Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Vulnerability List - Page 46

Clear Filters
Found 2552 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2024-10104 Jobs for WordPress < 2.7.8 - Contributor+ Stored XSS UnknownJobs for WordPress--2024-11-15 06:00:03 Deep Dive
CVE-2024-10260 Tripetto <= 8.0.11 - Unauthentiated Stored Cross-Site Scripting via Form File Upload tripettoWordPress form builder plugin for contact forms, surveys and quizzes – Tripetto High 7.2 2024-11-15 05:30:56 Deep Dive
CVE-2024-9609 LearnPress Export Import – WordPress extension for LearnPress <= 4.0.4 - Reflected Cross-Site Scripting thimpressLearnPress – Backup & Migration Tool Medium 6.1 2024-11-15 04:29:06 Deep Dive
CVE-2024-52376 WordPress Boat Rental Plugin for WordPress plugin <= 1.0.1 - Arbitrary File Upload vulnerability cmsMindsBoat Rental Plugin for WordPress Critical 10.0 2024-11-14 18:08:06 Deep Dive
CVE-2024-10571 Chartify – WordPress Chart Plugin <= 2.9.5 - Unauthenticated Local File Inclusion via source ays-proChartify – WordPress Chart Plugin Critical 9.8 2024-11-14 11:00:13 Deep Dive
CVE-2024-11028 MultiManager WP – Manage All Your WordPress Sites Easily <= 1.0.5 - Authentication Bypass via User Impersonation icdsoftMultiManager WP – Manage All Your WordPress Sites Easily Critical 9.8 2024-11-13 09:30:26 Deep Dive
CVE-2024-11150 WordPress User Extra Fields <= 16.6 - Unauthenticated Arbitrary File Deletion vanquishWordPress User Extra Fields Critical 9.8 2024-11-13 04:29:07 Deep Dive
CVE-2024-10800 WordPress User Extra Fields <= 16.6 - Missing Authorization to Authenticated (Subscriber+) Privilege Escalation vanquishWordPress User Extra Fields High 8.8 2024-11-13 04:29:06 Deep Dive
CVE-2024-11143 Kognetiks Chatbot for WordPress <= 2.1.8 - Cross-Site Request Forgery to Authenticated (Subscriber+) Assistant Modification kognetiksKognetiks Chatbot for WordPress Medium 4.3 2024-11-13 02:33:21 Deep Dive
CVE-2024-10529 Kognetiks Chatbot for WordPress <= 2.1.7 - Missing Authorization to Authenticated (Subscriber+) Assistant Deletion kognetiksKognetiks Chatbot for WordPress Medium 5.3 2024-11-13 02:33:21 Deep Dive
CVE-2024-10684 Kognetiks Chatbot for WordPress <= 2.1.7 - Reflected Cross-Site Scripting kognetiksKognetiks Chatbot for WordPress Medium 6.1 2024-11-13 02:33:20 Deep Dive
CVE-2024-10531 Kognetiks Chatbot for WordPress <= 2.1.7 - Missing Authorization to Authenticated (Subscriber+) Assistant Update kognetiksKognetiks Chatbot for WordPress Medium 5.3 2024-11-13 02:33:19 Deep Dive
CVE-2024-10530 Kognetiks Chatbot for WordPress <= 2.1.7 - Missing Authorization to Authenticated (Subscriber+) Assistant Addition kognetiksKognetiks Chatbot for WordPress Medium 4.3 2024-11-13 02:33:18 Deep Dive
CVE-2024-10593 WPForms – Easy Form Builder for WordPress <= 1.9.1.6 - Cross-Site Request Forgery (CSRF) to Plugin's Log Deletion smubWPForms – Easy Form Builder for WordPress – Contact Forms, Payment Forms, Surveys, & More Medium 4.3 2024-11-13 02:33:17 Deep Dive
CVE-2024-51702 WordPress SrcSet Responsive Images for WordPress plugin <= 1.4 - Reflected Cross Site Scripting (XSS) vulnerability ben.moodySrcSet Responsive Images for WordPress High 7.1 2024-11-09 12:34:32 Deep Dive
CVE-2024-10589 Leopard <= 3.1.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Options Update nouthemesLeopard - WordPress Offload Media Critical 9.8 2024-11-09 07:35:07 Deep Dive
CVE-2024-10801 WordPress User Extra Fields <= 16.5 - Unauthenticated Arbitrary File Upload vanquishWordPress User Extra Fields Critical 9.8 2024-11-09 07:35:06 Deep Dive
CVE-2024-10876 Charitable – Donation Plugin for WordPress – Fundraising with Recurring Donations & More <= 1.8.3 - Reflected Cross-Site Scripting smubCharitable – Donation Plugin for WordPress – Fundraising with Recurring Donations & More Medium 6.1 2024-11-09 06:41:30 Deep Dive
CVE-2024-8756 Quform - WordPress Form Builder <= 2.20.0 - Unauthenticated Sensitive Information Exposure ThemeCatcherQuform - WordPress Form Builder Medium 5.3 2024-11-09 05:40:23 Deep Dive
CVE-2024-10470 WPLMS Learning Management System for WordPress <= 4.962 - Unauthenticated Arbitrary File Read and Deletion VibeThemesWPLMS Learning Management System for WordPress, WordPress LMS Critical 9.8 2024-11-09 05:40:22 Deep Dive