Threat and Vulnerability Intelligence Database
Example Searches:
CVE
Threat Actors
Countries
Vendors
Severity
Known Exploited
CVE-2024-55998 |
Description: Missing Authorization vulnerability in dusthazard Popup Surveys & Polls for WordPress (Mare.io) allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Popup Surveys & Polls for WordPress (Mare.io): from n/a through 1.36.
CVSS: MEDIUM (5.4) EPSS Score: 0.04%
December 17th, 2024 (4 months ago)
|
|
CVE-2024-55996 |
Description: Missing Authorization vulnerability in Dreamfox Dreamfox Media Payment gateway per Product for Woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Dreamfox Media Payment gateway per Product for Woocommerce: from n/a through 3.5.6.
CVSS: MEDIUM (6.1) EPSS Score: 0.04%
December 17th, 2024 (4 months ago)
|
|
CVE-2024-55994 |
Description: Missing Authorization vulnerability in 搜狐畅言 畅言评论系统 allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects 畅言评论系统: from n/a through 2.0.5.
CVSS: MEDIUM (4.3) EPSS Score: 0.04%
December 17th, 2024 (4 months ago)
|
|
CVE-2024-55993 |
Description: Missing Authorization vulnerability in PickPlugins Job Board Manager allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Job Board Manager: from n/a through 2.1.60.
CVSS: MEDIUM (5.3) EPSS Score: 0.04%
December 17th, 2024 (4 months ago)
|
|
CVE-2024-55992 |
Description: Missing Authorization vulnerability in Open Tools WooCommerce Basic Ordernumbers allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WooCommerce Basic Ordernumbers: from n/a through 1.4.4.
CVSS: MEDIUM (5.4) EPSS Score: 0.04%
December 17th, 2024 (4 months ago)
|
|
CVE-2024-54443 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Pluginscafe Advanced Data Table For Elementor allows Stored XSS.This issue affects Advanced Data Table For Elementor: from n/a through 1.0.0.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
December 17th, 2024 (4 months ago)
|
|
CVE-2024-54442 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Lluís Cortès Better WP Login Page allows Stored XSS.This issue affects Better WP Login Page: from n/a through 1.1.2.
CVSS: MEDIUM (5.9) EPSS Score: 0.04%
December 17th, 2024 (4 months ago)
|
|
CVE-2024-54441 |
Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Meini Utech World Time allows Stored XSS.This issue affects Utech World Time: from n/a through 1.0.
CVSS: MEDIUM (6.5) EPSS Score: 0.04%
December 17th, 2024 (4 months ago)
|
|
CVE-2024-54430 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in Bastien Ho EELV Newsletter allows Cross Site Request Forgery.This issue affects EELV Newsletter: from n/a through 4.8.2.
CVSS: MEDIUM (5.4) EPSS Score: 0.04%
December 17th, 2024 (4 months ago)
|
|
CVE-2024-54419 |
Description: Cross-Site Request Forgery (CSRF) vulnerability in Mansur Ahamed Ui Slider Filter By Price allows Cross Site Request Forgery.This issue affects Ui Slider Filter By Price: from n/a through 1.1.
CVSS: MEDIUM (5.4) EPSS Score: 0.04%
December 17th, 2024 (4 months ago)
|