Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 231 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2024-5703 Icegram Express - Email Subscribers, Newsletters and Marketing Automation Plugin <= 5.7.26 - Missing Authorization icegramEmail Subscribers & Newsletters – Email Marketing, Post Notifications & Newsletter Plugin for WordPress Medium 4.3 2024-07-17 07:32:19 Deep Dive
CVE-2024-6172 Email Subscribers by Icegram Express – Email Marketing, Newsletters, Automation for WordPress & WooCommerce <= 5.7.25 - Unauthenticated SQL Injection via unsubscribe icegramEmail Subscribers & Newsletters – Email Marketing, Post Notifications & Newsletter Plugin for WordPress Critical 9.8 2024-07-02 06:49:43 Deep Dive
CVE-2024-5756 Icegram Express - Email Subscribers, Newsletters and Marketing Automation Plugin <= 5.7.23 - Unauthenticated SQL Injection via optin icegramEmail Subscribers & Newsletters – Email Marketing, Post Notifications & Newsletter Plugin for WordPress Critical 9.8 2024-06-21 04:34:11 Deep Dive
CVE-2024-4845 Icegram Express <= 5.7.22 - Authenticated (Subscriber+) SQL Injection Vulnerability via options[list_id] icegramEmail Subscribers & Newsletters – Email Marketing, Post Notifications & Newsletter Plugin for WordPress High 8.8 2024-06-12 09:33:12 Deep Dive
CVE-2024-4703 One Page Express Companion <= 1.6.37 - Authenticated (Contributor+) Stored Cross-Site Scripting via one_page_express_contact_form Shortcode horearaduOne Page Express Companion Medium 6.4 2024-06-07 07:35:28 Deep Dive
CVE-2024-20405 Cisco Finesse 安全漏洞 CiscoCisco Unified Contact Center Enterprise Medium 4.8 2024-06-05 16:15:22 Deep Dive
CVE-2024-20404 Cisco Finesse 代码问题漏洞 CiscoCisco Unified Contact Center Enterprise High 7.2 2024-06-05 16:14:24 Deep Dive
CVE-2024-4295 Email Subscribers by Icegram Express <= 5.7.20 - Unauthenticated SQL Injection via hash icegramEmail Subscribers & Newsletters – Email Marketing, Post Notifications & Newsletter Plugin for WordPress Critical 9.8 2024-06-05 05:33:06 Deep Dive
CVE-2024-3626 Email Subscribers by Icegram Express – Email Marketing, Newsletters, Automation for WordPress & WooCommerce <= 5.7.17 - Missing Authorization icegramEmail Subscribers & Newsletters – Email Marketing, Post Notifications & Newsletter Plugin for WordPress Medium 4.3 2024-05-23 05:32:15 Deep Dive
CVE-2024-30527 WordPress WP Express Checkout plugin <= 2.3.7 - Price Manipulation vulnerability Tips and Tricks HQWP Express Checkout (Accept PayPal Payments) High 7.5 2024-05-17 08:21:00 Deep Dive
CVE-2024-4010 Email Subscribers by Icegram Express <= 5.7.19 - Missing Authorization in handle_ajax_request icegramEmail Subscribers & Newsletters – Email Marketing, Post Notifications & Newsletter Plugin for WordPress High 8.8 2024-05-15 08:34:13 Deep Dive
CVE-2024-2876 Icegram Express - Email Subscribers, Newsletters and Marketing Automation Plugin <= 5.7.14 - Unauthenticated SQL Injection icegramEmail Subscribers & Newsletters – Email Marketing, Post Notifications & Newsletter Plugin for WordPress Critical 9.8 2024-05-02 16:52:46 Deep Dive
CVE-2024-2656 Icegram Express <= 5.7.14 - Authenticated (Administrator+) Cross-Site Scripting via CSV import icegramEmail Subscribers & Newsletters – Email Marketing, Post Notifications & Newsletter Plugin for WordPress Medium 4.4 2024-04-06 03:24:43 Deep Dive
CVE-2024-29041 Express.js Open Redirect in malformed URLs expressjsexpress Medium 6.1 2024-03-25 20:20:06 Deep Dive
CVE-2023-32331 IBM Connect:Express for UNIX denial of service IBMSterling Connect:Express for UNIX High 7.5 2024-03-04 18:38:46 Deep Dive
CVE-2024-22054 Ubiquiti UniFi Switches 安全漏洞 Ubiquiti IncUniFi Access Points--2024-02-20 17:14:34 Deep Dive
CVE-2024-1187 Munsoft Easy Outlook Express Recovery Registration Key denial of service MunsoftEasy Outlook Express Recovery Low 3.3 2024-02-02 17:31:04 Deep Dive
CVE-2024-20253 Cisco Unified Communications Products 安全漏洞 CiscoCisco Unified Contact Center Enterprise Critical 9.9 2024-01-26 17:28:31 Deep Dive
CVE-2023-46143 Phoenix Contact: Classic line industrial controllers prone to inadequate integrity check of PLC PHOENIX CONTACTAutomation Worx Software Suite High 7.5 2023-12-14 14:06:06 Deep Dive
CVE-2023-46141 Phoenix Contact: Automation Worx and classic line controllers prone to Incorrect Permission Assignment for Critical Resource PHOENIX CONTACTAutomation Worx Software Suite Critical 9.8 2023-12-14 14:05:11 Deep Dive