Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2024-54258 |
Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in anzia Ni CRM Lead allows SQL Injection.This issue affects Ni CRM Lead: from n/a through 1.3.0.
CVSS: HIGH (8.5) EPSS Score: 0.04%
December 14th, 2024 (4 months ago)
|
|
CVE-2024-54256 |
Description: Missing Authorization vulnerability in Seerox Easy Blocks pro allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Easy Blocks pro: from n/a through 1.0.21.
CVSS: HIGH (7.1) EPSS Score: 0.04%
December 14th, 2024 (4 months ago)
|
|
CVE-2024-54248 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in Michael DUMONTET eewee admin custom allows Privilege Escalation.This issue affects eewee admin custom: from n/a through 1.8.2.4.
CVSS: HIGH (8.8) EPSS Score: 0.04%
December 14th, 2024 (4 months ago)
|
|
CVE-2024-54240 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Blaze Online Blaze Online eParcel for WooCommerce allows Reflected XSS.This issue affects Blaze Online eParcel for WooCommerce: from n/a through 1.3.3.
CVSS: HIGH (7.1) EPSS Score: 0.04%
December 14th, 2024 (4 months ago)
|
|
CVE-2024-54238 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Colin Tomele Board Document Manager from CHUHPL allows Reflected XSS.This issue affects Board Document Manager from CHUHPL: from n/a through 1.9.1.
CVSS: HIGH (7.1) EPSS Score: 0.04%
December 14th, 2024 (4 months ago)
|
|
CVE-2024-54237 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in anzia Ni CRM Lead allows Reflected XSS.This issue affects Ni CRM Lead: from n/a through 1.3.0.
CVSS: HIGH (7.1) EPSS Score: 0.04%
December 14th, 2024 (4 months ago)
|
|
CVE-2024-54236 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in anzia Ni WooCommerce Bulk Product Editor allows Reflected XSS.This issue affects Ni WooCommerce Bulk Product Editor: from n/a through 1.4.5.
CVSS: HIGH (7.1) EPSS Score: 0.04%
December 14th, 2024 (4 months ago)
|
|
CVE-2024-54235 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Shiptimize Shiptimize for WooCommerce allows Reflected XSS.This issue affects Shiptimize for WooCommerce: from n/a through 3.1.86.
CVSS: HIGH (7.1) EPSS Score: 0.04%
December 14th, 2024 (4 months ago)
|
|
CVE-2024-54233 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Enea Overclokk Advanced Control Manager for WordPress by ItalyStrap allows Reflected XSS.This issue affects Advanced Control Manager for WordPress by ItalyStrap: from n/a through 2.16.0.
CVSS: HIGH (7.1) EPSS Score: 0.04%
December 14th, 2024 (4 months ago)
|
|
CVE-2024-54231 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in anzia Ni WooCommerce Order Export allows Reflected XSS.This issue affects Ni WooCommerce Order Export: from n/a through 3.1.6.
CVSS: HIGH (7.1) EPSS Score: 0.04%
December 14th, 2024 (4 months ago)
|