Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 186 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2020-36838 Facebook Chat Plugin <= 1.5 - Missing Capabilities Check facebookFacebook Chat Plugin – Live Chat Plugin for WordPress High 7.4 2024-10-16 06:43:28 Deep Dive
CVE-2024-8720 RumbleTalk Live Group Chat – HTML5 <= 6.3.0 - Authenticated (Contributor+) Stored Cross-Site Scripting rumbletalkRumbleTalk Live Group Chat – HTML5 Medium 6.4 2024-10-01 07:30:12 Deep Dive
CVE-2024-8267 Radio Player – Live Shoutcast, Icecast and Any Audio Stream Player for WordPress <= 2.0.78 - Authenticated (Contributor+) Stored Cross-Site Scripting via align Attribute princeahmedRadio Player – Live Shoutcast, Icecast and Any Audio Stream Player Medium 6.4 2024-09-24 06:40:55 Deep Dive
CVE-2024-5879 HubSpot – CRM, Email Marketing, Live Chat, Forms & Analytics <= 11.1.22 - Authenticated (Contributor+) Stored Cross-Site Scripting via HubSpot Meeting Widget hubspotdevHubSpot All-In-One Marketing – Forms, Popups, Live Chat Medium 6.4 2024-08-30 04:29:57 Deep Dive
CVE-2024-7573 Relevanssi Live Ajax Search <= 2.4 - Unauthenticated WP_Query Argument Injection comesioRelevanssi Live Ajax Search Medium 5.3 2024-08-28 02:05:44 Deep Dive
CVE-2023-4025 Radio Player <= 2.0.73 - Missing Authorization to Player Update princeahmedRadio Player – Live Shoutcast, Icecast and Any Audio Stream Player Medium 5.3 2024-08-17 07:34:24 Deep Dive
CVE-2023-4024 Radio Player <= 2.0.73 - Missing Authorization to Player Deletion princeahmedRadio Player – Live Shoutcast, Icecast and Any Audio Stream Player Medium 5.3 2024-08-17 07:34:21 Deep Dive
CVE-2023-4027 Radio Player <= 2.0.73 - Missing Authorization to Settings Update princeahmedRadio Player – Live Shoutcast, Icecast and Any Audio Stream Player Medium 5.3 2024-08-17 07:34:20 Deep Dive
CVE-2024-6532 Sheet to Table Live Sync for Google Sheet <= 1.0.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via STWT_Sheet_Table Shortcode codersaifulSheet to Table Live Sync for Google Sheet Medium 6.4 2024-08-14 09:29:59 Deep Dive
CVE-2024-37536 WordPress Easy Custom Code (LESS/CSS/JS) Plugin <= 1.0.8 - Cross Site Scripting (XSS) vulnerability Web357Easy Custom Code (LESS/CSS/JS) – Live editing Medium 5.9 2024-07-21 07:05:58 Deep Dive
CVE-2024-35768 WordPress Page Builder: Live Composer plugin <= 2.1.13 - Cross Site Scripting (XSS) vulnerability LiveComposerPage Builder: Live Composer Medium 5.9 2024-06-21 12:27:55 Deep Dive
CVE-2024-35779 WordPress Page Builder: Live Composer plugin <= 1.5.42 - Contributor+ Shortcode Cross Site Scripting (XSS) vulnerability Live Composer TeamPage Builder: Live Composer Medium 6.5 2024-06-21 11:40:07 Deep Dive
CVE-2024-35780 WordPress Page Builder: Live Composer plugin <= 1.5.42 - Contributor+ PHP Object Injection vulnerability Live Composer TeamPage Builder: Live Composer High 8.5 2024-06-19 10:16:07 Deep Dive
CVE-2024-32811 WordPress USPS Shipping for WooCommerce – Live Rates plugin <= 1.9.4 - Sensitive Data Exposure via Log File vulnerability OctolizeUSPS Shipping for WooCommerce – Live Rates Medium 5.3 2024-06-09 12:44:39 Deep Dive
CVE-2024-20886 SAMSUNG Live Wallpaper Service 安全漏洞 Samsung MobileSamsung Live Wallpaper PC Medium 6.2 2024-06-04 06:42:35 Deep Dive
CVE-2024-5241 Huashi Private Cloud CDN Live Streaming Acceleration Server ipconfig_new.php os command injection HuashiPrivate Cloud CDN Live Streaming Acceleration Server Medium 4.7 2024-05-23 07:00:05 Deep Dive
CVE-2024-3595 Pure Chat – Live Chat Plugin & More! <= 2.22 - Authenticated (Subscriber+) Stored Cross-Site Scripting pure-chatPure Chat – Live Chat & More! Medium 6.4 2024-05-09 20:03:29 Deep Dive
CVE-2024-34429 WordPress Simple Website Banner plugin <= 1.8.0.2 - Cross Site Scripting (XSS) vulnerability OrchestratedCorona Virus (COVID-19) Banner & Live Data Medium 5.9 2024-05-09 11:14:22 Deep Dive
CVE-2024-34375 WordPress Sheets to WP Table Live Sync plugin <= 3.7.0 - Cross Site Scripting (XSS) vulnerability WPPOOLSheets To WP Table Live Sync Medium 5.9 2024-05-06 18:28:15 Deep Dive
CVE-2024-32957 WordPress Page Builder: Live Composer plugin <= 1.5.38 - Broken Access Control vulnerability Live Composer TeamPage Builder: Live Composer Medium 4.7 2024-04-26 10:58:36 Deep Dive