Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2024-56224 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Ledenbeheer allows Stored XSS.This issue affects Ledenbeheer: from n/a through 2.1.0.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
January 1st, 2025 (4 months ago)
|
|
CVE-2024-56222 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in Codebard CodeBard Help Desk allows Cross Site Request Forgery.This issue affects CodeBard Help Desk: from n/a through 1.1.1.
CVSS: MEDIUM (5.4) EPSS Score: 0.04%
January 1st, 2025 (4 months ago)
|
|
CVE-2024-56221 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Elicus WPMozo Addons Lite for Elementor allows Stored XSS.This issue affects WPMozo Addons Lite for Elementor: from n/a through 1.2.0.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
January 1st, 2025 (4 months ago)
|
|
CVE-2024-56219 |
Description: Missing Authorization vulnerability in MarketingFire Widget Options allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Widget Options: from n/a through 4.0.6.1.
CVSS: MEDIUM (4.3) EPSS Score: 0.04%
January 1st, 2025 (4 months ago)
|
|
CVE-2024-56218 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in AuRise Creative, SevenSpark Contact Form 7 Dynamic Text Extension allows Cross Site Request Forgery.This issue affects Contact Form 7 Dynamic Text Extension: from n/a through 5.0.1.
CVSS: MEDIUM (4.3) EPSS Score: 0.04%
January 1st, 2025 (4 months ago)
|
|
CVE-2024-56217 |
Description: Missing Authorization vulnerability in W3 Eden, Inc. Download Manager allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Download Manager: from n/a through 3.3.03.
CVSS: MEDIUM (4.3) EPSS Score: 0.04%
January 1st, 2025 (4 months ago)
|
|
CVE-2024-56216 |
Description: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Themify Themify Builder allows PHP Local File Inclusion.This issue affects Themify Builder: from n/a through 7.6.3.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
January 1st, 2025 (4 months ago)
|
|
CVE-2024-56215 |
Description: Missing Authorization vulnerability in Stephen Sherrard Member Directory and Contact Form allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Member Directory and Contact Form: from n/a through 1.7.0.
CVSS: MEDIUM (4.3) EPSS Score: 0.04%
January 1st, 2025 (4 months ago)
|
|
CVE-2024-56213 |
Description: Path Traversal: '.../...//' vulnerability in Themewinter Eventin allows Path Traversal.This issue affects Eventin: from n/a through 4.0.7.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
January 1st, 2025 (4 months ago)
|
|
CVE-2024-56063 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPDeveloper Essential Addons for Elementor allows Stored XSS.This issue affects Essential Addons for Elementor: from n/a through 6.0.7.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
January 1st, 2025 (4 months ago)
|