Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2024-54383 |
Description: Incorrect Privilege Assignment vulnerability in wpweb WooCommerce PDF Vouchers allows Privilege Escalation.This issue affects WooCommerce PDF Vouchers: from n/a before 4.9.9.
CVSS: CRITICAL (9.8) EPSS Score: 0.04%
December 19th, 2024 (4 months ago)
|
|
CVE-2024-12287 |
Description: The Biagiotti Membership plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 1.0.2. This is due to the plugin not properly verifying a user's identity prior to authenticating them. This makes it possible for unauthenticated attackers to log in as other users, such as administrators, granted they have access to an email.
CVSS: CRITICAL (9.8) EPSS Score: 0.09%
December 19th, 2024 (4 months ago)
|
|
CVE-2024-56012 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in Pearlbells Flash News / Post (Responsive) allows Privilege Escalation.This issue affects Flash News / Post (Responsive): from n/a through 4.1.
CVSS: CRITICAL (9.8) EPSS Score: 0.04%
December 17th, 2024 (4 months ago)
|
|
CVE-2024-55988 |
Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Amol Nirmala Waman Navayan CSV Export allows Blind SQL Injection.This issue affects Navayan CSV Export: from n/a through 1.0.9.
CVSS: CRITICAL (9.3) EPSS Score: 0.04%
December 17th, 2024 (4 months ago)
|
|
CVE-2024-55982 |
Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in richteam Share Buttons – Social Media allows Blind SQL Injection.This issue affects Share Buttons – Social Media: from n/a through 1.0.2.
CVSS: CRITICAL (9.3) EPSS Score: 0.04%
December 17th, 2024 (4 months ago)
|
|
CVE-2024-55981 |
Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Nabajit Roy Nabz Image Gallery allows SQL Injection.This issue affects Nabz Image Gallery: from n/a through v1.00.
CVSS: CRITICAL (9.3) EPSS Score: 0.04%
December 17th, 2024 (4 months ago)
|
|
CVE-2024-55980 |
Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Webriderz Wr Age Verification allows SQL Injection.This issue affects Wr Age Verification: from n/a through 2.0.0.
CVSS: CRITICAL (9.3) EPSS Score: 0.04%
December 17th, 2024 (4 months ago)
|
|
CVE-2024-55978 |
Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WalletStation.com Code Generator Pro allows SQL Injection.This issue affects Code Generator Pro: from n/a through 1.2.
CVSS: CRITICAL (9.3) EPSS Score: 0.04%
December 17th, 2024 (4 months ago)
|
|
CVE-2024-55977 |
Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in launch-page-importer LaunchPage.app Importer allows SQL Injection.This issue affects LaunchPage.app Importer: from n/a through 1.1.
CVSS: CRITICAL (9.3) EPSS Score: 0.04%
December 17th, 2024 (4 months ago)
|
|
CVE-2024-55976 |
Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Mike Leembruggen Critical Site Intel allows SQL Injection.This issue affects Critical Site Intel: from n/a through 1.0.
CVSS: CRITICAL (9.3) EPSS Score: 0.04%
December 17th, 2024 (4 months ago)
|