Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2024-56291 |
Description: Deserialization of Untrusted Data vulnerability in plainware.com PlainInventory allows Object Injection.This issue affects PlainInventory: from n/a through 3.1.6.
CVSS: HIGH (8.1) EPSS Score: 0.04%
January 8th, 2025 (3 months ago)
|
|
CVE-2024-56289 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Groundhogg Inc. Groundhogg allows Reflected XSS.This issue affects Groundhogg: from n/a through 3.7.3.3.
CVSS: HIGH (7.1) EPSS Score: 0.04%
January 8th, 2025 (3 months ago)
|
|
CVE-2024-56286 |
Description: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Classic Addons Classic Addons – WPBakery Page Builder allows PHP Local File Inclusion.This issue affects Classic Addons – WPBakery Page Builder: from n/a through 3.0.
CVSS: HIGH (7.5) EPSS Score: 0.04%
January 8th, 2025 (3 months ago)
|
|
CVE-2024-56283 |
Description: Deserialization of Untrusted Data vulnerability in plainware.com Locatoraid Store Locator allows Object Injection.This issue affects Locatoraid Store Locator: from n/a through 3.9.50.
CVSS: HIGH (8.1) EPSS Score: 0.04%
January 8th, 2025 (3 months ago)
|
|
CVE-2024-56282 |
Description: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Elicus WPMozo Addons Lite for Elementor allows PHP Local File Inclusion.This issue affects WPMozo Addons Lite for Elementor: from n/a through 1.1.0.
CVSS: HIGH (7.5) EPSS Score: 0.04%
January 8th, 2025 (3 months ago)
|
|
CVE-2024-56281 |
Description: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in CodeMShop 워드프레스 결제 심플페이 allows PHP Local File Inclusion.This issue affects 워드프레스 결제 심플페이: from n/a through 5.2.0.
CVSS: HIGH (7.5) EPSS Score: 0.04%
January 8th, 2025 (3 months ago)
|
|
CVE-2024-56280 |
Description: Incorrect Privilege Assignment vulnerability in Amento Tech Pvt ltd WPGuppy allows Privilege Escalation.This issue affects WPGuppy: from n/a through 1.1.0.
CVSS: HIGH (8.8) EPSS Score: 0.04%
January 8th, 2025 (3 months ago)
|
|
CVE-2024-56056 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in kmfoysal06 SimpleCharm allows Reflected XSS.This issue affects SimpleCharm: from n/a through 1.4.3.
CVSS: HIGH (7.1) EPSS Score: 0.04%
January 8th, 2025 (3 months ago)
|
|
CVE-2024-53800 |
Description: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Rezgo Rezgo allows PHP Local File Inclusion.This issue affects Rezgo: from n/a through 4.15.
CVSS: HIGH (8.1) EPSS Score: 0.04%
January 8th, 2025 (3 months ago)
|
|
CVE-2024-51715 |
Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in ClickWhale ClickWhale – Link Manager, Link Shortener and Click Tracker for Affiliate Links & Link Pages allows Blind SQL Injection.This issue affects ClickWhale – Link Manager, Link Shortener and Click Tracker for Affiliate Links & Link Pages: from n/a through 2.4.1.
CVSS: HIGH (8.5) EPSS Score: 0.04%
January 8th, 2025 (3 months ago)
|