| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-50506 | WordPress Marketing Automation by AZEXO plugin <= 1.27.80 - Privilege Escalation vulnerability | azexo | Marketing Automation by AZEXO | High | 8.8 | 2024-10-30 08:08:50 | Deep Dive |
| CVE-2024-50480 | WordPress Marketing Automation by AZEXO plugin <= 1.27.80 - Arbitrary File Upload vulnerability | azexo | Marketing Automation by AZEXO | Critical | 9.9 | 2024-10-29 07:58:44 | Deep Dive |
| CVE-2024-10387 | Rockwell Automation FactoryTalk ThinManager Denial-of-Service Vulnerability | Rockwell Automation | FactoryTalk ThinManager | High | 7.5 | 2024-10-25 17:04:36 | Deep Dive |
| CVE-2024-10386 | Rockwell Automation FactoryTalk ThinManager Authentication Vulnerability | Rockwell Automation | FactoryTalk ThinManager | Critical | 9.8 | 2024-10-25 17:04:34 | Deep Dive |
| CVE-2024-10033 | Aap-gateway: xss on aap-gateway | - | - | Medium | 6.1 | 2024-10-16 16:59:44 | Deep Dive |
| CVE-2024-4692 | Multiple missing permission checks | OpenText | OpenText Application Automation Tools | - | - | 2024-10-16 16:41:24 | Deep Dive |
| CVE-2024-4690 | Insecure usage for DocumentBuilderFactory and TransformerFactory in OpenText Application Automation Tools | OpenText | OpenText Application Automation Tools | - | - | 2024-10-16 16:41:22 | Deep Dive |
| CVE-2024-4211 | Multiple missing permission checks | OpenText | OpenText Application Automation Tools | - | - | 2024-10-16 16:41:21 | Deep Dive |
| CVE-2024-4189 | Multiple XXE sinks in Run LoadRunner script step in OpenText Application Automation Tools | OpenText | OpenText Application Automation Tools | - | - | 2024-10-16 16:41:20 | Deep Dive |
| CVE-2024-4184 | Multiple XXE sinks in ALM archive post-build step in OpenText Application Automation Tools | OpenText | OpenText Application Automation Tools | - | - | 2024-10-16 16:41:02 | Deep Dive |
| CVE-2022-4974 | Freemius SDK <= 2.4.2 - Missing Authorization Checks | dashlabsltd | YASR – Yet Another Star Rating Plugin for WordPress | Medium | 6.3 | 2024-10-16 06:43:30 | Deep Dive |
| CVE-2024-9979 | Pyo3: risk of use-after-free in `borrowed` reads from python weak references | - | - | Medium | 5.3 | 2024-10-15 14:01:54 | Deep Dive |
| CVE-2024-6207 | Rockwell Automation多款产品 安全漏洞 | Rockwell Automation | ControlLogix® 5580 | High | 7.5 | 2024-10-14 20:53:49 | Deep Dive |
| CVE-2024-7847 | RSLogix™ 5 and RSLogix 500® Remote Code Execution Via VBA Embedded Script | Rockwell Automation | RSLogix 500® | High | 7.7 | 2024-10-14 13:47:15 | Deep Dive |
| CVE-2024-9412 | Improper Authorization Vulnerability in Rockwell Automation Verve® Asset Manager | Rockwell Automation | Verve® Asset Manager | - | - | 2024-10-08 19:24:41 | Deep Dive |
| CVE-2024-8626 | Logix Controllers Vulnerable to Denial-of-Service Vulnerability | Rockwell Automation | CompactLogix 5380 controllers | - | - | 2024-10-08 16:35:05 | Deep Dive |
| CVE-2024-9620 | Event-driven automation in ansible automation platform (aap): ansible event-driven automation (eda) lacks encryption | - | - | Medium | 5.3 | 2024-10-08 16:25:40 | Deep Dive |
| CVE-2024-9124 | Rockwell Automation PowerFlex 6000T CIP Security denial-of-service Vulnerability | Rockwell Automation | Drives - PowerFlex 6000T | - | - | 2024-10-08 16:23:09 | Deep Dive |
| CVE-2024-8254 | Email Subscribers by Icegram Express – Email Marketing, Newsletters, Automation for WordPress & WooCommerce <= 5.7.34 - Authenticated (Subscriber+) Arbitrary Shortcode Execution | icegram | Email Subscribers & Newsletters – Email Marketing, Post Notifications & Newsletter Plugin for WordPress | Medium | 5.4 | 2024-10-02 06:46:02 | Deep Dive |
| CVE-2024-9355 | Golang-fips: golang fips zeroed buffer | - | - | Medium | 6.5 | 2024-10-01 18:17:29 | Deep Dive |