| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-4175 | Improper Input Validation vulnerability in Hyperion Web Server | Hyperion | Hyperion Web Server | Medium | 5.4 | 2024-04-25 11:51:36 | Deep Dive |
| CVE-2024-4174 | Cross-Site Scripting (XSS) vulnerability in Hyperion Web Server | Hyperion | Hyperion Web Server | Medium | 5.4 | 2024-04-25 11:44:31 | Deep Dive |
| CVE-2024-32947 | WordPress WP ADA Compliance Check Basic plugin <= 3.1.3 - Cross Site Request Forgery (CSRF) vulnerability | AlumniOnline Web Services LLC | WP ADA Compliance Check Basic | Medium | 4.3 | 2024-04-24 14:48:57 | Deep Dive |
| CVE-2024-21048 | Oracle E-Business Suite 的 Oracle Web Applications Desktop Integrator 安全漏洞 | Oracle Corporation | Web Applications Desktop Integrator | Medium | 4.3 | 2024-04-16 21:26:14 | Deep Dive |
| CVE-2024-31921 | WordPress Ultimate Product Catalog plugin <= 5.2.15 - Cross Site Request Forgery (CSRF) vulnerability | Etoile Web Design | Ultimate Product Catalogue | Medium | 4.3 | 2024-04-15 09:27:07 | Deep Dive |
| CVE-2024-22435 | HPE NonStop Web ViewPoint Enterprise software, Unauthorized access | Hewlett Packard Enterprise | HPE NonStop Web ViewPoint Enterprise software | High | 8.3 | 2024-04-15 09:06:10 | Deep Dive |
| CVE-2024-32428 | WordPress MWW Disclaimer Buttons plugin <= 3.0.2 - Stored Cross Site Scripting (XSS) vulnerability | Moss Web Works | MWW Disclaimer Buttons | Medium | 5.9 | 2024-04-15 06:29:54 | Deep Dive |
| CVE-2024-1780 | BizCalendar Web <= 1.1.0.25 - Reflected Cross-Site Scripting via 'tab' | setriosoft | BizCalendar Web | Medium | 6.1 | 2024-04-10 07:30:59 | Deep Dive |
| CVE-2024-25646 | Information Disclosure vulnerability in SAP BusinessObjects Web Intelligence | SAP_SE | SAP BusinessObjects Web Intelligence | High | 7.7 | 2024-04-09 00:47:43 | Deep Dive |
| CVE-2024-3378 | iboss Secure Web Gateway Login Portal login cross site scripting | iboss | Secure Web Gateway | Medium | 4.3 | 2024-04-06 12:31:05 | Deep Dive |
| CVE-2024-25690 | HTML injection in ArcGIS Web AppBuilder | Esri | ArcGIS Enterprise Web App Builder | Medium | 4.7 | 2024-04-04 17:53:04 | Deep Dive |
| CVE-2024-25708 | Persistent XSS when creating new application using Web App Builder | Esri | ArcGIS Enterprise Web App Builder | Medium | 4.8 | 2024-04-04 17:52:49 | Deep Dive |
| CVE-2024-31084 | WordPress Weekly Class Schedule plugin <= 3.19 - Reflected Cross Site Scripting (XSS) vulnerability | Pulsar Web Design | Weekly Class Schedule | High | 7.1 | 2024-03-31 19:35:50 | Deep Dive |
| CVE-2024-31110 | WordPress Contact Form 7 Newsletter plugin <= 2.2 - Cross Site Scripting (XSS) vulnerability | Katz Web Services, Inc. | Contact Form 7 Newsletter | High | 7.1 | 2024-03-31 18:57:53 | Deep Dive |
| CVE-2024-30445 | WordPress Web Icons plugin <= 1.0.0.10 - Cross Site Scripting (XSS) vulnerability | GhozyLab, Inc. | Web Icons | Medium | 6.5 | 2024-03-29 16:57:32 | Deep Dive |
| CVE-2024-30497 | WordPress WP Responsive Tabs horizontal vertical and accordion Tabs plugin <= 1.1.17 - SQL Injection vulnerability | I Thirteen Web Solution | WP Responsive Tabs horizontal vertical and accordion Tabs | High | 8.5 | 2024-03-29 13:59:25 | Deep Dive |
| CVE-2024-29788 | WordPress Podlove Web Player plugin <= 5.7.1 - Cross Site Scripting (XSS) vulnerability | Podlove | Podlove Web Player | Medium | 6.5 | 2024-03-27 12:46:34 | Deep Dive |
| CVE-2024-29933 | WordPress Web Icons plugin <= 1.0.0.10 - Cross Site Scripting (XSS) vulnerability | GhozyLab, Inc. | Web Icons | Medium | 6.5 | 2024-03-27 10:13:22 | Deep Dive |
| CVE-2024-22299 | WordPress FV Player plugin <= 7.5.41.7212 - Reflected Cross Site Scripting (XSS) vulnerability | Foliovision: Making the web work for you | FV Flowplayer Video Player | High | 7.1 | 2024-03-27 05:59:23 | Deep Dive |
| CVE-2023-33322 | WordPress Front End Users plugin < 3.2.25 - Cross Site Scripting (XSS) vulnerability | Etoile Web Design | Front End Users | High | 7.1 | 2024-03-26 08:48:08 | Deep Dive |