Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2024-56230 |
Description: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Dynamic Web Lab Dynamic Product Category Grid, Slider for WooCommerce allows PHP Local File Inclusion.This issue affects Dynamic Product Category Grid, Slider for WooCommerce: from n/a through 1.1.3.
CVSS: HIGH (7.5) EPSS Score: 0.04%
January 1st, 2025 (4 months ago)
|
|
CVE-2024-56228 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPFactory Wishlist for WooCommerce: Multi Wishlists Per Customer allows Reflected XSS.This issue affects Wishlist for WooCommerce: Multi Wishlists Per Customer: from n/a through 3.1.2.
CVSS: HIGH (7.1) EPSS Score: 0.04%
January 1st, 2025 (4 months ago)
|
|
CVE-2024-56226 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP Royal Royal Elementor Addons allows Reflected XSS.This issue affects Royal Elementor Addons: from n/a through 1.7.1001.
CVSS: HIGH (7.1) EPSS Score: 0.04%
January 1st, 2025 (4 months ago)
|
|
CVE-2024-56223 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Fahad Mahmood Gulri Slider allows Reflected XSS.This issue affects Gulri Slider: from n/a through 3.5.8.
CVSS: HIGH (7.1) EPSS Score: 0.04%
January 1st, 2025 (4 months ago)
|
|
CVE-2024-56214 |
Description: Path Traversal: '.../...//' vulnerability in DeluxeThemes Userpro allows Path Traversal.This issue affects Userpro: from n/a through 5.1.9.
CVSS: HIGH (8.3) EPSS Score: 0.04%
January 1st, 2025 (4 months ago)
|
|
CVE-2024-56212 |
Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in DeluxeThemes Userpro.This issue affects Userpro: from n/a through 5.1.9.
CVSS: HIGH (8.5) EPSS Score: 0.04%
January 1st, 2025 (4 months ago)
|
|
CVE-2024-56211 |
Description: Missing Authorization vulnerability in DeluxeThemes Userpro.This issue affects Userpro: from n/a through 5.1.9.
CVSS: HIGH (8.8) EPSS Score: 0.04%
January 1st, 2025 (4 months ago)
|
|
CVE-2024-56210 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in DeluxeThemes Userpro allows Reflected XSS.This issue affects Userpro: from n/a through 5.1.9.
CVSS: HIGH (7.1) EPSS Score: 0.04%
January 1st, 2025 (4 months ago)
|
|
CVE-2024-56209 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in SeventhQueen Kleo allows Reflected XSS.This issue affects Kleo: from n/a before 5.4.4.
CVSS: HIGH (7.1) EPSS Score: 0.04%
January 1st, 2025 (4 months ago)
|
|
CVE-2024-56207 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in EditionGuard Dev Team EditionGuard for WooCommerce – eBook Sales with DRM allows Privilege Escalation.This issue affects EditionGuard for WooCommerce – eBook Sales with DRM: from n/a through 3.4.2.
CVSS: HIGH (8.8) EPSS Score: 0.04%
January 1st, 2025 (4 months ago)
|