| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-9593 | Time Clock <= 1.2.2 & Time Clock Pro <= 1.1.4 - Unauthenticated (Limited) Remote Code Execution | Scott Paterson | Time Clock Pro | High | 8.3 | 2024-10-18 17:32:31 | Deep Dive |
| CVE-2024-49318 | WordPress My Reading Library plugin <= 1.0 - PHP Object Injection vulnerability | Scott | My Reading Library | Critical | 9.8 | 2024-10-17 17:11:46 | Deep Dive |
| CVE-2024-48021 | WordPress Contact Form 7 – PayPal & Stripe Add-on plugin <= 2.3 - Reflected Cross Site Scripting (XSS) vulnerability | Scott Paterson | Contact Form 7 – PayPal & Stripe Add-on | High | 7.1 | 2024-10-17 12:29:15 | Deep Dive |
| CVE-2024-43236 | WordPress Easy PayPal & Stripe Buy Now Button plugin <= 1.9 - Open Redirection vulnerability | Scott Paterson | Easy PayPal Buy Now Button | Medium | 4.7 | 2024-08-19 17:05:18 | Deep Dive |
| CVE-2024-31374 | WordPress AppPresser plugin <= 4.3.0 - Cross Site Request Forgery (CSRF) vulnerability | Scott Bolinger | AppPresser | Medium | 4.3 | 2024-04-15 10:23:57 | Deep Dive |
| CVE-2024-32102 | WordPress Crony Cronjob Manager plugin <= 0.5.0 - Cross Site Request Forgery (CSRF) vulnerability | Scott Kingsley Clark | Crony Cronjob Manager | Medium | 4.3 | 2024-04-15 08:45:33 | Deep Dive |
| CVE-2024-29130 | WordPress Contact Form 7 – PayPal & Stripe Add-on plugin <= 2.0 - Reflected Cross Site Scripting (XSS) vulnerability | Scott Paterson | Contact Form 7 – PayPal & Stripe Add-on | High | 7.1 | 2024-03-19 13:55:18 | Deep Dive |
| CVE-2024-27192 | WordPress Configure SMTP Plugin <= 3.1 is vulnerable to Cross Site Scripting (XSS) | Scott Reilly | Configure SMTP | High | 7.1 | 2024-03-15 12:44:31 | Deep Dive |
| CVE-2023-51683 | WordPress Easy PayPal Buy Now Button Plugin <= 1.8.1 is vulnerable to Cross Site Request Forgery (CSRF) | Scott Paterson | Easy PayPal & Stripe Buy Now Button | Medium | 5.4 | 2024-02-28 16:45:07 | Deep Dive |
| CVE-2023-47239 | WordPress Easy PayPal Shopping Cart Plugin <= 1.1.10 is vulnerable to Cross Site Scripting (XSS) | Scott Paterson | Easy PayPal Shopping Cart | Medium | 6.5 | 2023-11-16 18:58:14 | Deep Dive |
| CVE-2022-45360 | WordPress Commenter Emails Plugin <= 2.6.1 is vulnerable to CSV Injection | Scott Reilly | Commenter Emails | 超危 | - | 2023-11-07 16:58:21 | Deep Dive |
| CVE-2023-45604 | WordPress Get Custom Field Values Plugin <= 4.0.1 is vulnerable to Cross Site Scripting (XSS) | Scott Reilly | Get Custom Field Values | Medium | 5.9 | 2023-10-18 13:17:23 | Deep Dive |
| CVE-2023-24405 | WordPress Contact Form 7 – PayPal & Stripe Add-on Plugin <= 1.9.3 is vulnerable to Cross Site Request Forgery (CSRF) | Scott Paterson | Contact Form 7 – PayPal & Stripe Add-on | Medium | 5.4 | 2023-07-10 11:58:09 | Deep Dive |
| CVE-2023-24395 | WordPress Contact Form 7 Redirect & Thank You Page Plugin <= 1.0.3 is vulnerable to Cross Site Request Forgery (CSRF) | Scott Paterson | Contact Form 7 Redirect & Thank You Page | Medium | 5.4 | 2023-07-10 10:40:44 | Deep Dive |
| CVE-2017-16184 | scott-blanch-weather-app 路径遍历漏洞 | HackerOne | scott-blanch-weather-app node module | 高危 | - | 2018-06-07 02:00:00 | Deep Dive |