| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-6546 | One Click Close Comments <= 2.7.1 - Unauthenticated Full Path Disclosure | coffee2code | One Click Close Comments | Medium | 5.3 | 2024-07-27 01:51:07 | Deep Dive |
| CVE-2024-6629 | All-in-One Video Gallery <= 3.7.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via Video Shortcode | plugins360 | All-in-One Video Gallery | Medium | 6.4 | 2024-07-24 06:42:24 | Deep Dive |
| CVE-2024-6836 | Funnel Builder for WordPress by FunnelKit – Customize WooCommerce Checkout Pages, Create Sales Funnels, Order Bumps & One Click Upsells <= 3.4.6 - Missing Authorization to Authenticated (Contributor+) Settings Update | amans2k | FunnelKit – Funnel Builder for WooCommerce Checkout | Medium | 4.3 | 2024-07-24 05:31:56 | Deep Dive |
| CVE-2024-37239 | WordPress Branda plugin <= 3.4.17 - Cross Site Scripting (XSS) vulnerability | WPMU DEV - Your All-in-One WordPress Platform | Branda | Medium | 5.9 | 2024-07-22 09:14:17 | Deep Dive |
| CVE-2024-37245 | WordPress All In One Redirection plugin <= 2.2.0 - Cross Site Scripting (XSS) vulnerability | Vsourz Digital | All In One Redirection | High | 7.1 | 2024-07-22 09:08:51 | Deep Dive |
| CVE-2024-37955 | WordPress GutSlider – All in One Block Slider plugin <= 2.7.3 - Cross Site Scripting (XSS) vulnerability | Zakaria Binsaifullah | GutSlider – All in One Block Slider | Medium | 6.5 | 2024-07-20 08:20:02 | Deep Dive |
| CVE-2024-37956 | WordPress VK All in One Expansion Unit plugin <= 9.99.1.0 - Cross Site Scripting (XSS) vulnerability | Vektor,Inc. | VK All in One Expansion Unit | Medium | 6.5 | 2024-07-20 08:16:38 | Deep Dive |
| CVE-2024-5641 | One Click Order Re-Order <= 1.1.9 - Missing Authorization to Authenticated (Subscriber+) Stored Cross-Site Scripting | cedcommerce | One Click Order Re-Order | Medium | 6.4 | 2024-07-04 07:32:28 | Deep Dive |
| CVE-2024-3123 | CHANGING Mobile One Time Password - Arbitrary File Upload | CHANGING | Mobile One Time Password | High | 7.2 | 2024-07-01 02:52:35 | Deep Dive |
| CVE-2024-3122 | CHANGING Mobile One Time Password - Arbitrary File Reading | CHANGING | Mobile One Time Password | Medium | 4.9 | 2024-07-01 02:39:15 | Deep Dive |
| CVE-2024-5192 | Funnel Builder for WordPress by FunnelKit – Customize WooCommerce Checkout Pages, Create Sales Funnels, Order Bumps & One Click Upsells <= 3.3.1 - Authenticated (Author+) Stored Cross-Site Scripting via SVG Upload | amans2k | FunnelKit – Funnel Builder for WooCommerce Checkout | Medium | 6.4 | 2024-06-29 04:33:28 | Deep Dive |
| CVE-2024-22260 | VMware Workspace One 安全漏洞 | N/A | VMware Workspace One UEM | Medium | 6.8 | 2024-06-27 20:18:58 | Deep Dive |
| CVE-2023-40004 | Unauth. Access Token Manipulation vulnerability in multiple ServMask WordPress plugins | ServMask | All-in-One WP Migration Box Extension | High | 7.3 | 2024-06-19 12:03:08 | Deep Dive |
| CVE-2024-4615 | Elespare – Blog, Magazine and Newspaper Addons for Elementor with Templates, Widgets, Kits, and Header/Footer Builder. One Click Import: No Coding Required! <= 3.1.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Horizontal Nav Menu Widget | elespare | EleSpare – News, Magazine and Blog Addons for Elementor | Medium | 6.4 | 2024-06-13 07:31:53 | Deep Dive |
| CVE-2024-5530 | ShopLentor – WooCommerce Builder for Elementor & Gutenberg +12 Modules – All in One Solution (formerly WooLentor) <= 2.9.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via WL Product Horizontal Filter Widget | devitemsllc | ShopLentor – All-in-One WooCommerce Growth & Store Enhancement Plugin | Medium | 6.4 | 2024-06-11 04:32:13 | Deep Dive |
| CVE-2024-37289 | Trend Micro Apex One 安全漏洞 | Trend Micro, Inc. | Trend Micro Apex One | High | 7.8 | 2024-06-10 21:22:35 | Deep Dive |
| CVE-2024-36473 | Trend Micro VPN Proxy Pro 安全漏洞 | Trend Micro, Inc. | Trend Micro VPN Proxy One Pro | Medium | 5.3 | 2024-06-10 21:22:17 | Deep Dive |
| CVE-2024-36307 | Trend Micro Apex One 安全漏洞 | Trend Micro, Inc. | Trend Micro Apex One | Medium | 4.7 | 2024-06-10 21:21:33 | Deep Dive |
| CVE-2024-36306 | Trend Micro Apex One 安全漏洞 | Trend Micro, Inc. | Trend Micro Apex One | Medium | 6.1 | 2024-06-10 21:21:24 | Deep Dive |
| CVE-2024-36305 | Trend Micro Apex One 安全漏洞 | Trend Micro, Inc. | Trend Micro Apex One | High | 7.8 | 2024-06-10 21:21:15 | Deep Dive |