Management System | High | 7.3 | 2024-05-20 08:31:04 | Deep Dive |
| CVE-2024-2765 | Ultimate Member <= 2.8.4 - Authenticated (Subscriber+) Stored Cross-Site Scripting | ultimatemember | Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin | Medium | 5.4 | 2024-05-02 16:52:22 | Deep Dive |
| CVE-2024-3893 | Classified Listing – Classified ads & Business Directory Plugin <= 3.0.10.3 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Attachment Deletion | techlabpro1 | Classified Listing – AI-Powered Classified ads & Business Directory Plugin | Medium | 4.3 | 2024-04-25 07:34:00 | Deep Dive |
| CVE-2024-3732 | GeoDirectory – WordPress Business Directory Plugin, or Classified Directory <= 2.3.48 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'gd_single_tabs' Shortcode | paoltaia | GeoDirectory – WP Business Directory Plugin and Classified Listings Directory | Medium | 6.4 | 2024-04-23 09:32:55 | Deep Dive |
| CVE-2024-1042 | WP Radio – Worldwide Online Radio Stations Directory for WordPress <= 3.1.9 - Missing Authorization via multiple AJAX actions | princeahmed | WP Radio – Worldwide Online Radio Stations Directory for WordPress | Medium | 6.4 | 2024-04-10 04:30:21 | Deep Dive |
| CVE-2024-1041 | WP Radio – Worldwide Online Radio Stations Directory for WordPress <= 3.1.9 - Authenticated(Subscriber+) Stored Cross-Site Scripting via Settings | princeahmed | WP Radio – Worldwide Online Radio Stations Directory for WordPress | Medium | 6.4 | 2024-04-10 04:30:19 | Deep Dive |
| CVE-2024-1352 | Classified Listing – Classified ads & Business Directory Plugin <= 3.0.4 - Missing Authorization | techlabpro1 | Classified Listing – AI-Powered Classified ads & Business Directory Plugin | Medium | 6.5 | 2024-04-09 18:59:34 | Deep Dive |
| CVE-2024-2222 | Advanced Classifieds & Directory Pro <= 3.0.0 - Missing Authorization to Arbitrary Attachment Deletion | pluginsware | Advanced Classifieds & Directory Pro | Medium | 4.3 | 2024-04-09 18:59:18 | Deep Dive |
| CVE-2024-1315 | Classified Listing <= 3.0.4 - Cross-Site Request Forgery to Account Takeover via rtcl_update_user_account | techlabpro1 | Classified Listing – AI-Powered Classified ads & Business Directory Plugin | High | 8.8 | 2024-04-09 18:58:48 | Deep Dive |
| CVE-2024-2423 | UsersWP <= 1.2.6 - Authenticated(Contributor+) Stored Cross-Site Scripting via Shortcode | stiofansisland | UsersWP – Front-end login form, User Registration, User Profile & Members Directory plugin for WP | Medium | 6.4 | 2024-04-09 18:58:42 | Deep Dive |
| CVE-2024-3217 | WP Directory Kit <= 1.3.0 - Authenticated (Subscriber+) SQL Injection | wpdirectorykit | WP Directory Kit | High | 8.8 | 2024-04-05 07:34:35 | Deep Dive |
| CVE-2024-29774 | WordPress WP Directory Kit plugin <= 1.2.9 - Reflected Cross Site Scripting (XSS) vulnerability | WpDirectoryKit | WP Directory Kit | High | 7.1 | 2024-03-27 12:54:21 | Deep Dive |
| CVE-2022-32754 | IBM Security Verify Directory cross-site scripting | IBM | Security Verify Directory | Medium | 4.8 | 2024-03-22 15:33:43 | Deep Dive |
| CVE-2022-32751 | IBM Security Verify Directory information disclosure | IBM | Security Verify Directory | Medium | 5.3 | 2024-03-22 15:31:03 | Deep Dive |
| CVE-2022-32756 | IBM Security Verify Directory information disclosure | IBM | Security Verify Directory | Low | 2.7 | 2024-03-22 15:28:58 | Deep Dive |
| CVE-2022-32753 | IBM Security Verify Directory information disclosure | IBM | Security Verify Directory | Medium | 4.5 | 2024-03-22 15:26:24 | Deep Dive |