| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-54240 | WordPress Blaze Online eParcel for WooCommerce plugin <= 1.3.3 - Reflected Cross Site Scripting (XSS) vulnerability | blazeonline | Blaze Online eParcel for WooCommerce | High | 7.1 | 2024-12-13 14:24:34 | Deep Dive |
| CVE-2024-11275 | WP Timetics- AI-powered Appointment Booking Calendar and Online Scheduling Plugin <= 1.0.27 - Missing Authorization to Authenticated (Subscriber+) Arbitrary User Deletion | arraytics | Timetics – Appointment Booking & Scheduling | Medium | 4.3 | 2024-12-13 08:24:52 | Deep Dive |
| CVE-2024-12172 | WP Courses LMS – Online Courses Builder, eLearning Courses, Courses Solution, Education Courses <= 3.2.21 - Missing Authorization to Authenticated (Subscriber+) Arbitrary User Meta Update | hookandhook | WP Courses LMS – Online Courses Builder, eLearning Courses, Courses Solution, Education Courses | High | 7.5 | 2024-12-12 05:24:22 | Deep Dive |
| CVE-2024-12490 | code-projects Online Class and Exam Scheduling System teacher_save.php sql injection | code-projects | Online Class and Exam Scheduling System | Medium | 6.3 | 2024-12-11 22:31:06 | Deep Dive |
| CVE-2024-12489 | code-projects Online Class and Exam Scheduling System term.php sql injection | code-projects | Online Class and Exam Scheduling System | Medium | 6.3 | 2024-12-11 22:00:13 | Deep Dive |
| CVE-2024-12488 | code-projects Online Class and Exam Scheduling System subject_update.php sql injection | code-projects | Online Class and Exam Scheduling System | Medium | 6.3 | 2024-12-11 21:31:05 | Deep Dive |
| CVE-2024-12487 | code-projects Online Class and Exam Scheduling System room_update.php sql injection | code-projects | Online Class and Exam Scheduling System | Medium | 6.3 | 2024-12-11 21:00:16 | Deep Dive |
| CVE-2024-12486 | code-projects Online Class and Exam Scheduling System rank_update.php sql injection | code-projects | Online Class and Exam Scheduling System | Medium | 6.3 | 2024-12-11 20:31:07 | Deep Dive |
| CVE-2024-12485 | code-projects Online Class and Exam Scheduling System department.php sql injection | code-projects | Online Class and Exam Scheduling System | Medium | 6.3 | 2024-12-11 20:31:05 | Deep Dive |
| CVE-2024-12360 | code-projects Online Class and Exam Scheduling System class_update.php sql injection | code-projects | Online Class and Exam Scheduling System | Medium | 6.3 | 2024-12-09 05:00:18 | Deep Dive |
| CVE-2024-9872 | Online Booking & Scheduling Calendar for WordPress by vcita <= 4.5.1 - Authenticated (Subscriber+) Stored Cross-Site Scripting | vcita | Online Booking & Scheduling Calendar for WordPress by vcita | Medium | 5.4 | 2024-12-06 08:24:55 | Deep Dive |
| CVE-2024-12233 | code-projects Online Notice Board Profile Picture registration.php unrestricted upload | code-projects | Online Notice Board | High | 7.3 | 2024-12-05 16:31:05 | Deep Dive |
| CVE-2024-7488 | Business Logic Error in RestApp Inc.'s Online Ordering System | RestApp Inc. | Online Ordering System | Medium | 5.3 | 2024-12-04 14:03:49 | Deep Dive |
| CVE-2024-53751 | WordPress Build App Online plugin <= 1.0.23 - Cross Site Request Forgery (CSRF) vulnerability | hakeemnala | Build App Online | Medium | 5.4 | 2024-12-02 13:48:37 | Deep Dive |
| CVE-2024-10400 | Tutor LMS <= 2.7.6 - Unauthenticated SQL Injection via rating_filter | themeum | Tutor LMS – eLearning and online course solution | High | 7.5 | 2024-11-21 07:35:37 | Deep Dive |
| CVE-2024-10393 | Tutor LMS <= 2.7.6 - User Registration Setting Bypass to Unauthorized User Registration | themeum | Tutor LMS – eLearning and online course solution | Medium | 5.3 | 2024-11-21 06:49:54 | Deep Dive |
| CVE-2024-11438 | StreamWeasels Online Status Bar <= 2.1.9 - Authenticated (Contributor+) Stored Cross-Site Scripting | jburleigh1 | StreamWeasels Online Status Bar | Medium | 6.4 | 2024-11-21 05:33:49 | Deep Dive |
| CVE-2024-10177 | Beds24 Online Booking <= 2.0.27 - Authenticated (Contributor+) Stored Cross-Site Scripting via beds24-link Shortcode | markkinchin | Beds24 Online Booking | Medium | 6.4 | 2024-11-21 02:06:49 | Deep Dive |
| CVE-2024-11247 | SourceCodester Online Eyewear Shop Inventory Page Master.php cross site scripting | SourceCodester | Online Eyewear Shop | Low | 3.5 | 2024-11-15 16:31:05 | Deep Dive |
| CVE-2024-11243 | code-projects Online Shop Store signup.php cross site scripting | code-projects | Online Shop Store | Medium | 4.3 | 2024-11-15 15:00:09 | Deep Dive |