| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-10744 | PHPGurukul Online Shopping Portal complex_header_2.php cross site scripting | PHPGurukul | Online Shopping Portal | Low | 3.5 | 2024-11-03 22:31:06 | Deep Dive |
| CVE-2024-10743 | PHPGurukul Online Shopping Portal editable_ajax.php cross site scripting | PHPGurukul | Online Shopping Portal | Low | 3.5 | 2024-11-03 21:31:06 | Deep Dive |
| CVE-2024-43253 | WordPress Smart Online Order for Clover plugin <= 1.5.6 - Broken Access Control vulnerability | ZAYTECH | Smart Online Order for Clover | Medium | 5.3 | 2024-11-01 14:17:36 | Deep Dive |
| CVE-2024-43254 | WordPress Smart Online Order for Clover plugin <= 1.5.6 - Broken Access Control vulnerability | ZAYTECH | Smart Online Order for Clover | Medium | 4.3 | 2024-11-01 14:17:36 | Deep Dive |
| CVE-2024-10509 | Codezips Online Institute Management System login.php sql injection | Codezips | Online Institute Management System | High | 7.3 | 2024-10-30 02:31:06 | Deep Dive |
| CVE-2024-10000 | Masteriyo LMS – eLearning and Online Course Builder for WordPress <= 1.13.3 - Authenticated (Student+) Stored Cross-Site Scripting via Ask a Question Functionality | masteriyo | Masteriyo LMS – Online Course Builder for eLearning, LMS & Education | Medium | 6.4 | 2024-10-29 05:32:39 | Deep Dive |
| CVE-2024-10008 | Masteriyo LMS – eLearning and Online Course Builder for WordPress <= 1.13.3 - Authenticated (Student+) Missing Authorization to Privilege Escalation | masteriyo | Masteriyo LMS – Online Course Builder for eLearning, LMS & Education | High | 8.8 | 2024-10-29 05:32:38 | Deep Dive |
| CVE-2024-10447 | Project Worlds Online Time Table Generator staffdashboard.php sql injection | Project Worlds | Online Time Table Generator | Medium | 6.3 | 2024-10-28 13:00:07 | Deep Dive |
| CVE-2024-50497 | WordPress Advanced Online Ordering and Delivery Platform plugin <= 2.0.0 - Local File Inclusion vulnerability | wdesco | Advanced Online Ordering and Delivery Platform | High | 8.1 | 2024-10-28 12:35:15 | Deep Dive |
| CVE-2024-10446 | Project Worlds Online Time Table Generator admindashboard.php sql injection | Project Worlds | Online Time Table Generator | Medium | 6.3 | 2024-10-28 11:31:06 | Deep Dive |
| CVE-2024-10413 | SourceCodester Online Hotel Reservation System update.php upload unrestricted upload | SourceCodester | Online Hotel Reservation System | Medium | 6.3 | 2024-10-27 09:31:04 | Deep Dive |
| CVE-2024-10411 | SourceCodester Online Hotel Reservation System controller.php doCheckout sql injection | SourceCodester | Online Hotel Reservation System | Medium | 6.3 | 2024-10-27 05:00:05 | Deep Dive |
| CVE-2024-10410 | SourceCodester Online Hotel Reservation System controller.php upload unrestricted upload | SourceCodester | Online Hotel Reservation System | Medium | 6.3 | 2024-10-27 03:31:05 | Deep Dive |
| CVE-2024-10353 | SourceCodester Online Exam System admin-dashboard access control | SourceCodester | Online Exam System | Medium | 6.3 | 2024-10-24 23:31:15 | Deep Dive |
| CVE-2024-9263 | WP Timetics- AI-powered Appointment Booking Calendar and Online Scheduling Plugin <= 1.0.25 - Insecure Direct Object Reference to Unauthenticated Arbitrary User Password/Email Reset/Account Takeover | arraytics | Timetics – Appointment Booking & Scheduling | Critical | 9.8 | 2024-10-17 03:32:49 | Deep Dive |
| CVE-2022-4974 | Freemius SDK <= 2.4.2 - Missing Authorization Checks | dashlabsltd | YASR – Yet Another Star Rating Plugin for WordPress | Medium | 6.3 | 2024-10-16 06:43:30 | Deep Dive |
| CVE-2024-8787 | Smart Online Order for Clover <= 1.5.7 - Reflected Cross-Site Scripting | elbanyaoui | Smart Online Order for Clover | Medium | 6.1 | 2024-10-16 02:05:02 | Deep Dive |
| CVE-2024-9974 | SourceCodester Online Eyewear Shop POST Request Master.php sql injection | SourceCodester | Online Eyewear Shop | Medium | 6.3 | 2024-10-15 09:31:07 | Deep Dive |
| CVE-2024-9973 | SourceCodester Online Eyewear Shop Report Viewing Page page sql injection | SourceCodester | Online Eyewear Shop | Medium | 6.3 | 2024-10-15 09:31:05 | Deep Dive |
| CVE-2024-9895 | Smart Online Order for Clover <= 1.5.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via moo_receipt_link Shortcode | elbanyaoui | Smart Online Order for Clover | Medium | 6.4 | 2024-10-15 08:29:12 | Deep Dive |