| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-44040 | WordPress ShiftController Employee Shift Scheduling plugin <= 4.9.64 - Cross Site Scripting (XSS) vulnerability | plainware | ShiftController Employee Shift Scheduling | Medium | 5.9 | 2024-10-06 12:11:25 | Deep Dive |
| CVE-2024-9435 | ShiftController Employee Shift Scheduling <= 4.9.66 - Reflected Cross-Site Scripting | plainware | ShiftController Employee Shift Scheduling | Medium | 6.1 | 2024-10-04 06:48:42 | Deep Dive |
| CVE-2024-4733 | ShiftController Employee Shift Scheduling <= 4.9.57 - Authenticated (Contributor+) PHP Object Injection | plainware | ShiftController Employee Shift Scheduling | High | 7.5 | 2024-05-16 19:33:32 | Deep Dive |
| CVE-2023-29425 | WordPress ShiftController Employee Shift Scheduling Plugin <= 4.9.23 is vulnerable to Cross Site Request Forgery (CSRF) | plainware.com | ShiftController Employee Shift Scheduling | Medium | 5.4 | 2023-11-12 21:16:12 | Deep Dive |
| CVE-2023-29424 | WordPress ShiftController Employee Shift Scheduling Plugin <= 4.9.23 is vulnerable to Cross Site Scripting (XSS) | Plainware | ShiftController Employee Shift Scheduling | High | 7.1 | 2023-06-26 07:17:51 | Deep Dive |
| CVE-2023-1978 | ShiftController Employee Shift Scheduling <= 4.9.25 - Reflected Cross-Site Scripting via Query String | plainware | ShiftController Employee Shift Scheduling | Medium | 6.1 | 2023-06-09 05:33:30 | Deep Dive |