Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2024-54275 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Wibergs Web CSV to html allows Reflected XSS.This issue affects CSV to html: from n/a through 3.04.
CVSS: HIGH (7.1) EPSS Score: 0.04%
December 14th, 2024 (4 months ago)
|
|
CVE-2024-54274 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Octrace Studio WordPress HelpDesk & Support Ticket System Plugin – Octrace Support allows Reflected XSS.This issue affects WordPress HelpDesk & Support Ticket System Plugin – Octrace Support: from n/a through 1.2.7.
CVSS: HIGH (7.1) EPSS Score: 0.04%
December 14th, 2024 (4 months ago)
|
|
CVE-2024-54266 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ImageRecycle ImageRecycle pdf & image compression allows Reflected XSS.This issue affects ImageRecycle pdf & image compression: from n/a through 3.1.16.
CVSS: HIGH (7.1) EPSS Score: 0.05%
December 14th, 2024 (4 months ago)
|
|
CVE-2024-54265 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in UkrSolution Barcode Scanner with Inventory & Order Manager allows Reflected XSS.This issue affects Barcode Scanner with Inventory & Order Manager: from n/a through 1.6.6.
CVSS: HIGH (7.1) EPSS Score: 0.04%
December 14th, 2024 (4 months ago)
|
|
CVE-2024-54264 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in César Morillas Shortcodes Blocks Creator Ultimate allows Reflected XSS.This issue affects Shortcodes Blocks Creator Ultimate: from n/a through 2.2.0.
CVSS: HIGH (7.1) EPSS Score: 0.04%
December 14th, 2024 (4 months ago)
|
|
CVE-2024-54258 |
Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in anzia Ni CRM Lead allows SQL Injection.This issue affects Ni CRM Lead: from n/a through 1.3.0.
CVSS: HIGH (8.5) EPSS Score: 0.04%
December 14th, 2024 (4 months ago)
|
|
CVE-2024-54256 |
Description: Missing Authorization vulnerability in Seerox Easy Blocks pro allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Easy Blocks pro: from n/a through 1.0.21.
CVSS: HIGH (7.1) EPSS Score: 0.04%
December 14th, 2024 (4 months ago)
|
|
CVE-2024-54248 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in Michael DUMONTET eewee admin custom allows Privilege Escalation.This issue affects eewee admin custom: from n/a through 1.8.2.4.
CVSS: HIGH (8.8) EPSS Score: 0.04%
December 14th, 2024 (4 months ago)
|
|
CVE-2024-54240 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Blaze Online Blaze Online eParcel for WooCommerce allows Reflected XSS.This issue affects Blaze Online eParcel for WooCommerce: from n/a through 1.3.3.
CVSS: HIGH (7.1) EPSS Score: 0.04%
December 14th, 2024 (4 months ago)
|
|
CVE-2024-54238 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Colin Tomele Board Document Manager from CHUHPL allows Reflected XSS.This issue affects Board Document Manager from CHUHPL: from n/a through 1.9.1.
CVSS: HIGH (7.1) EPSS Score: 0.04%
December 14th, 2024 (4 months ago)
|