| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-31457 | gin-vue-admin background arbitrary code coverage vulnerability | flipped-aurora | gin-vue-admin | High | 7.7 | 2024-04-09 17:39:52 | Deep Dive |
| CVE-2024-31344 | WordPress Easy Login Styler plugin <= 1.0.6 - Cross Site Scripting (XSS) vulnerability | Phpbits Creative Studio | Easy Login Styler – White Label Admin Login Page for WordPress | Medium | 5.9 | 2024-04-07 17:40:52 | Deep Dive |
| CVE-2024-31280 | WordPress Church Admin plugin <= 4.1.5 - Arbitrary File Upload vulnerability | andy_moyle | Church Admin | - | - | 2024-04-07 17:33:12 | Deep Dive |
| CVE-2022-4966 | sequentech admin-console Election Description cross site scripting | sequentech | admin-console | Low | 3.5 | 2024-04-01 12:00:06 | Deep Dive |
| CVE-2017-20191 | Zimbra zm-admin-ajax Form Textbox Field Error XFormItem.js XFormItem.prototype.setError cross site scripting | Zimbra | zm-admin-ajax | Low | 3.5 | 2024-03-31 08:31:04 | Deep Dive |
| CVE-2024-30505 | WordPress Church Admin plugin <= 4.1.18 - Broken Access Control vulnerability | andy_moyle | Church Admin | Medium | 6.5 | 2024-03-29 14:12:00 | Deep Dive |
| CVE-2024-30493 | WordPress Church Admin plugin <= 4.1.7 - Cross Site Request Forgery (CSRF) vulnerability | andy_moyle | Church Admin | Medium | 4.3 | 2024-03-29 13:51:03 | Deep Dive |
| CVE-2024-30244 | WordPress Church Admin plugin <= 4.0.27 - SQL Injection via shortcode vulnerability | andy_moyle | Church Admin | High | 8.5 | 2024-03-28 04:20:23 | Deep Dive |
| CVE-2024-30193 | WordPress Church Admin plugin <= 4.1.17 - Stored Cross Site Scripting (XSS) vulnerability | andy_moyle | Church Admin | Medium | 6.5 | 2024-03-27 06:41:54 | Deep Dive |
| CVE-2024-30197 | WordPress Church Admin plugin <= 4.0.26 - Cross Site Scripting (XSS) vulnerability | andy_moyle | Church Admin | Medium | 6.5 | 2024-03-27 06:26:31 | Deep Dive |
| CVE-2024-2211 | Cross-Site Scripting vulnerability in Gophish Admin Panel | Gophish | Admin Panel | Medium | 4.6 | 2024-03-06 10:47:04 | Deep Dive |
| CVE-2024-1778 | Admin side data storage for Contact Form 7 <= 1.1.1 - Missing Authorization to Unauthenticated Bookmark Status Alteration | zestardtechnologies | Admin side data storage for Contact Form 7 | Medium | 4.3 | 2024-02-23 06:48:19 | Deep Dive |
| CVE-2024-1776 | Admin side data storage for Contact Form 7 <= 1.1.1 - Authenticated (Admin+) SQL Injection | zestardtechnologies | Admin side data storage for Contact Form 7 | High | 7.2 | 2024-02-23 06:48:18 | Deep Dive |
| CVE-2024-1777 | Admin side data storage for Contact Form 7 <= 1.1.1 - Cross-Site Request Forgery | zestardtechnologies | Admin side data storage for Contact Form 7 | Medium | 4.3 | 2024-02-23 06:48:18 | Deep Dive |
| CVE-2024-1779 | Admin side data storage for Contact Form 7 plugin <= 1.1.1 - Missing Authorization to Unauthenticated Read Status Update | zestardtechnologies | Admin side data storage for Contact Form 7 | Medium | 5.3 | 2024-02-23 06:48:17 | Deep Dive |
| CVE-2024-24876 | WordPress Admin Menu Editor Plugin <= 1.12 is vulnerable to Cross Site Request Forgery (CSRF) | Janis Elsts | Admin Menu Editor | Medium | 4.3 | 2024-02-21 06:54:42 | Deep Dive |
| CVE-2024-25625 | Pimcore Host Header Injection in user invitation link | pimcore | admin-ui-classic-bundle | High | 8.1 | 2024-02-19 15:41:29 | Deep Dive |
| CVE-2024-22126 | Cross Site Scripting vulnerability in SAP NetWeaver AS Java (User Admin Application) | SAP_SE | SAP NetWeaver AS Java (User Admin Application) | Medium | 6.1 | 2024-02-13 01:58:28 | Deep Dive |
| CVE-2024-24822 | Pimcore Admin Classic Bundle permissions are not getting checked when working with tags | pimcore | admin-ui-classic-bundle | Medium | 6.5 | 2024-02-07 17:17:59 | Deep Dive |
| CVE-2024-0879 | Authentication bypass in vector-admin domain restriction | Mintplex-Labs | vector-admin | Medium | 6.5 | 2024-01-25 14:41:26 | Deep Dive |