| CVE-2024-21796 | Ministry of Defense Electronic Deliverables Creation Support Tool 安全漏洞 | Ministry of Defense | Electronic Deliverables Creation Support Tool (Construction Edition) | 低危 | - | 2024-01-24 01:32:54 | Deep Dive |
| CVE-2018-25097 | Acumos Design Studio cross site scripting | Acumos | Design Studio | Low | 3.5 | 2024-01-02 15:31:04 | Deep Dive |
| CVE-2023-5180 | Out-of-bounds Write vulnerability exists in ODA Drawings SDK before 2024.12 | Open Design Alliance | ODA Drawings SDK - All Versions < 2024.12 | High | 7.8 | 2023-12-26 08:35:38 | Deep Dive |
| CVE-2023-41128 | WordPress WP Roadmap Plugin <= 1.0.8 is vulnerable to Cross Site Scripting (XSS) | Iqonic Design | WP Roadmap – Product Feedback Board | Medium | 5.9 | 2023-11-30 12:16:08 | Deep Dive |
| CVE-2023-5179 | Open Design Alliance Drawings SDK 缓冲区错误漏洞 | Open Design Alliance | ODA Drawings SDK - All Versions < 2024.10 | High | 7.8 | 2023-11-07 15:16:23 | Deep Dive |
| CVE-2023-29235 | WordPress Maintenance Switch plugin <= 1.7.1 - Cross Site Request Forgery (CSRF) vulnerability | Fugu Design | Maintenance Switch | Medium | 5.4 | 2023-10-06 13:05:06 | Deep Dive |
| CVE-2023-25980 | WordPress Optimize Database after Deleting Revisions Plugin <= 5.1 is vulnerable to Cross Site Request Forgery (CSRF) | CAGE Web Design | Rolf van Gelder | Optimize Database after Deleting Revisions | Medium | 4.3 | 2023-10-04 10:25:13 | Deep Dive |
| CVE-2023-5291 | Blog Filter <= 1.5.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode | awordpresslife | Blog Filter Post Filtering | Medium | 6.4 | 2023-10-04 01:52:40 | Deep Dive |
| CVE-2023-40558 | WordPress Video Gallery & Management Plugin <= 3.3.5 is vulnerable to Cross Site Request Forgery (CSRF) | eMarket Design | YouTube Video Gallery by YouTube Showcase | Medium | 5.4 | 2023-10-03 13:29:35 | Deep Dive |
| CVE-2023-32294 | WordPress GDPR Cookie Consent Notice Box Plugin <= 1.1.6 is vulnerable to Cross Site Scripting (XSS) | Radical Web Design | GDPR Cookie Consent Notice Box | Medium | 5.9 | 2023-08-30 15:00:18 | Deep Dive |
| CVE-2023-38045 | Extension - admiror-design-studio.com - XSS in Admiror Gallery component for Joomla 5.0.0-5.2.0 | admiror-design-studio.com | Admiror Gallery component for Joomla | 中危 | - | 2023-08-07 16:51:05 | Deep Dive |
| CVE-2023-34005 | WordPress Front End Users Plugin <= 3.2.24 is vulnerable to Cross Site Request Forgery (CSRF) | Etoile Web Design | Front End Users | Medium | 6.5 | 2023-07-17 14:46:13 | Deep Dive |
| CVE-2023-25964 | WordPress We’re Open! Plugin <= 1.46 is vulnerable to Cross Site Scripting (XSS) | Noah Hearle, Design Extreme | We’re Open! | Medium | 5.9 | 2023-06-13 14:07:00 | Deep Dive |
| CVE-2023-33984 | Cross-Site Scripting (XSS) vulnerability in NetWeaver (Design Time Repository) | SAP_SE | SAP NetWeaver (Design Time Repository) | Medium | 6.4 | 2023-06-13 02:44:24 | Deep Dive |
| CVE-2023-0692 | Metform Elementor Contact Form Builder <= 3.3.1 - Authenticated (Subscriber+) Information Disclosure via 'mf_payment_status' shortcode | roxnor | MetForm – Contact Form, Survey, Quiz, & Custom Form Builder for Elementor | Medium | 4.3 | 2023-06-09 05:33:37 | Deep Dive |
| CVE-2023-0721 | Metform Elementor Contact Form Builder <= 3.3.0 - Unauthenticated CSV Injection | roxnor | MetForm – Contact Form, Survey, Quiz, & Custom Form Builder for Elementor | High | 8.3 | 2023-06-09 05:33:34 | Deep Dive |
| CVE-2023-0708 | Metform Elementor Contact Form Builder <= 3.3.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via mf_first_name shortcode | roxnor | MetForm – Contact Form, Survey, Quiz, & Custom Form Builder for Elementor | Medium | 5.4 | 2023-06-09 05:33:28 | Deep Dive |
| CVE-2023-0691 | Metform Elementor Contact Form Builder <= 3.3.1 - Authenticated (Subscriber+) Information Disclosure via mf_last_name shortcode | roxnor | MetForm – Contact Form, Survey, Quiz, & Custom Form Builder for Elementor | Medium | 4.3 | 2023-06-09 05:33:24 | Deep Dive |
| CVE-2023-0710 | Metform Elementor Contact Form Builder <= 3.3.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via mf_thankyou shortcode | roxnor | MetForm – Contact Form, Survey, Quiz, & Custom Form Builder for Elementor | Medium | 4.9 | 2023-06-09 05:33:24 | Deep Dive |
| CVE-2023-0688 | Metform Elementor Contact Form Builder <= 3.3.1 - Authenticated (Subscriber+) Information Disclosure via mf_thankyou shortcode | roxnor | MetForm – Contact Form, Survey, Quiz, & Custom Form Builder for Elementor | Medium | 6.5 | 2023-06-09 05:33:23 | Deep Dive |