| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-3977 | WordPress Jitsi Shortcode <= 0.1 - Admin+ Stored XSS | Unknown | WordPress Jitsi Shortcode | - | - | 2024-06-14 06:00:04 | Deep Dive |
| CVE-2024-3972 | Similarity <= 3.0 - Stored XSS via CSRF | Unknown | Similarity | - | - | 2024-06-14 06:00:03 | Deep Dive |
| CVE-2024-3971 | Similarity <= 3.0 - Plugin Reset via CSRF | Unknown | Similarity | - | - | 2024-06-14 06:00:03 | Deep Dive |
| CVE-2024-3966 | Pray For Me <= 1.0.4 - Unauthenticated Stored XSS | Unknown | Pray For Me | - | - | 2024-06-14 06:00:03 | Deep Dive |
| CVE-2024-3965 | Pray For Me <= 1.0.4 - Settings Update via CSRF | Unknown | Pray For Me | - | - | 2024-06-14 06:00:03 | Deep Dive |
| CVE-2024-3754 | Alemha Watermarker <= 1.3.1 - Author+ Stored XSS | Unknown | Alemha watermarker | - | - | 2024-06-14 06:00:03 | Deep Dive |
| CVE-2024-2218 | LuckyWP Table of Contents <= 2.1.4 - Admin+ Stored XSS | Unknown | LuckyWP Table of Contents | - | - | 2024-06-14 06:00:02 | Deep Dive |
| CVE-2024-1295 | The Events Calendar (Free < 6.4.0.1, Pro < 6.4.0.1) - Contributor+ Arbitrary Events Access | Unknown | events-calendar-pro | - | - | 2024-06-14 06:00:02 | Deep Dive |
| CVE-2024-4149 | Floating Chat Widget < 3.2.3 - Admin+ Stored XSS | Unknown | Floating Chat Widget: Contact Chat Icons, WhatsApp, Telegram Chat, Line Messenger, WeChat, Email, SMS, Call Button | - | - | 2024-06-13 06:00:03 | Deep Dive |
| CVE-2024-4145 | Search & Replace < 3.2.2 - Admin+ SQL injection | Unknown | Search & Replace | - | - | 2024-06-13 06:00:03 | Deep Dive |
| CVE-2024-3552 | Web Directory Free < 1.7.0 - Unauthenticated SQL Injection | Unknown | Web Directory Free | - | - | 2024-06-13 06:00:03 | Deep Dive |
| CVE-2024-3032 | Themify Builder < 7.5.8 - Open Redirect | Unknown | Themify Builder | - | - | 2024-06-13 06:00:03 | Deep Dive |
| CVE-2024-2762 | FooGallery < 2.4.15 - Author+ Stored XSS | Unknown | FooGallery | - | - | 2024-06-13 06:00:02 | Deep Dive |
| CVE-2024-4924 | Sassy social share < 3.3.63 Admin+ Stored Cross-Site scripting | Unknown | Social Sharing Plugin | - | - | 2024-06-12 06:00:02 | Deep Dive |
| CVE-2024-0427 | Arforms < 6.4.1 - Reflected XSS | Unknown | ARForms - Premium WordPress Form Builder Plugin | - | - | 2024-06-12 06:00:02 | Deep Dive |
| CVE-2024-5003 | WP Stacker <= 1.8.5 - Stored XSS via CSRF | Unknown | WP Stacker | 中危 | - | 2024-06-07 06:00:03 | Deep Dive |
| CVE-2024-4756 | WP Backpack <= 2.1 - Admin+ Stored XSS | Unknown | WP Backpack | 中危 | - | 2024-06-07 06:00:03 | Deep Dive |
| CVE-2024-4621 | ArForms < 6.6 - Admin+ Stored XSS | Unknown | ARForms - Premium WordPress Form Builder Plugin | 中危 | - | 2024-06-07 06:00:03 | Deep Dive |
| CVE-2024-3288 | Logo Slider < 4.0.0 - Contributor+ Stored XSS | Unknown | Logo Slider | 超危 | - | 2024-06-07 06:00:02 | Deep Dive |
| CVE-2024-4620 | ArForms < 6.6 - Unauthenticated RCE | Unknown | ARForms - Premium WordPress Form Builder Plugin | 中危 | - | 2024-06-07 06:00:02 | Deep Dive |