Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2024-11733 |
Description: The The WordPress Popular Posts plugin for WordPress is vulnerable to arbitrary shortcode execution in all versions up to, and including, 7.1.0. This is due to the software allowing users to execute an action that does not properly validate a value before running do_shortcode. This makes it possible for unauthenticated attackers to execute arbitrary shortcodes.
CVSS: HIGH (7.3) EPSS Score: 0.05%
January 4th, 2025 (4 months ago)
|
|
CVE-2024-56267 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Fla-shop.com Interactive UK Map allows Stored XSS.This issue affects Interactive UK Map: from n/a through 3.4.8.
CVSS: HIGH (7.1) EPSS Score: 0.04%
January 3rd, 2025 (4 months ago)
|
|
CVE-2024-56250 |
Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in GregRoss Just Writing Statistics allows SQL Injection.This issue affects Just Writing Statistics: from n/a through 4.7.
CVSS: HIGH (7.6) EPSS Score: 0.04%
January 3rd, 2025 (4 months ago)
|
|
CVE-2024-56247 |
Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in AF themes WP Post Author allows SQL Injection.This issue affects WP Post Author: from n/a through 3.8.2.
CVSS: HIGH (7.6) EPSS Score: 0.04%
January 3rd, 2025 (4 months ago)
|
|
CVE-2024-56036 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ondrej Donek odPhotogallery allows Reflected XSS.This issue affects odPhotogallery: from n/a through 0.5.3.
CVSS: HIGH (7.1) EPSS Score: 0.04%
January 3rd, 2025 (4 months ago)
|
|
CVE-2024-56035 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Kurt Payne Upload Scanner allows Reflected XSS.This issue affects Upload Scanner: from n/a through 1.2.
CVSS: HIGH (7.1) EPSS Score: 0.04%
January 3rd, 2025 (4 months ago)
|
|
CVE-2024-56033 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Think201 FAQs allows Reflected XSS.This issue affects FAQs: from n/a through 1.0.2.
CVSS: HIGH (7.1) EPSS Score: 0.04%
January 3rd, 2025 (4 months ago)
|
|
CVE-2024-56032 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Foliovision FV Descriptions allows Reflected XSS.This issue affects FV Descriptions: from n/a through 1.4.
CVSS: HIGH (7.1) EPSS Score: 0.04%
January 3rd, 2025 (4 months ago)
|
|
CVE-2024-56030 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in 10CentMail allows Reflected XSS.This issue affects 10CentMail: from n/a through 2.1.50.
CVSS: HIGH (7.1) EPSS Score: 0.04%
January 3rd, 2025 (4 months ago)
|
|
CVE-2024-56029 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Dreamwinner Easy Language Switcher allows Reflected XSS.This issue affects Easy Language Switcher: from n/a through 1.0.
CVSS: HIGH (7.1) EPSS Score: 0.04%
January 3rd, 2025 (4 months ago)
|