| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-39323 | aimeos/ai-admin-graphql improper access control vulnerability allows an editor to modify admin account | aimeos | ai-admin-graphql | High | 7.1 | 2024-07-02 16:03:03 | Deep Dive |
| CVE-2024-6266 | Pear Admin Boot loadDictItem sql injection | - | Pear Admin Boot | Medium | 6.3 | 2024-06-23 02:00:10 | Deep Dive |
| CVE-2024-6241 | Pear Admin Boot getDictItems sql injection | - | Pear Admin Boot | Medium | 6.3 | 2024-06-21 17:00:16 | Deep Dive |
| CVE-2024-35764 | WordPress Church Admin plugin <= 4.4.4 - Cross Site Scripting (XSS) vulnerability | andy_moyle | Church Admin | Medium | 6.5 | 2024-06-21 12:33:30 | Deep Dive |
| CVE-2024-37896 | SQL injection vulnerability in Gin-vue-admin | flipped-aurora | gin-vue-admin | High | 8.8 | 2024-06-17 19:33:57 | Deep Dive |
| CVE-2023-46630 | WordPress Admin and Site Enhancements (ASE) plugin <= 5.7.1 - Password Protected View Bypass Vulnerability vulnerability | wpase | Admin and Site Enhancements (ASE) | High | 7.5 | 2024-06-04 09:29:46 | Deep Dive |
| CVE-2024-1717 | Admin Notices Manager <= 1.4.0 - Missing Authorization to Authenticated (Subscriber+) User Email Retrieval | melapress | Admin Notices Manager | Medium | 4.3 | 2024-06-04 05:32:12 | Deep Dive |
| CVE-2024-35637 | WordPress Church Admin plugin <= 4.3.6 - Server Side Request Forgery (SSRF) vulnerability | andy_moyle | Church Admin | Medium | 4.4 | 2024-06-03 08:59:29 | Deep Dive |
| CVE-2024-3611 | Toolbar Extras for Elementor & More – WordPress Admin Bar Enhanced <= 1.4.9 - Authenticated (Contributor+) Stored Cross-Site Scripting | daveshine | Toolbar Extras for Elementor & More – WordPress Admin Bar Enhanced | Medium | 6.4 | 2024-05-22 05:32:47 | Deep Dive |
| CVE-2024-31281 | WordPress Church Admin plugin <= 4.1.6 - Broken Access Control vulnerability | andy_moyle | Church Admin | Medium | 6.3 | 2024-05-17 08:54:13 | Deep Dive |
| CVE-2024-34828 | WordPress Church Admin plugin <= 4.1.32 - Cross Site Request Forgery (CSRF) vulnerability | andy_moyle | Church Admin | Medium | 4.3 | 2024-05-10 08:16:22 | Deep Dive |
| CVE-2024-4104 | ADFO – Custom data in admin dashboard <= 1.9.0 - Reflected Cross-Site Scripting | giuliopanda | ADFO – Custom data in admin dashboard | Medium | 6.1 | 2024-05-09 20:03:41 | Deep Dive |
| CVE-2024-4103 | ADFO – Custom data in admin dashboard <= 1.9.0 - Cross-Site Request Forgery | giuliopanda | ADFO – Custom data in admin dashboard | Medium | 4.3 | 2024-05-09 20:03:33 | Deep Dive |
| CVE-2024-1716 | Admin Bar Remover <= 1.0.2.2 - Missing Authorization to Authenticated (Subscriber+) Settings Update | litonice13 | Admin Bar Editor – Toolbar Customization with User Role based access & Custom menus | Medium | 4.3 | 2024-05-02 16:52:46 | Deep Dive |
| CVE-2024-2401 | Admin Page Spider <= 3.31 - Authenticated (Admin+) Stored Cross-Site Scripting | jatacid | Admin Page Spider | Medium | 4.4 | 2024-05-02 16:52:36 | Deep Dive |
| CVE-2024-3729 | Frontend Admin by DynamiApps <= 3.19.4 - Improper Missing Encryption Exception Handling to Form Manipulation | shabti | Frontend Admin by DynamiApps | Critical | 9.8 | 2024-05-02 16:52:28 | Deep Dive |
| CVE-2024-33627 | WordPress AGCA – Custom Dashboard & Login Page plugin <= 7.2.2 - Server Side Request Forgery (SSRF) vulnerability | Cusmin | Absolutely Glamorous Custom Admin | Medium | 4.4 | 2024-04-29 07:42:20 | Deep Dive |
| CVE-2024-32958 | WordPress Slash Admin plugin <= 3.8.1 - CSRF to XSS vulnerability | Giorgos Sarigiannidis | Slash Admin | High | 7.1 | 2024-04-24 14:47:44 | Deep Dive |
| CVE-2024-32090 | WordPress Church Admin plugin <= 4.0.27 - Cross Site Request Forgery (CSRF) vulnerability | andy_moyle | Church Admin | Medium | 4.3 | 2024-04-15 09:02:58 | Deep Dive |
| CVE-2024-32448 | WordPress Ads.txt Admin plugin <= 1.3 - Cross Site Request Forgery (CSRF) vulnerability | VideoYield.com | Ads.txt Admin | Medium | 4.3 | 2024-04-15 07:54:28 | Deep Dive |