| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-7015 | File Manager Pro <= 8.3.4 - Reflected Cross-Site Scripting | File Manager | File Manager Pro | Medium | 6.1 | 2024-03-13 15:27:06 | Deep Dive |
| CVE-2024-1684 | Otter Blocks PRO <= 2.6.3 - Authenticated(Contributor+) Stored Cross-Site Scripting via File Field CSS | Themisle | Otter Blocks PRO – Gutenberg Blocks, Page Builder for Gutenberg Editor & FSE | Medium | 6.4 | 2024-03-13 15:27:05 | Deep Dive |
| CVE-2024-1691 | Otter Blocks PRO <= 2.6.3 - Unauthenticated Stored Cross-Site Scripting via SVG Upload | Themisle | Otter Blocks PRO – Gutenberg Blocks, Page Builder for Gutenberg Editor & FSE | Medium | 6.1 | 2024-03-13 15:26:58 | Deep Dive |
| CVE-2024-22041 | Siemens 多款产品缓冲区错误漏洞 | Siemens | Cerberus PRO EN Engineering Tool | High | 7.5 | 2024-03-12 10:21:56 | Deep Dive |
| CVE-2024-22040 | Siemens 多款产品缓冲区错误漏洞 | Siemens | Cerberus PRO EN Engineering Tool | High | 7.5 | 2024-03-12 10:21:55 | Deep Dive |
| CVE-2024-22039 | Siemens 多款产品安全漏洞 | Siemens | Cerberus PRO EN Engineering Tool | Critical | 10.0 | 2024-03-12 10:21:54 | Deep Dive |
| CVE-2024-1279 | Paid Memberships Pro < 2.12.9 - Contributor+ Arbitrary User Custom Field Disclosure | Unknown | Paid Memberships Pro | - | - | 2024-03-11 17:56:07 | Deep Dive |
| CVE-2024-1453 | Santesoft Sante DICOM Viewer Pro Out-of-Bounds Read | Santesoft | Sante DICOM Viewer Pro | High | 7.8 | 2024-03-01 18:56:41 | Deep Dive |
| CVE-2024-2009 | Nway Pro Argument index.php ajax_login_submit_form information exposure | - | Nway Pro | Medium | 5.3 | 2024-02-29 18:31:06 | Deep Dive |
| CVE-2024-24843 | WordPress PowerPack Pro for Elementor Plugin < 2.10.8 is vulnerable to Cross Site Request Forgery (CSRF) | PowerPack Addons for Elementor | PowerPack Pro for Elementor | High | 7.1 | 2024-02-21 07:07:56 | Deep Dive |
| CVE-2024-0794 | Certain LaserJet Pro, HP Enterprise LaserJet, HP LaserJet Managed Printers – Potential Buffer Overflow, Potential Remote Code Execution | HP Inc. | Certain LaserJet Pro, HP Enterprise LaserJet, HP LaserJet Managed Printers | - | - | 2024-02-20 17:23:11 | Deep Dive |
| CVE-2024-1078 | Quiz Maker <= 6.5.2.4 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Quiz Creation & Modification | ays-pro | Quiz Maker | Medium | 4.3 | 2024-02-07 07:32:20 | Deep Dive |
| CVE-2024-1079 | Quiz Maker <= 6.5.2.4 - Missing Authorization to Unauthenticated Quiz Data Retrieval | ays-pro | Quiz Maker | Medium | 5.3 | 2024-02-07 07:32:19 | Deep Dive |
| CVE-2023-6846 | File Manager Pro <= 8.3.4 - Authenticated (Subscriber+) Arbitrary File Upload | File Manager | File Manager Pro | High | 8.8 | 2024-02-05 21:27:12 | Deep Dive |
| CVE-2023-6701 | Advanced Custom Fields <= 6.2.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Custom Field | wpengine | Advanced Custom Fields (ACF®) | Medium | 6.4 | 2024-02-05 21:22:04 | Deep Dive |
| CVE-2023-51540 | WordPress Custom 404 Pro Plugin <= 3.10.0 is vulnerable to Cross Site Scripting (XSS) | Kunal Nagar | Custom 404 Pro | High | 7.1 | 2024-02-01 10:11:42 | Deep Dive |
| CVE-2024-22140 | WordPress Profile Builder Pro Plugin <= 3.10.0 is vulnerable to Cross Site Request Forgery (CSRF) | Cozmoslabs | Profile Builder Pro | High | 8.8 | 2024-01-31 13:46:15 | Deep Dive |
| CVE-2024-0788 | SUPERAntiSpyware Pro X v10.0.1260 - Kernel-level API parameters manipulation | SUPERAntiSpyware | SUPERAntiSpyware Pro X | Medium | 6.6 | 2024-01-29 16:20:53 | Deep Dive |
| CVE-2024-0624 | Paid Memberships Pro <= 2.12.7 - Cross-Site Request Forgery to Level Orders Update | strangerstudios | Paid Memberships Pro – Content Restriction, User Registration, & Paid Subscriptions | Medium | 5.3 | 2024-01-25 01:55:03 | Deep Dive |
| CVE-2024-22141 | WordPress Profile Builder Pro Plugin <= 3.10.0 is vulnerable to Sensitive Data Exposure | Cozmoslabs | Profile Builder Pro | Medium | 6.5 | 2024-01-24 14:50:45 | Deep Dive |